AVG-443 log

Package xorg-server
Status Fixed
Severity High
Type arbitrary code execution
Affected 1.19.4-1
Fixed 1.19.5-1
Current 21.1.15-1 [extra]
Ticket None
Created Thu Oct 12 21:15:08 2017
Issue Severity Remote Type Description
CVE-2017-12183 High Yes Arbitrary code execution
A security issue has been found in the xfixes component of xorg- server, where buffer lengths were not correctly validated.
CVE-2017-12178 High Yes Arbitrary code execution
A security issue has been found in the Xi component of xorg-server, due to an invalid length check in ProcXIChangeHierarchy.
CVE-2017-12177 High Yes Arbitrary code execution
A security issue has been found in the double buffer extension component of xorg-server, due to a missing validation of the length of a variable-length...
CVE-2017-12176 High Yes Arbitrary code execution
A security issue has been found in xorg-server, due to a missing validation of the extra length in ProcEstablishConnection().
Date Advisory Package Type
21 Oct 2017 ASA-201710-29 xorg-server arbitrary code execution
References
https://lists.x.org/archives/xorg-devel/2017-October/054871.html