Package Instance

reference_id

AVG-2636

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-2640

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://api.first.org/data/v1/epss?cve=CVE-2008-1379

reference_url	https://security.gentoo.org/glsa/202305-30
reference_id	GLSA-202305-30
reference_type
scores
url	https://security.gentoo.org/glsa/202305-30

reference_url	https://access.redhat.com/errata/RHSA-2022:0003
reference_id	RHSA-2022:0003
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0003

reference_url	https://access.redhat.com/errata/RHSA-2022:1917
reference_id	RHSA-2022:1917
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:1917

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:1.20.13-3?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.13-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.13-3%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2021-4008

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1xeu-h1q2-5bfh

url VCID-24mm-8spg-nqfq

vulnerability_id VCID-24mm-8spg-nqfq

summary Integer overflow in the fbShmPutImage function in the MIT-SHM extension in the X server 1.4 in X.Org X11R7.3 allows context-dependent attackers to read arbitrary process memory via crafted values for a Pixmap width and height.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1379.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1379.json

reference_url

reference_id

reference_type

scores

value	0.00996
scoring_system	epss
scoring_elements	0.77292
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2008-1379

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=445414
reference_id	445414
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=445414

reference_url	https://security.gentoo.org/glsa/200806-07
reference_id	GLSA-200806-07
reference_type
scores
url	https://security.gentoo.org/glsa/200806-07

reference_url	https://access.redhat.com/errata/RHSA-2008:0502
reference_id	RHSA-2008:0502
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0502

reference_url	https://access.redhat.com/errata/RHSA-2008:0503
reference_id	RHSA-2008:0503
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0503

reference_url	https://access.redhat.com/errata/RHSA-2008:0504
reference_id	RHSA-2008:0504
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0504

reference_url	https://access.redhat.com/errata/RHSA-2008:0512
reference_id	RHSA-2008:0512
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0512

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.4.1~git20080517-2?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.4.1~git20080517-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.1~git20080517-2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2008-1379

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-24mm-8spg-nqfq

url VCID-24mx-tgrf-nqa8

vulnerability_id VCID-24mx-tgrf-nqa8

summary The SProcXFixesSelectSelectionInput function in the XFixes extension in X.Org X Window System (aka X11 or X) X11R6.8.0 and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length value.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8102.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8102.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-8102

reference_id

reference_type

scores

value	0.01115
scoring_system	epss
scoring_elements	0.78527
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-8102

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1168714
reference_id	1168714
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1168714

reference_url	https://security.gentoo.org/glsa/201504-06
reference_id	GLSA-201504-06
reference_type
scores
url	https://security.gentoo.org/glsa/201504-06

reference_url	https://access.redhat.com/errata/RHSA-2014:1982
reference_id	RHSA-2014:1982
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:1982

reference_url	https://access.redhat.com/errata/RHSA-2014:1983
reference_id	RHSA-2014:1983
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:1983

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.2.901-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2014-8102

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-24mx-tgrf-nqa8

url VCID-2enj-ds99-9fde

vulnerability_id VCID-2enj-ds99-9fde

summary arbitrary code execution

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4010.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4010.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-4010

reference_id

reference_type

scores

value	0.00177
scoring_system	epss
scoring_elements	0.38977
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-4010

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2026073
reference_id	2026073
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2026073

reference_url

reference_id

AVG-2636

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-2640

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://api.first.org/data/v1/epss?cve=CVE-2008-1377

reference_url	https://security.gentoo.org/glsa/202305-30
reference_id	GLSA-202305-30
reference_type
scores
url	https://security.gentoo.org/glsa/202305-30

reference_url	https://access.redhat.com/errata/RHSA-2022:0003
reference_id	RHSA-2022:0003
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0003

reference_url	https://access.redhat.com/errata/RHSA-2022:1917
reference_id	RHSA-2022:1917
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:1917

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:1.20.13-3?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.13-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.13-3%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2021-4010

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2enj-ds99-9fde

url VCID-31f1-edc5-nfey

vulnerability_id VCID-31f1-edc5-nfey

summary The (1) SProcRecordCreateContext and (2) SProcRecordRegisterClients functions in the Record extension and the (3) SProcSecurityGenerateAuthorization function in the Security extension in the X server 1.4 in X.Org X11R7.3 allow context-dependent attackers to execute arbitrary code via requests with crafted length values that specify an arbitrary number of bytes to be swapped on the heap, which triggers heap corruption.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1377.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1377.json

reference_url

reference_id

reference_type

scores

value	0.02373
scoring_system	epss
scoring_elements	0.85252
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2008-1377

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=445403
reference_id	445403
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=445403

reference_url	https://security.gentoo.org/glsa/200806-07
reference_id	GLSA-200806-07
reference_type
scores
url	https://security.gentoo.org/glsa/200806-07

reference_url	https://access.redhat.com/errata/RHSA-2008:0502
reference_id	RHSA-2008:0502
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0502

reference_url	https://access.redhat.com/errata/RHSA-2008:0503
reference_id	RHSA-2008:0503
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0503

reference_url	https://access.redhat.com/errata/RHSA-2008:0504
reference_id	RHSA-2008:0504
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0504

reference_url	https://access.redhat.com/errata/RHSA-2008:0512
reference_id	RHSA-2008:0512
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0512

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.4.1~git20080517-2?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.4.1~git20080517-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.1~git20080517-2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2008-1377

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-31f1-edc5-nfey

url VCID-3tqr-68kv-t3cp

vulnerability_id VCID-3tqr-68kv-t3cp

summary Integer underflow in the xTrapezoidValid macro in render/picture.h in X.Org allows context-dependent attackers to cause a denial of service (crash) via a negative bottom value.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-6424.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-6424.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-6424

reference_id

reference_type

scores

value	0.0684
scoring_system	epss
scoring_elements	0.91508
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-6424

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6424
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6424

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1037984
reference_id	1037984
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1037984

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742922
reference_id	742922
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742922

reference_url	https://security.gentoo.org/glsa/201701-64
reference_id	GLSA-201701-64
reference_type
scores
url	https://security.gentoo.org/glsa/201701-64

reference_url	https://security.gentoo.org/glsa/201710-30
reference_id	GLSA-201710-30
reference_type
scores
url	https://security.gentoo.org/glsa/201710-30

reference_url	https://access.redhat.com/errata/RHSA-2013:1868
reference_id	RHSA-2013:1868
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:1868

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.14.2.901-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.14.2.901-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.14.2.901-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2013-6424

risk_score 0.1

exploitability 0.5

weighted_severity 0.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3tqr-68kv-t3cp

url VCID-44pt-tgfg-k3hh

vulnerability_id VCID-44pt-tgfg-k3hh

summary xorg-x11-server: Heap buffer overread/data leakage in ProcAppleDRICreatePixmap

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31082.json

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31082.json

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2271999
reference_id	2271999
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2271999

reference_url	https://security.gentoo.org/glsa/202411-08
reference_id	GLSA-202411-08
reference_type
scores
url	https://security.gentoo.org/glsa/202411-08

fixed_packages

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u7?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u7?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u7%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.11-3?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.11-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.11-3%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2024-31082

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-44pt-tgfg-k3hh

url VCID-47qj-hd74-27h7

vulnerability_id VCID-47qj-hd74-27h7

summary The XVideo extension in XFree86 4.0.0, X.Org X Window System (aka X11 or X) X11R6.7, and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) SProcXvQueryExtension, (2) SProcXvQueryAdaptors, (3) SProcXvQueryEncodings, (4) SProcXvGrabPort, (5) SProcXvUngrabPort, (6) SProcXvPutVideo, (7) SProcXvPutStill, (8) SProcXvGetVideo, (9) SProcXvGetStill, (10) SProcXvPutImage, (11) SProcXvShmPutImage, (12) SProcXvSelectVideoNotify, (13) SProcXvSelectPortNotify, (14) SProcXvStopVideo, (15) SProcXvSetPortAttribute, (16) SProcXvGetPortAttribute, (17) SProcXvQueryBestSize, (18) SProcXvQueryPortAttributes, (19) SProcXvQueryImageAttributes, or (20) SProcXvListImageFormats function.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8099.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8099.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-8099

reference_id

reference_type

scores

value	0.01337
scoring_system	epss
scoring_elements	0.80329
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-8099

