CVE-2017-12176

Source
Severity High
Remote Yes
Type Arbitrary code execution
Description
A security issue has been found in xorg-server, due to a missing validation of the extra length in ProcEstablishConnection().
Group Package Affected Fixed Severity Status Ticket
AVG-443 xorg-server 1.19.4-1 1.19.5-1 High Fixed
Date Advisory Group Package Severity Description
21 Oct 2017 ASA-201710-29 AVG-443 xorg-server High arbitrary code execution
References
https://cgit.freedesktop.org/xorg/xserver/commit/?id=b747da5e25be944337a9cd1415506fc06b70aa81