AVG-1310 log

Package	xorg-server
Status	Fixed
Severity	Medium
Type	arbitrary code execution
Affected	1.20.9.r21.g5c400cae1-2
Fixed	1.20.10-1
Current	21.1.20-1 [extra]
Ticket	None
Created	Tue Dec 1 15:26:02 2020

Issue	Severity	Remote	Type	Description
CVE-2020-25712	Medium	No	Arbitrary code execution	A security issue was discovered in xorg-server before 1.20.10. Insufficient checks on input of the XkbSetDeviceInfo request can lead to a buffer overflow on...
CVE-2020-14360	Medium	No	Arbitrary code execution	A security issue was discovered in xorg-server before 1.20.10. Insufficient checks on the lengths of the XkbSetMap request can lead to out of bounds memory...

Issue

Severity

Remote

Type

Description

CVE-2020-25712

Medium

Arbitrary code execution

A security issue was discovered in xorg-server before 1.20.10. Insufficient checks on input of the XkbSetDeviceInfo request can lead to a buffer overflow on...

CVE-2020-14360

Medium

Arbitrary code execution

A security issue was discovered in xorg-server before 1.20.10. Insufficient checks on the lengths of the XkbSetMap request can lead to out of bounds memory...

Date	Advisory	Package	Type
05 Dec 2020	ASA-202012-6	xorg-server	arbitrary code execution

References
https://www.openwall.com/lists/oss-security/2020/12/01/3