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1168710
reference_id	1168710
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1168710

reference_url	https://security.gentoo.org/glsa/201504-06
reference_id	GLSA-201504-06
reference_type
scores
url	https://security.gentoo.org/glsa/201504-06

reference_url	https://access.redhat.com/errata/RHSA-2014:1982
reference_id	RHSA-2014:1982
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:1982

reference_url	https://access.redhat.com/errata/RHSA-2014:1983
reference_id	RHSA-2014:1983
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:1983

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.2.901-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2014-8099

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-47qj-hd74-27h7

url VCID-4q3g-1az1-ybd6

vulnerability_id VCID-4q3g-1az1-ybd6

summary xorg-x11-server: Use-after-free in ProcRenderAddGlyphs

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31083.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31083.json

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2272000
reference_id	2272000
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2272000

reference_url	https://security.gentoo.org/glsa/202411-08
reference_id	GLSA-202411-08
reference_type
scores
url	https://security.gentoo.org/glsa/202411-08

reference_url	https://access.redhat.com/errata/RHSA-2024:1785
reference_id	RHSA-2024:1785
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1785

reference_url	https://access.redhat.com/errata/RHSA-2024:2036
reference_id	RHSA-2024:2036
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2036

reference_url	https://access.redhat.com/errata/RHSA-2024:2037
reference_id	RHSA-2024:2037
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2037

reference_url	https://access.redhat.com/errata/RHSA-2024:2038
reference_id	RHSA-2024:2038
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2038

reference_url	https://access.redhat.com/errata/RHSA-2024:2039
reference_id	RHSA-2024:2039
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2039

reference_url	https://access.redhat.com/errata/RHSA-2024:2040
reference_id	RHSA-2024:2040
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2040

reference_url	https://access.redhat.com/errata/RHSA-2024:2041
reference_id	RHSA-2024:2041
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2041

reference_url	https://access.redhat.com/errata/RHSA-2024:2042
reference_id	RHSA-2024:2042
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2042

reference_url	https://access.redhat.com/errata/RHSA-2024:2080
reference_id	RHSA-2024:2080
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2080

reference_url	https://access.redhat.com/errata/RHSA-2024:2616
reference_id	RHSA-2024:2616
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2616

reference_url	https://access.redhat.com/errata/RHSA-2024:3258
reference_id	RHSA-2024:3258
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:3258

reference_url	https://access.redhat.com/errata/RHSA-2024:3261
reference_id	RHSA-2024:3261
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:3261

reference_url	https://access.redhat.com/errata/RHSA-2024:3343
reference_id	RHSA-2024:3343
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:3343

reference_url	https://access.redhat.com/errata/RHSA-2024:9093
reference_id	RHSA-2024:9093
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:9093

reference_url	https://access.redhat.com/errata/RHSA-2024:9122
reference_id	RHSA-2024:9122
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:9122

reference_url	https://access.redhat.com/errata/RHSA-2025:12751
reference_id	RHSA-2025:12751
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12751

fixed_packages

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u7?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u7?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u7%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.11-3?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.11-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.11-3%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2024-31083

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4q3g-1az1-ybd6

url VCID-563m-twrn-1kg7

vulnerability_id VCID-563m-twrn-1kg7

summary xkeyboard-config before 2.5 in X.Org before 7.6 enables certain XKB debugging functions by default, which allows physically proximate attackers to bypass an X screen lock via keyboard combinations that break the input grab.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0064.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0064.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2012-0064

reference_id

reference_type

scores

value	0.00081
scoring_system	epss
scoring_elements	0.23834
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2012-0064

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=656410
reference_id	656410
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=656410

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=783039
reference_id	783039
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=783039

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.11.3.901-2?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.11.3.901-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.11.3.901-2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2012-0064

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-563m-twrn-1kg7

url VCID-5adj-h8vd-fydm

vulnerability_id VCID-5adj-h8vd-fydm

summary Integer overflow in the ProcDbeSwapBuffers function in the DBE extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree86 X server, allows local users to execute arbitrary code via a crafted X protocol request that triggers memory corruption during processing of unspecified data structures.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-6103.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-6103.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2006-6103

reference_id

reference_type

scores

value	0.00045
scoring_system	epss
scoring_elements	0.1425
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2006-6103

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1618240
reference_id	1618240
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1618240

reference_url	https://access.redhat.com/errata/RHSA-2007:0002
reference_id	RHSA-2007:0002
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2007:0002

reference_url	https://access.redhat.com/errata/RHSA-2007:0003
reference_id	RHSA-2007:0003
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2007:0003

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.1.1-15?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.1.1-15?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.1.1-15%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2006-6103

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5adj-h8vd-fydm

url VCID-5h7m-8559-sqau

vulnerability_id VCID-5h7m-8559-sqau

summary The ProcRenderAddGlyphs function in the Render extension (render/render.c) in X.Org xserver 1.7.7 and earlier allows local users to read arbitrary memory and possibly cause a denial of service (server crash) via unspecified vectors related to an "input sanitization flaw."

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4819.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4819.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2010-4819

reference_id

reference_type

scores

value	0.00074
scoring_system	epss
scoring_elements	0.22526
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2010-4819

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=740961
reference_id	740961
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=740961

reference_url	https://access.redhat.com/errata/RHSA-2011:1359
reference_id	RHSA-2011:1359
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:1359

reference_url	https://access.redhat.com/errata/RHSA-2011:1360
reference_id	RHSA-2011:1360
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:1360

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.9.0.901-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.9.0.901-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.9.0.901-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2010-4819

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5h7m-8559-sqau

url VCID-5nbt-cvgt-pkff

vulnerability_id VCID-5nbt-cvgt-pkff

summary GNOME screensaver 2.20 in Ubuntu 7.10, when used with Compiz, does not properly reserve input focus, which allows attackers with physical access to take control of the session after entering an Alt-Tab sequence, a related issue to CVE-2007-3069.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-3920.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-3920.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2007-3920

reference_id

reference_type

scores

value	0.00051
scoring_system	epss
scoring_elements	0.16325
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2007-3920

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=350271
reference_id	350271
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=350271

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=449108
reference_id	449108
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=449108

reference_url	https://access.redhat.com/errata/RHSA-2008:0485
reference_id	RHSA-2008:0485
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0485

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.4.1~git20080118-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.4.1~git20080118-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.1~git20080118-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2007-3920

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5nbt-cvgt-pkff

url VCID-67p9-ddez-7ka1

vulnerability_id VCID-67p9-ddez-7ka1

summary xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6377.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6377.json

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2253291
reference_id	2253291
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2253291

reference_url	https://security.gentoo.org/glsa/202401-30
reference_id	GLSA-202401-30
reference_type
scores
url	https://security.gentoo.org/glsa/202401-30

reference_url	https://access.redhat.com/errata/RHSA-2023:7886
reference_id	RHSA-2023:7886
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:7886

reference_url	https://access.redhat.com/errata/RHSA-2024:0006
reference_id	RHSA-2024:0006
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0006

reference_url	https://access.redhat.com/errata/RHSA-2024:0009
reference_id	RHSA-2024:0009
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0009

reference_url	https://access.redhat.com/errata/RHSA-2024:0010
reference_id	RHSA-2024:0010
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0010

reference_url	https://access.redhat.com/errata/RHSA-2024:0014
reference_id	RHSA-2024:0014
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0014

reference_url	https://access.redhat.com/errata/RHSA-2024:0015
reference_id	RHSA-2024:0015
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0015

reference_url	https://access.redhat.com/errata/RHSA-2024:0016
reference_id	RHSA-2024:0016
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0016

reference_url	https://access.redhat.com/errata/RHSA-2024:0017
reference_id	RHSA-2024:0017
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0017

reference_url	https://access.redhat.com/errata/RHSA-2024:0018
reference_id	RHSA-2024:0018
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0018

reference_url	https://access.redhat.com/errata/RHSA-2024:0020
reference_id	RHSA-2024:0020
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0020

reference_url	https://access.redhat.com/errata/RHSA-2024:2169
reference_id	RHSA-2024:2169
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2169

reference_url	https://access.redhat.com/errata/RHSA-2024:2170
reference_id	RHSA-2024:2170
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2170

reference_url	https://access.redhat.com/errata/RHSA-2024:2995
reference_id	RHSA-2024:2995
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2995

reference_url	https://access.redhat.com/errata/RHSA-2024:2996
reference_id	RHSA-2024:2996
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2996

reference_url	https://access.redhat.com/errata/RHSA-2025:13998
reference_id	RHSA-2025:13998
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13998

