CVE-2017-13721 log

Source
Severity Low
Remote No
Type Denial of service
Description
A denial of service vulnerability was found in xorg-server in the ProcShmCreateSegment function due to a missing shmseg resource ids validation. A passed shmseg resource id may belong to a non-existing client and abort X server with FatalError "client not in use", or overwrite existing segment of another existing client.
Group Package Affected Fixed Severity Status Ticket
AVG-432 xorg-server 1.19.3-3 1.19.4-1 Medium Fixed
Date Advisory Group Package Severity Description
08 Oct 2017 ASA-201710-10 AVG-432 xorg-server Medium multiple issues
References
https://cgit.freedesktop.org/xorg/xserver/commit/?id=b95f25af141d33a65f6f821ea9c003f66a01e1f1