CVE-2017-12177

Source
Severity High
Remote Yes
Type Arbitrary code execution
Description
A security issue has been found in the double buffer extension component of xorg-server, due to a missing validation of the length of a variable-length request in ProcDbeGetVisualInfo().
Group Package Affected Fixed Severity Status Ticket
AVG-443 xorg-server 1.19.4-1 1.19.5-1 High Fixed
Date Advisory Group Package Severity Description
21 Oct 2017 ASA-201710-29 AVG-443 xorg-server High arbitrary code execution
References
https://cgit.freedesktop.org/xorg/xserver/commit/?id=4ca68b878e851e2136c234f40a25008297d8d831