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u10?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u10?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u10%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u4?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u4%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.10-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.10-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.10-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2023-6377

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-67p9-ddez-7ka1

url VCID-6814-39jv-pubh

vulnerability_id VCID-6814-39jv-pubh

summary X.Org Xserver before 1.4.1 allows local users to determine the existence of arbitrary files via a filename argument in the -sp option to the X program, which produces different error messages depending on whether the filename exists.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5958.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5958.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2007-5958

reference_id

reference_type

scores

value	0.03599
scoring_system	epss
scoring_elements	0.8798
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2007-5958

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=391841
reference_id	391841
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=391841

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/5152.sh
reference_id	CVE-2007-5958
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/5152.sh

reference_url	https://security.gentoo.org/glsa/200801-09
reference_id	GLSA-200801-09
reference_type
scores
url	https://security.gentoo.org/glsa/200801-09

reference_url	https://access.redhat.com/errata/RHSA-2008:0029
reference_id	RHSA-2008:0029
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0029

reference_url	https://access.redhat.com/errata/RHSA-2008:0030
reference_id	RHSA-2008:0030
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0030

reference_url	https://access.redhat.com/errata/RHSA-2008:0031
reference_id	RHSA-2008:0031
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0031

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2007-5958

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6814-39jv-pubh

url VCID-6bnp-kn76-4qdm

vulnerability_id VCID-6bnp-kn76-4qdm

summary xorg-x11-server: XTestSwapFakeInput stack overflow

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46340.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46340.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-46340

reference_id

reference_type

scores

value	0.01237
scoring_system	epss
scoring_elements	0.79556
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-46340

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071
reference_id	1026071
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2151755
reference_id	2151755
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2151755

reference_url	https://security.gentoo.org/glsa/202305-30
reference_id	GLSA-202305-30
reference_type
scores
url	https://security.gentoo.org/glsa/202305-30

reference_url	https://access.redhat.com/errata/RHSA-2023:0045
reference_id	RHSA-2023:0045
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0045

reference_url	https://access.redhat.com/errata/RHSA-2023:0046
reference_id	RHSA-2023:0046
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0046

reference_url	https://access.redhat.com/errata/RHSA-2023:2248
reference_id	RHSA-2023:2248
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2248

reference_url	https://access.redhat.com/errata/RHSA-2023:2249
reference_id	RHSA-2023:2249
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2249

reference_url	https://access.redhat.com/errata/RHSA-2023:2257
reference_id	RHSA-2023:2257
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2257

reference_url	https://access.redhat.com/errata/RHSA-2023:2805
reference_id	RHSA-2023:2805
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2805

reference_url	https://access.redhat.com/errata/RHSA-2023:2806
reference_id	RHSA-2023:2806
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2806

reference_url	https://access.redhat.com/errata/RHSA-2023:2830
reference_id	RHSA-2023:2830
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2830

reference_url	https://access.redhat.com/errata/RHSA-2025:12751
reference_id	RHSA-2025:12751
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12751

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u4?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u4%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.5-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.5-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.5-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2022-46340

risk_score 4.0

exploitability 0.5

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6bnp-kn76-4qdm

url VCID-6ezy-q9rx-rfdd

vulnerability_id VCID-6ezy-q9rx-rfdd

summary xorg-x11-server: Use-after-free bug in DestroyWindow

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5380.json

reference_id

reference_type

scores

value	4.7
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5380.json

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2244736
reference_id	2244736
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2244736

reference_url	https://security.gentoo.org/glsa/202401-30
reference_id	GLSA-202401-30
reference_type
scores
url	https://security.gentoo.org/glsa/202401-30

reference_url	https://access.redhat.com/errata/RHSA-2023:7428
reference_id	RHSA-2023:7428
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:7428

reference_url	https://access.redhat.com/errata/RHSA-2024:2169
reference_id	RHSA-2024:2169
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2169

reference_url	https://access.redhat.com/errata/RHSA-2024:2298
reference_id	RHSA-2024:2298
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2298

reference_url	https://access.redhat.com/errata/RHSA-2024:2995
reference_id	RHSA-2024:2995
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2995

reference_url	https://access.redhat.com/errata/RHSA-2024:3067
reference_id	RHSA-2024:3067
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:3067

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u8?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u8?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u8%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.9-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.9-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.9-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2023-5380

risk_score 2.1

exploitability 0.5

weighted_severity 4.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6ezy-q9rx-rfdd

url VCID-6sfc-pmbw-6ffg

vulnerability_id VCID-6sfc-pmbw-6ffg

summary The LockServer function in os/utils.c in X.Org xserver before 1.11.2 allows local users to determine the existence of arbitrary files via a symlink attack on a temporary lock file, which is handled differently if the file exists.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4028.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4028.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2011-4028

reference_id

reference_type

scores

value	0.001
scoring_system	epss
scoring_elements	0.27302
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2011-4028

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=745755
reference_id	745755
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=745755

reference_url	https://security.gentoo.org/glsa/201110-19
reference_id	GLSA-201110-19
reference_type
scores
url	https://security.gentoo.org/glsa/201110-19

reference_url	https://access.redhat.com/errata/RHSA-2012:0303
reference_id	RHSA-2012:0303
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2012:0303

reference_url	https://access.redhat.com/errata/RHSA-2012:0939
reference_id	RHSA-2012:0939
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2012:0939

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.11.1.901-2?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.11.1.901-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.11.1.901-2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2011-4028

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6sfc-pmbw-6ffg

url VCID-6t55-ed2e-2bcw

vulnerability_id VCID-6t55-ed2e-2bcw

summary xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Integer Overflow in Big Requests Extension

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49176.json

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49176.json

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108073
reference_id	1108073
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108073

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369
reference_id	1108369
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2369954
reference_id	2369954
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2369954

reference_url	https://access.redhat.com/errata/RHSA-2025:10258
reference_id	RHSA-2025:10258
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10258

reference_url	https://access.redhat.com/errata/RHSA-2025:10342
reference_id	RHSA-2025:10342
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10342

reference_url	https://access.redhat.com/errata/RHSA-2025:10343
reference_id	RHSA-2025:10343
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10343

reference_url	https://access.redhat.com/errata/RHSA-2025:10344
reference_id	RHSA-2025:10344
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10344

reference_url	https://access.redhat.com/errata/RHSA-2025:10346
reference_id	RHSA-2025:10346
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10346

reference_url	https://access.redhat.com/errata/RHSA-2025:10347
reference_id	RHSA-2025:10347
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10347

reference_url	https://access.redhat.com/errata/RHSA-2025:10348
reference_id	RHSA-2025:10348
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10348

reference_url	https://access.redhat.com/errata/RHSA-2025:10349
reference_id	RHSA-2025:10349
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10349

reference_url	https://access.redhat.com/errata/RHSA-2025:10350
reference_id	RHSA-2025:10350
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10350

reference_url	https://access.redhat.com/errata/RHSA-2025:10351
reference_id	RHSA-2025:10351
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10351

reference_url	https://access.redhat.com/errata/RHSA-2025:10352
reference_id	RHSA-2025:10352
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10352

reference_url	https://access.redhat.com/errata/RHSA-2025:10355
reference_id	RHSA-2025:10355
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10355

