X.Org Server (aka xserver and xorg-server) before 1.16.3 and 1.17.x before 1.17.1 allows remote attackers to obtain sensitive information from process memory or cause a denial of service (crash) via a crafted string length value in a XkbSetGeometry request.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "2:1.15.1-0ubuntu2.7", "binary_name": "xdmx" }, { "binary_version": "2:1.15.1-0ubuntu2.7", "binary_name": "xdmx-tools" }, { "binary_version": "2:1.15.1-0ubuntu2.7", "binary_name": "xnest" }, { "binary_version": "2:1.15.1-0ubuntu2.7", "binary_name": "xorg-server-source" }, { "binary_version": "2:1.15.1-0ubuntu2.7", "binary_name": "xserver-common" }, { "binary_version": "2:1.15.1-0ubuntu2.7", "binary_name": "xserver-xephyr" }, { "binary_version": "2:1.15.1-0ubuntu2.7", "binary_name": "xserver-xorg-core" }, { "binary_version": "2:1.15.1-0ubuntu2.7", "binary_name": "xserver-xorg-core-dbg" }, { "binary_version": "2:1.15.1-0ubuntu2.7", "binary_name": "xserver-xorg-core-udeb" }, { "binary_version": "2:1.15.1-0ubuntu2.7", "binary_name": "xserver-xorg-dev" }, { "binary_version": "2:1.15.1-0ubuntu2.7", "binary_name": "xserver-xorg-xmir" }, { "binary_version": "2:1.15.1-0ubuntu2.7", "binary_name": "xvfb" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "2:1.16.0-1ubuntu1.2~trusty2", "binary_name": "xorg-server-source-lts-utopic" }, { "binary_version": "2:1.16.0-1ubuntu1.2~trusty2", "binary_name": "xserver-xephyr-lts-utopic" }, { "binary_version": "2:1.16.0-1ubuntu1.2~trusty2", "binary_name": "xserver-xorg-core-lts-utopic" }, { "binary_version": "2:1.16.0-1ubuntu1.2~trusty2", "binary_name": "xserver-xorg-core-lts-utopic-dbg" }, { "binary_version": "2:1.16.0-1ubuntu1.2~trusty2", "binary_name": "xserver-xorg-dev-lts-utopic" }, { "binary_version": "2:1.16.0-1ubuntu1.2~trusty2", "binary_name": "xwayland-lts-utopic" } ] }
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "4.1.1+xorg4.3.0-37ubuntu5.0.2+esm1", "binary_name": "vnc4server" }, { "binary_version": "4.1.1+xorg4.3.0-37ubuntu5.0.2+esm1", "binary_name": "vnc4server-dbgsym" }, { "binary_version": "4.1.1+xorg4.3.0-37ubuntu5.0.2+esm1", "binary_name": "xvnc4viewer" }, { "binary_version": "4.1.1+xorg4.3.0-37ubuntu5.0.2+esm1", "binary_name": "xvnc4viewer-dbgsym" } ] }
{ "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "4.1.1+xorg4.3.0-37.3ubuntu2.1+esm1", "binary_name": "vnc4server" }, { "binary_version": "4.1.1+xorg4.3.0-37.3ubuntu2.1+esm1", "binary_name": "vnc4server-dbgsym" }, { "binary_version": "4.1.1+xorg4.3.0-37.3ubuntu2.1+esm1", "binary_name": "xvnc4viewer" }, { "binary_version": "4.1.1+xorg4.3.0-37.3ubuntu2.1+esm1", "binary_name": "xvnc4viewer-dbgsym" } ] }