X.org libXrandr before 1.5.1 allows remote X servers to trigger out-of-bounds write operations by leveraging mishandling of reply data.
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "ubuntu_priority": "low", "binaries": [ { "binary_version": "2:1.5.0-1ubuntu0.1~esm1", "binary_name": "libxrandr-dev" }, { "binary_version": "2:1.5.0-1ubuntu0.1~esm1", "binary_name": "libxrandr-dev-dbgsym" }, { "binary_version": "2:1.5.0-1ubuntu0.1~esm1", "binary_name": "libxrandr2" }, { "binary_version": "2:1.5.0-1ubuntu0.1~esm1", "binary_name": "libxrandr2-dbg" }, { "binary_version": "2:1.5.0-1ubuntu0.1~esm1", "binary_name": "libxrandr2-dbgsym" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "low", "binaries": [ { "binary_version": "2:1.5.1-1", "binary_name": "libxrandr-dev" }, { "binary_version": "2:1.5.1-1", "binary_name": "libxrandr2" }, { "binary_version": "2:1.5.1-1", "binary_name": "libxrandr2-dbgsym" } ] }