reference_url	https://access.redhat.com/errata/RHSA-2025:10356
reference_id	RHSA-2025:10356
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10356

reference_url	https://access.redhat.com/errata/RHSA-2025:10360
reference_id	RHSA-2025:10360
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10360

reference_url	https://access.redhat.com/errata/RHSA-2025:10370
reference_id	RHSA-2025:10370
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10370

reference_url	https://access.redhat.com/errata/RHSA-2025:10374
reference_id	RHSA-2025:10374
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10374

reference_url	https://access.redhat.com/errata/RHSA-2025:10375
reference_id	RHSA-2025:10375
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10375

reference_url	https://access.redhat.com/errata/RHSA-2025:10376
reference_id	RHSA-2025:10376
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10376

reference_url	https://access.redhat.com/errata/RHSA-2025:10377
reference_id	RHSA-2025:10377
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10377

reference_url	https://access.redhat.com/errata/RHSA-2025:10378
reference_id	RHSA-2025:10378
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10378

reference_url	https://access.redhat.com/errata/RHSA-2025:10381
reference_id	RHSA-2025:10381
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10381

reference_url	https://access.redhat.com/errata/RHSA-2025:10410
reference_id	RHSA-2025:10410
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10410

reference_url	https://access.redhat.com/errata/RHSA-2025:9303
reference_id	RHSA-2025:9303
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9303

reference_url	https://access.redhat.com/errata/RHSA-2025:9304
reference_id	RHSA-2025:9304
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9304

reference_url	https://access.redhat.com/errata/RHSA-2025:9305
reference_id	RHSA-2025:9305
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9305

reference_url	https://access.redhat.com/errata/RHSA-2025:9306
reference_id	RHSA-2025:9306
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9306

reference_url	https://access.redhat.com/errata/RHSA-2025:9392
reference_id	RHSA-2025:9392
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9392

reference_url	https://access.redhat.com/errata/RHSA-2025:9964
reference_id	RHSA-2025:9964
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9964

fixed_packages

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u16?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u16?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u16%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u10?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u10?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u10%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.16-1.3?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.16-1.3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2025-49176

risk_score 3.3

exploitability 0.5

weighted_severity 6.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6t55-ed2e-2bcw

url VCID-713b-xwq2-7ych

vulnerability_id VCID-713b-xwq2-7ych

summary A flaw was found in xorg-x11-server before 1.20.10. A heap-buffer overflow in XkbSetDeviceInfo may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25712.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25712.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-25712

reference_id

reference_type

scores

value	0.00133
scoring_system	epss
scoring_elements	0.32452
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-25712

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1887276
reference_id	1887276
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1887276

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976216
reference_id	976216
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976216

reference_url	https://security.archlinux.org/ASA-202012-6
reference_id	ASA-202012-6
reference_type
scores
url	https://security.archlinux.org/ASA-202012-6

reference_url

reference_id

AVG-1310

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12182.json

reference_url	https://security.gentoo.org/glsa/202012-01
reference_id	GLSA-202012-01
reference_type
scores
url	https://security.gentoo.org/glsa/202012-01

reference_url	https://access.redhat.com/errata/RHSA-2020:5408
reference_id	RHSA-2020:5408
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5408

reference_url	https://access.redhat.com/errata/RHSA-2021:1804
reference_id	RHSA-2021:1804
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1804

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.20.10-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.10-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.10-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2020-25712

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-713b-xwq2-7ych

url VCID-74jd-1pbz-u7cu

vulnerability_id VCID-74jd-1pbz-u7cu

summary xorg-x11-server before 1.19.5 was missing length validation in XFree86 DRI extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.

references

reference_url

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12182.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-12182

reference_id

reference_type

scores

value	0.00944
scoring_system	epss
scoring_elements	0.76655
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-12182

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1509223
reference_id	1509223
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1509223

reference_url	https://security.gentoo.org/glsa/201711-05
reference_id	GLSA-201711-05
reference_type
scores
url	https://security.gentoo.org/glsa/201711-05

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.5-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2017-12182

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-74jd-1pbz-u7cu

url VCID-7hgn-umm1-9ydh

vulnerability_id VCID-7hgn-umm1-9ydh

summary The ProcGetReservedColormapEntries function in the TOG-CUP extension in X.Org Xserver before 1.4.1 allows context-dependent attackers to read the contents of arbitrary memory locations via a request containing a 32-bit value that is improperly used as an array index.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6428.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6428.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2007-6428

reference_id

reference_type

scores

value	0.02514
scoring_system	epss
scoring_elements	0.85671
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2007-6428

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=413791
reference_id	413791
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=413791

reference_url	https://security.gentoo.org/glsa/200801-09
reference_id	GLSA-200801-09
reference_type
scores
url	https://security.gentoo.org/glsa/200801-09

reference_url	https://access.redhat.com/errata/RHSA-2008:0029
reference_id	RHSA-2008:0029
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0029

reference_url	https://access.redhat.com/errata/RHSA-2008:0030
reference_id	RHSA-2008:0030
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0030

reference_url	https://access.redhat.com/errata/RHSA-2008:0031
reference_id	RHSA-2008:0031
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0031

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2007-6428

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7hgn-umm1-9ydh

url VCID-828y-hsz4-tqbe

vulnerability_id VCID-828y-hsz4-tqbe

summary xorg-x11-server: reattaching to different master device may lead to out-of-bounds memory access

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0229.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0229.json

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2256690
reference_id	2256690
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2256690

reference_url	https://security.gentoo.org/glsa/202401-30
reference_id	GLSA-202401-30
reference_type
scores
url	https://security.gentoo.org/glsa/202401-30

reference_url	https://access.redhat.com/errata/RHSA-2024:0320
reference_id	RHSA-2024:0320
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0320

reference_url	https://access.redhat.com/errata/RHSA-2024:0557
reference_id	RHSA-2024:0557
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0557

reference_url	https://access.redhat.com/errata/RHSA-2024:0558
reference_id	RHSA-2024:0558
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0558

reference_url	https://access.redhat.com/errata/RHSA-2024:0597
reference_id	RHSA-2024:0597
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0597

reference_url	https://access.redhat.com/errata/RHSA-2024:0607
reference_id	RHSA-2024:0607
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0607

reference_url	https://access.redhat.com/errata/RHSA-2024:0614
reference_id	RHSA-2024:0614
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0614

reference_url	https://access.redhat.com/errata/RHSA-2024:0617
reference_id	RHSA-2024:0617
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0617

reference_url	https://access.redhat.com/errata/RHSA-2024:0621
reference_id	RHSA-2024:0621
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0621

reference_url	https://access.redhat.com/errata/RHSA-2024:0626
reference_id	RHSA-2024:0626
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0626

reference_url	https://access.redhat.com/errata/RHSA-2024:0629
reference_id	RHSA-2024:0629
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0629

reference_url	https://access.redhat.com/errata/RHSA-2024:2169
reference_id	RHSA-2024:2169
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2169

reference_url	https://access.redhat.com/errata/RHSA-2024:2170
reference_id	RHSA-2024:2170
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2170

reference_url	https://access.redhat.com/errata/RHSA-2024:2995
reference_id	RHSA-2024:2995
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2995

reference_url	https://access.redhat.com/errata/RHSA-2024:2996
reference_id	RHSA-2024:2996
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2996

reference_url	https://access.redhat.com/errata/RHSA-2025:12751
reference_id	RHSA-2025:12751
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12751

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u11?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u11?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u11%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u5?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u5%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.11-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.11-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.11-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2024-0229

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-828y-hsz4-tqbe

url VCID-8bbs-eqdc-c7fh

vulnerability_id VCID-8bbs-eqdc-c7fh

summary arbitrary code execution

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4009.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4009.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-4009

reference_id

reference_type

scores

value	0.00091
scoring_system	epss
scoring_elements	0.25722
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-4009

