Denial of Service Vulnerability in X.Org Server by X.Org Foundation
CVE-2014-8103

Currently unrated

Key Information:

Vendor

X.org

Status
Xorg-server
Vendor
CVE Published:
10 December 2014

What is CVE-2014-8103?

X.Org Server versions 1.15.0 through 1.16.x before 1.16.3 are susceptible to a denial of service or potential remote code execution due to out-of-bounds read or write vulnerabilities. Remote authenticated users can exploit this issue by sending crafted requests to various functions within the DRI3 or Present extension, including sproc_dri3_query_version and sproc_present_query_capabilities. This vulnerability highlights the critical need for timely updates to safeguard systems against potential threats.

References

http://www.x.org/wiki/Development/Security/Advisory-2014-...
x_refsource_CONFIRM
https://security.gentoo.org/glsa/201504-06
vendor-advisoryx_refsource_GENTOO
http://www.oracle.com/technetwork/topics/security/bulleti...
x_refsource_CONFIRM

EPSS Score

14% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.