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2026072
reference_id	2026072
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2026072

reference_url

reference_id

AVG-2636

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-2640

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-62230.json

reference_url	https://security.gentoo.org/glsa/202305-30
reference_id	GLSA-202305-30
reference_type
scores
url	https://security.gentoo.org/glsa/202305-30

reference_url	https://access.redhat.com/errata/RHSA-2022:0003
reference_id	RHSA-2022:0003
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0003

reference_url	https://access.redhat.com/errata/RHSA-2022:1917
reference_id	RHSA-2022:1917
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:1917

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:1.20.13-3?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.13-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.13-3%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2021-4009

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8bbs-eqdc-c7fh

url VCID-8h6n-ntrj-q7g6

vulnerability_id VCID-8h6n-ntrj-q7g6

summary xorg: xwayland: Use-after-free in Xkb client resource removal

references

reference_url

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-62230.json

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2402653
reference_id	2402653
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2402653

reference_url	https://access.redhat.com/errata/RHSA-2025:19432
reference_id	RHSA-2025:19432
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:19432

reference_url	https://access.redhat.com/errata/RHSA-2025:19433
reference_id	RHSA-2025:19433
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:19433

reference_url	https://access.redhat.com/errata/RHSA-2025:19434
reference_id	RHSA-2025:19434
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:19434

reference_url	https://access.redhat.com/errata/RHSA-2025:19435
reference_id	RHSA-2025:19435
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:19435

reference_url	https://access.redhat.com/errata/RHSA-2025:19489
reference_id	RHSA-2025:19489
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:19489

reference_url	https://access.redhat.com/errata/RHSA-2025:19623
reference_id	RHSA-2025:19623
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:19623

reference_url	https://access.redhat.com/errata/RHSA-2025:19909
reference_id	RHSA-2025:19909
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:19909

reference_url	https://access.redhat.com/errata/RHSA-2025:20958
reference_id	RHSA-2025:20958
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:20958

reference_url	https://access.redhat.com/errata/RHSA-2025:20960
reference_id	RHSA-2025:20960
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:20960

reference_url	https://access.redhat.com/errata/RHSA-2025:20961
reference_id	RHSA-2025:20961
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:20961

reference_url	https://access.redhat.com/errata/RHSA-2025:21035
reference_id	RHSA-2025:21035
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:21035

reference_url	https://access.redhat.com/errata/RHSA-2025:22040
reference_id	RHSA-2025:22040
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22040

reference_url	https://access.redhat.com/errata/RHSA-2025:22041
reference_id	RHSA-2025:22041
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22041

reference_url	https://access.redhat.com/errata/RHSA-2025:22051
reference_id	RHSA-2025:22051
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22051

reference_url	https://access.redhat.com/errata/RHSA-2025:22055
reference_id	RHSA-2025:22055
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22055

reference_url	https://access.redhat.com/errata/RHSA-2025:22056
reference_id	RHSA-2025:22056
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22056

reference_url	https://access.redhat.com/errata/RHSA-2025:22077
reference_id	RHSA-2025:22077
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22077

reference_url	https://access.redhat.com/errata/RHSA-2025:22096
reference_id	RHSA-2025:22096
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22096

reference_url	https://access.redhat.com/errata/RHSA-2025:22164
reference_id	RHSA-2025:22164
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22164

reference_url	https://access.redhat.com/errata/RHSA-2025:22167
reference_id	RHSA-2025:22167
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22167

reference_url	https://access.redhat.com/errata/RHSA-2025:22364
reference_id	RHSA-2025:22364
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22364

reference_url	https://access.redhat.com/errata/RHSA-2025:22365
reference_id	RHSA-2025:22365
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22365

reference_url	https://access.redhat.com/errata/RHSA-2025:22426
reference_id	RHSA-2025:22426
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22426

reference_url	https://access.redhat.com/errata/RHSA-2025:22427
reference_id	RHSA-2025:22427
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22427

reference_url	https://access.redhat.com/errata/RHSA-2025:22667
reference_id	RHSA-2025:22667
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22667

reference_url	https://access.redhat.com/errata/RHSA-2025:22729
reference_id	RHSA-2025:22729
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22729

reference_url	https://access.redhat.com/errata/RHSA-2025:22742
reference_id	RHSA-2025:22742
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22742

reference_url	https://access.redhat.com/errata/RHSA-2025:22753
reference_id	RHSA-2025:22753
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22753

reference_url	https://access.redhat.com/errata/RHSA-2026:0031
reference_id	RHSA-2026:0031
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0031

reference_url	https://access.redhat.com/errata/RHSA-2026:0033
reference_id	RHSA-2026:0033
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0033

reference_url	https://access.redhat.com/errata/RHSA-2026:0034
reference_id	RHSA-2026:0034
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0034

reference_url	https://access.redhat.com/errata/RHSA-2026:0035
reference_id	RHSA-2026:0035
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0035

reference_url	https://access.redhat.com/errata/RHSA-2026:0036
reference_id	RHSA-2026:0036
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0036

fixed_packages

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u17?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u17?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u17%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u11?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u11?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u11%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.20-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.20-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.20-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2025-62230

risk_score 3.3

exploitability 0.5

weighted_severity 6.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8h6n-ntrj-q7g6

url VCID-8k3e-h7va-myfg

vulnerability_id VCID-8k3e-h7va-myfg

summary X.Org Server (aka xserver and xorg-server) 1.15.0 through 1.16.x before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) sproc_dri3_query_version, (2) sproc_dri3_open, (3) sproc_dri3_pixmap_from_buffer, (4) sproc_dri3_buffer_from_pixmap, (5) sproc_dri3_fence_from_fd, (6) sproc_dri3_fd_from_fence, (7) proc_present_query_capabilities, (8) sproc_present_query_version, (9) sproc_present_pixmap, (10) sproc_present_notify_msc, (11) sproc_present_select_input, or (12) sproc_present_query_capabilities function in the (a) DRI3 or (b) Present extension.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8103.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8103.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-8103

reference_id

reference_type

scores

value	0.01787
scoring_system	epss
scoring_elements	0.83079
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-8103

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1168716
reference_id	1168716
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1168716

reference_url	https://security.gentoo.org/glsa/201504-06
reference_id	GLSA-201504-06
reference_type
scores
url	https://security.gentoo.org/glsa/201504-06

reference_url	https://access.redhat.com/errata/RHSA-2014:1983
reference_id	RHSA-2014:1983
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:1983

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.2.901-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2014-8103

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8k3e-h7va-myfg

url VCID-8unb-tn3a-abe3

vulnerability_id VCID-8unb-tn3a-abe3

summary The DBE extension in X.Org X Window System (aka X11 or X) X11R6.1 and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) ProcDbeSwapBuffers or (2) SProcDbeSwapBuffers function.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8097.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8097.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-8097

reference_id

reference_type

scores

value	0.01297
scoring_system	epss
scoring_elements	0.80046
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-8097

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1168705
reference_id	1168705
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1168705

reference_url	https://security.gentoo.org/glsa/201504-06
reference_id	GLSA-201504-06
reference_type
scores
url	https://security.gentoo.org/glsa/201504-06

reference_url	https://access.redhat.com/errata/RHSA-2014:1982
reference_id	RHSA-2014:1982
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:1982

reference_url	https://access.redhat.com/errata/RHSA-2014:1983
reference_id	RHSA-2014:1983
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:1983

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.2.901-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2014-8097

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8unb-tn3a-abe3

url VCID-939t-kz1h-k7d6

vulnerability_id VCID-939t-kz1h-k7d6

summary xorg-x11-server before 1.19.5 was missing length validation in X-Resource extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12186.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12186.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-12186

reference_id

reference_type

scores

value	0.0075
scoring_system	epss
scoring_elements	0.735
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-12186

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1509216
reference_id	1509216
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1509216

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.5-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2017-12186

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-939t-kz1h-k7d6

url VCID-95dx-8w8k-4kfp

vulnerability_id VCID-95dx-8w8k-4kfp

summary xorg: xwayland: Out-of-bounds write in CreatePointerBarrierClient()

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26598.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26598.json

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906
reference_id	1098906
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907
reference_id	1098907
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2345254
reference_id	2345254
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2345254

reference_url	https://access.redhat.com/errata/RHSA-2025:2500
reference_id	RHSA-2025:2500
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2500

reference_url	https://access.redhat.com/errata/RHSA-2025:2502
reference_id	RHSA-2025:2502
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2502

reference_url	https://access.redhat.com/errata/RHSA-2025:2861
reference_id	RHSA-2025:2861
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2861

reference_url	https://access.redhat.com/errata/RHSA-2025:2862
reference_id	RHSA-2025:2862
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2862

reference_url	https://access.redhat.com/errata/RHSA-2025:2865
reference_id	RHSA-2025:2865
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2865

reference_url	https://access.redhat.com/errata/RHSA-2025:2866
reference_id	RHSA-2025:2866
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2866

reference_url	https://access.redhat.com/errata/RHSA-2025:2873
reference_id	RHSA-2025:2873
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2873

reference_url	https://access.redhat.com/errata/RHSA-2025:2874
reference_id	RHSA-2025:2874
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2874

reference_url	https://access.redhat.com/errata/RHSA-2025:2875
reference_id	RHSA-2025:2875
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2875

reference_url	https://access.redhat.com/errata/RHSA-2025:2879
reference_id	RHSA-2025:2879
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2879

reference_url	https://access.redhat.com/errata/RHSA-2025:2880
reference_id	RHSA-2025:2880
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2880

reference_url	https://access.redhat.com/errata/RHSA-2025:3976
reference_id	RHSA-2025:3976
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3976

reference_url	https://access.redhat.com/errata/RHSA-2025:7163
reference_id	RHSA-2025:7163
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7163

reference_url	https://access.redhat.com/errata/RHSA-2025:7165
reference_id	RHSA-2025:7165
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7165

reference_url	https://access.redhat.com/errata/RHSA-2025:7458
reference_id	RHSA-2025:7458
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7458

fixed_packages

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u15?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u15?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u15%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u9?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u9?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u9%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.16-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.16-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2025-26598

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-95dx-8w8k-4kfp

url VCID-96ga-avmd-kubh

vulnerability_id VCID-96ga-avmd-kubh

summary xorg: xwayland: Use-after-free in PlayReleasedEvents()

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26600.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26600.json

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906
reference_id	1098906
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907
reference_id	1098907
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2345252
reference_id	2345252
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2345252

reference_url	https://access.redhat.com/errata/RHSA-2025:2500
reference_id	RHSA-2025:2500
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2500

reference_url	https://access.redhat.com/errata/RHSA-2025:2502
reference_id	RHSA-2025:2502
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2502

reference_url	https://access.redhat.com/errata/RHSA-2025:2861
reference_id	RHSA-2025:2861
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2861

reference_url	https://access.redhat.com/errata/RHSA-2025:2862
reference_id	RHSA-2025:2862
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2862

reference_url	https://access.redhat.com/errata/RHSA-2025:2865
reference_id	RHSA-2025:2865
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2865

reference_url	https://access.redhat.com/errata/RHSA-2025:2866
reference_id	RHSA-2025:2866
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2866

reference_url	https://access.redhat.com/errata/RHSA-2025:2873
reference_id	RHSA-2025:2873
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2873

reference_url	https://access.redhat.com/errata/RHSA-2025:2874
reference_id	RHSA-2025:2874
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2874

reference_url	https://access.redhat.com/errata/RHSA-2025:2875
reference_id	RHSA-2025:2875
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2875

reference_url	https://access.redhat.com/errata/RHSA-2025:2879
reference_id	RHSA-2025:2879
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2879

reference_url	https://access.redhat.com/errata/RHSA-2025:2880
reference_id	RHSA-2025:2880
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2880

reference_url	https://access.redhat.com/errata/RHSA-2025:3976
reference_id	RHSA-2025:3976
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3976

reference_url	https://access.redhat.com/errata/RHSA-2025:7163
reference_id	RHSA-2025:7163
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7163

reference_url	https://access.redhat.com/errata/RHSA-2025:7165
reference_id	RHSA-2025:7165
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7165

reference_url	https://access.redhat.com/errata/RHSA-2025:7458
reference_id	RHSA-2025:7458
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7458

fixed_packages

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u15?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u15?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u15%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u9?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u9?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u9%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.16-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.16-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2025-26600

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-96ga-avmd-kubh

url VCID-96zj-dxw7-jbf1

vulnerability_id VCID-96zj-dxw7-jbf1

summary Format string vulnerability in the LogVHdrMessageVerb function in os/log.c in X.Org X11 1.11 allows attackers to cause a denial of service or possibly execute arbitrary code via format string specifiers in an input device name.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2118.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2118.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2012-2118

reference_id

reference_type

scores

value	0.02146
scoring_system	epss
scoring_elements	0.84544
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2012-2118

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=673148
reference_id	673148
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=673148

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=814126
reference_id	814126
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=814126

reference_url	https://security.gentoo.org/glsa/201207-04
reference_id	GLSA-201207-04
reference_type
scores
url	https://security.gentoo.org/glsa/201207-04

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.12.1.902-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.12.1.902-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.12.1.902-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2012-2118

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-96zj-dxw7-jbf1

url VCID-97f6-pm5e-8qf3

vulnerability_id VCID-97f6-pm5e-8qf3

summary privilege escalation

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14665.json

reference_id

reference_type

scores

value	6.6
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14665.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-14665

reference_id

reference_type

scores

value	0.16034
scoring_system	epss
scoring_elements	0.94902
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-14665

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14665
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14665

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1637761
reference_id	1637761
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1637761

reference_url	https://security.archlinux.org/ASA-201810-15
reference_id	ASA-201810-15
reference_type
scores
url	https://security.archlinux.org/ASA-201810-15

reference_url

https://security.archlinux.org/AVG-788

reference_id

AVG-788

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-788

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/aix/local/45938.pl
reference_id	CVE-2018-14665
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/aix/local/45938.pl

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/45832.py
reference_id	CVE-2018-14665
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/45832.py

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/45697.txt
reference_id	CVE-2018-14665
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/45697.txt

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/45908.rb
reference_id	CVE-2018-14665
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/45908.rb

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/45922.sh
reference_id	CVE-2018-14665
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/45922.sh

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/openbsd/local/45742.sh
reference_id	CVE-2018-14665
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/openbsd/local/45742.sh

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/solaris/local/46142.sh
reference_id	CVE-2018-14665
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/solaris/local/46142.sh

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/local/47701.rb
reference_id	CVE-2018-14665
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/local/47701.rb

reference_url	https://raw.githubusercontent.com/rapid7/metasploit-framework/be6cfde92158d2c6716711046536c9f1ca44d958/modules/exploits/multi/local/xorg_x11_suid_server.rb
reference_id	CVE-2018-14665
reference_type	exploit
scores
url	https://raw.githubusercontent.com/rapid7/metasploit-framework/be6cfde92158d2c6716711046536c9f1ca44d958/modules/exploits/multi/local/xorg_x11_suid_server.rb

reference_url	https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/aix/local/xorg_x11_server.rb
reference_id	CVE-2018-14665
reference_type	exploit
scores
url	https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/aix/local/xorg_x11_server.rb

reference_url	https://twitter.com/hackerfantastic/status/1055517801224396800
reference_id	CVE-2018-14665
reference_type	exploit
scores
url	https://twitter.com/hackerfantastic/status/1055517801224396800

reference_url	https://security.gentoo.org/glsa/201810-09
reference_id	GLSA-201810-09
reference_type
scores
url	https://security.gentoo.org/glsa/201810-09

reference_url	https://access.redhat.com/errata/RHSA-2018:3410
reference_id	RHSA-2018:3410
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:3410

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.20.3-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.3-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.3-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2018-14665

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-97f6-pm5e-8qf3

url VCID-9k4g-mc81-tffe

vulnerability_id VCID-9k4g-mc81-tffe

summary Integer overflow in the ProcDRI2GetBuffers function in the DRI2 extension in X.Org Server (aka xserver and xorg-server) 1.7.0 through 1.16.x before 1.16.3 allows remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted request, which triggers an out-of-bounds read or write.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8094.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8094.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-8094

reference_id

reference_type

scores

value	0.01042
scoring_system	epss
scoring_elements	0.77789
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-8094

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1168691
reference_id	1168691
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1168691

reference_url	https://security.gentoo.org/glsa/201504-06
reference_id	GLSA-201504-06
reference_type
scores
url	https://security.gentoo.org/glsa/201504-06

reference_url	https://access.redhat.com/errata/RHSA-2014:1983
reference_id	RHSA-2014:1983
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:1983

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.2.901-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2014-8094

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9k4g-mc81-tffe

url VCID-9kj6-9etk-uudg

vulnerability_id VCID-9kj6-9etk-uudg

summary The RandR extension in XFree86 4.2.0, X.Org X Window System (aka X11 or X) X11R6.7, and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) SProcRRQueryVersion, (2) SProcRRGetScreenInfo, (3) SProcRRSelectInput, or (4) SProcRRConfigureOutputProperty function.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8101.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8101.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-8101

reference_id

reference_type

scores

value	0.01269
scoring_system	epss
scoring_elements	0.79818
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-8101

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1168713
reference_id	1168713
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1168713

reference_url	https://security.gentoo.org/glsa/201504-06
reference_id	GLSA-201504-06
reference_type
scores
url	https://security.gentoo.org/glsa/201504-06

reference_url	https://access.redhat.com/errata/RHSA-2014:1982
reference_id	RHSA-2014:1982
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:1982

reference_url	https://access.redhat.com/errata/RHSA-2014:1983
reference_id	RHSA-2014:1983
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:1983

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.2.901-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2014-8101

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9kj6-9etk-uudg

url VCID-9pnm-jep8-3bf9

vulnerability_id VCID-9pnm-jep8-3bf9

summary xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Integer overflow in X Record extension

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49179.json

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49179.json

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369
reference_id	1108369
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2369978
reference_id	2369978
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2369978

reference_url	https://access.redhat.com/errata/RHSA-2025:10258
reference_id	RHSA-2025:10258
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10258

reference_url	https://access.redhat.com/errata/RHSA-2025:10342
reference_id	RHSA-2025:10342
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10342

reference_url	https://access.redhat.com/errata/RHSA-2025:10343
reference_id	RHSA-2025:10343
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10343

reference_url	https://access.redhat.com/errata/RHSA-2025:10344
reference_id	RHSA-2025:10344
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10344

reference_url	https://access.redhat.com/errata/RHSA-2025:10346
reference_id	RHSA-2025:10346
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10346

reference_url	https://access.redhat.com/errata/RHSA-2025:10347
reference_id	RHSA-2025:10347
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10347

reference_url	https://access.redhat.com/errata/RHSA-2025:10348
reference_id	RHSA-2025:10348
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10348

reference_url	https://access.redhat.com/errata/RHSA-2025:10349
reference_id	RHSA-2025:10349
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10349

reference_url	https://access.redhat.com/errata/RHSA-2025:10350
reference_id	RHSA-2025:10350
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10350

reference_url	https://access.redhat.com/errata/RHSA-2025:10351
reference_id	RHSA-2025:10351
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10351

reference_url	https://access.redhat.com/errata/RHSA-2025:10352
reference_id	RHSA-2025:10352
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10352

reference_url	https://access.redhat.com/errata/RHSA-2025:10355
reference_id	RHSA-2025:10355
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10355

reference_url	https://access.redhat.com/errata/RHSA-2025:10356
reference_id	RHSA-2025:10356
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10356

reference_url	https://access.redhat.com/errata/RHSA-2025:10360
reference_id	RHSA-2025:10360
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10360

reference_url	https://access.redhat.com/errata/RHSA-2025:10370
reference_id	RHSA-2025:10370
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10370

reference_url	https://access.redhat.com/errata/RHSA-2025:10374
reference_id	RHSA-2025:10374
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10374

reference_url	https://access.redhat.com/errata/RHSA-2025:10375
reference_id	RHSA-2025:10375
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10375

reference_url	https://access.redhat.com/errata/RHSA-2025:10376
reference_id	RHSA-2025:10376
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10376

reference_url	https://access.redhat.com/errata/RHSA-2025:10377
reference_id	RHSA-2025:10377
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10377

reference_url	https://access.redhat.com/errata/RHSA-2025:10378
reference_id	RHSA-2025:10378
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10378

reference_url	https://access.redhat.com/errata/RHSA-2025:10381
reference_id	RHSA-2025:10381
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10381

reference_url	https://access.redhat.com/errata/RHSA-2025:10410
reference_id	RHSA-2025:10410
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10410

reference_url	https://access.redhat.com/errata/RHSA-2025:9303
reference_id	RHSA-2025:9303
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9303

reference_url	https://access.redhat.com/errata/RHSA-2025:9304
reference_id	RHSA-2025:9304
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9304

reference_url	https://access.redhat.com/errata/RHSA-2025:9305
reference_id	RHSA-2025:9305
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9305

reference_url	https://access.redhat.com/errata/RHSA-2025:9306
reference_id	RHSA-2025:9306
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9306

reference_url	https://access.redhat.com/errata/RHSA-2025:9392
reference_id	RHSA-2025:9392
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9392

reference_url	https://access.redhat.com/errata/RHSA-2025:9964
reference_id	RHSA-2025:9964
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9964

fixed_packages

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u16?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u16?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u16%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u10?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u10?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u10%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.16-1.2?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.16-1.2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2025-49179

risk_score 3.3

exploitability 0.5

weighted_severity 6.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9pnm-jep8-3bf9

url VCID-a2n5-8wwp-87hw

vulnerability_id VCID-a2n5-8wwp-87hw

summary A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Integer underflow leading to heap-buffer overflow may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14362.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14362.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-14362

reference_id

reference_type

scores

value	0.00232
scoring_system	epss
scoring_elements	0.46046
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-14362

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1869144
reference_id	1869144
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1869144

reference_url	https://security.gentoo.org/glsa/202012-01
reference_id	GLSA-202012-01
reference_type
scores
url	https://security.gentoo.org/glsa/202012-01

reference_url	https://access.redhat.com/errata/RHSA-2020:4910
reference_id	RHSA-2020:4910
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4910

reference_url	https://access.redhat.com/errata/RHSA-2020:4953
reference_id	RHSA-2020:4953
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4953

reference_url	https://access.redhat.com/errata/RHSA-2021:1804
reference_id	RHSA-2021:1804
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1804

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.20.9-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.9-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.9-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2020-14362

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-a2n5-8wwp-87hw

url VCID-azs1-b52k-qqgw

vulnerability_id VCID-azs1-b52k-qqgw

summary X.Org and XFree86, including libX11, xdm, xf86dga, xinit, xload, xtrans, and xterm, does not check the return values for setuid and seteuid calls when attempting to drop privileges, which might allow local users to gain privileges by causing those calls to fail, such as by exceeding a ulimit.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-4447.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-4447.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2006-4447

reference_id

reference_type

scores

value	0.00132
scoring_system	epss
scoring_elements	0.32324
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2006-4447

reference_url	https://security.gentoo.org/glsa/200608-25
reference_id	GLSA-200608-25
reference_type
scores
url	https://security.gentoo.org/glsa/200608-25

fixed_packages

url	pkg:deb/debian/xorg-server@1:1.0.2-9?distro=trixie
purl	pkg:deb/debian/xorg-server@1:1.0.2-9?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@1:1.0.2-9%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2006-4447

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-azs1-b52k-qqgw

url VCID-bj7e-pnpm-nqfw

vulnerability_id VCID-bj7e-pnpm-nqfw

summary X.Org server (xorg-server) 1.0.0 and later, X11R6.9.0, and X11R7.0 inadvertently treats the address of the geteuid function as if it is the return value of a call to geteuid, which allows local users to bypass intended restrictions and (1) execute arbitrary code via the -modulepath command line option or (2) overwrite arbitrary files via -logfile.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2006-0745

reference_id

reference_type

scores

value	0.00177
scoring_system	epss
scoring_elements	0.38946
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2006-0745

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=378465
reference_id	378465
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=378465

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/1596.txt
reference_id	OSVDB-24000;CVE-2006-0745
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/1596.txt

fixed_packages

url	pkg:deb/debian/xorg-server@1:1.0.2-1?distro=trixie
purl	pkg:deb/debian/xorg-server@1:1.0.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@1:1.0.2-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2006-0745

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bj7e-pnpm-nqfw

url VCID-bny6-pyf6-k3ht

vulnerability_id VCID-bny6-pyf6-k3ht

summary The XInput extension in X.Org X Window System (aka X11 or X) X11R4 and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) SProcXChangeDeviceControl, (2) ProcXChangeDeviceControl, (3) ProcXChangeFeedbackControl, (4) ProcXSendExtensionEvent, (5) SProcXIAllowEvents, (6) SProcXIChangeCursor, (7) ProcXIChangeHierarchy, (8) SProcXIGetClientPointer, (9) SProcXIGrabDevice, (10) SProcXIUngrabDevice, (11) ProcXIUngrabDevice, (12) SProcXIPassiveGrabDevice, (13) ProcXIPassiveGrabDevice, (14) SProcXIPassiveUngrabDevice, (15) ProcXIPassiveUngrabDevice, (16) SProcXListDeviceProperties, (17) SProcXDeleteDeviceProperty, (18) SProcXIListProperties, (19) SProcXIDeleteProperty, (20) SProcXIGetProperty, (21) SProcXIQueryDevice, (22) SProcXIQueryPointer, (23) SProcXISelectEvents, (24) SProcXISetClientPointer, (25) SProcXISetFocus, (26) SProcXIGetFocus, or (27) SProcXIWarpPointer function.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8095.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8095.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-8095

reference_id

reference_type

scores

value	0.01115
scoring_system	epss
scoring_elements	0.78527
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-8095

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1168694
reference_id	1168694
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1168694

reference_url	https://security.gentoo.org/glsa/201504-06
reference_id	GLSA-201504-06
reference_type
scores
url	https://security.gentoo.org/glsa/201504-06

reference_url	https://access.redhat.com/errata/RHSA-2014:1982
reference_id	RHSA-2014:1982
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:1982

reference_url	https://access.redhat.com/errata/RHSA-2014:1983
reference_id	RHSA-2014:1983
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:1983

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.2.901-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2014-8095

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bny6-pyf6-k3ht

url VCID-bxtg-a4vf-8fau

vulnerability_id VCID-bxtg-a4vf-8fau

summary xorg-x11-server: memory leak in ProcXkbGetKbdByName() in xkb/xkb.c

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3551.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3551.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-3551

reference_id

reference_type

scores

value	0.0063
scoring_system	epss
scoring_elements	0.7068
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-3551

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2140701
reference_id	2140701
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2140701

reference_url	https://security.gentoo.org/glsa/202305-30
reference_id	GLSA-202305-30
reference_type
scores
url	https://security.gentoo.org/glsa/202305-30

reference_url	https://access.redhat.com/errata/RHSA-2022:8491
reference_id	RHSA-2022:8491
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:8491

reference_url	https://access.redhat.com/errata/RHSA-2023:2248
reference_id	RHSA-2023:2248
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2248

reference_url	https://access.redhat.com/errata/RHSA-2023:2249
reference_id	RHSA-2023:2249
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2249

reference_url	https://access.redhat.com/errata/RHSA-2023:2805
reference_id	RHSA-2023:2805
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2805

reference_url	https://access.redhat.com/errata/RHSA-2023:2806
reference_id	RHSA-2023:2806
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2806

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u3?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.4-3?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.4-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.4-3%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2022-3551

risk_score 3.0

exploitability 0.5

weighted_severity 5.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bxtg-a4vf-8fau

url VCID-czx3-mdx4-hbey

vulnerability_id VCID-czx3-mdx4-hbey

summary xorg-x11-server: SELinux unlabeled GLX PBuffer

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0408.json

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0408.json

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2257689
reference_id	2257689
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2257689

reference_url	https://security.gentoo.org/glsa/202401-30
reference_id	GLSA-202401-30
reference_type
scores
url	https://security.gentoo.org/glsa/202401-30

reference_url	https://access.redhat.com/errata/RHSA-2024:0320
reference_id	RHSA-2024:0320
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0320

reference_url	https://access.redhat.com/errata/RHSA-2024:2169
reference_id	RHSA-2024:2169
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2169

reference_url	https://access.redhat.com/errata/RHSA-2024:2170
reference_id	RHSA-2024:2170
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2170

reference_url	https://access.redhat.com/errata/RHSA-2024:2995
reference_id	RHSA-2024:2995
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2995

reference_url	https://access.redhat.com/errata/RHSA-2024:2996
reference_id	RHSA-2024:2996
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2996

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u11?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u11?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u11%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u5?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u5%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.11-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.11-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.11-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2024-0408

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-czx3-mdx4-hbey

url VCID-d78c-241h-7yh6

vulnerability_id VCID-d78c-241h-7yh6

summary Array index error in the XFree86-Misc extension in X.Org Xserver before 1.4.1 allows context-dependent attackers to execute arbitrary code via a PassMessage request containing a large array index.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5760.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5760.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2007-5760

reference_id

reference_type

scores

value	0.04445
scoring_system	epss
scoring_elements	0.89242
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2007-5760

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=414031
reference_id	414031
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=414031

reference_url	https://security.gentoo.org/glsa/200801-09
reference_id	GLSA-200801-09
reference_type
scores
url	https://security.gentoo.org/glsa/200801-09

reference_url	https://access.redhat.com/errata/RHSA-2008:0030
reference_id	RHSA-2008:0030
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0030

reference_url	https://access.redhat.com/errata/RHSA-2008:0031
reference_id	RHSA-2008:0031
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0031

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2007-5760

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-d78c-241h-7yh6

url VCID-d837-arrp-cyhx

vulnerability_id VCID-d837-arrp-cyhx

summary The ProcPutImage function in dix/dispatch.c in X.Org Server (aka xserver and xorg-server) before 1.16.4 allows attackers to cause a denial of service (divide-by-zero and crash) via a zero-height PutImage request.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3418.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3418.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-3418

reference_id

reference_type

scores

value	0.00497
scoring_system	epss
scoring_elements	0.66197
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-3418

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1216020
reference_id	1216020
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1216020

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=774308
reference_id	774308
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=774308

reference_url	https://security.gentoo.org/glsa/201701-64
reference_id	GLSA-201701-64
reference_type
scores
url	https://security.gentoo.org/glsa/201701-64

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.16.4-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.16.4-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2015-3418

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-d837-arrp-cyhx

url VCID-d9am-npf2-jkfm

vulnerability_id VCID-d9am-npf2-jkfm

summary xorg-x11-server: XkbGetKbdByName use-after-free

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-4283.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-4283.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-4283

reference_id

reference_type

scores

value	0.002
scoring_system	epss
scoring_elements	0.41916
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-4283

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071
reference_id	1026071
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2151761
reference_id	2151761
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2151761

reference_url	https://security.gentoo.org/glsa/202305-30
reference_id	GLSA-202305-30
reference_type
scores
url	https://security.gentoo.org/glsa/202305-30

reference_url	https://access.redhat.com/errata/RHSA-2023:0045
reference_id	RHSA-2023:0045
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0045

reference_url	https://access.redhat.com/errata/RHSA-2023:0046
reference_id	RHSA-2023:0046
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0046

reference_url	https://access.redhat.com/errata/RHSA-2023:2248
reference_id	RHSA-2023:2248
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2248

reference_url	https://access.redhat.com/errata/RHSA-2023:2249
reference_id	RHSA-2023:2249
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2249

reference_url	https://access.redhat.com/errata/RHSA-2023:2257
reference_id	RHSA-2023:2257
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2257

reference_url	https://access.redhat.com/errata/RHSA-2023:2805
reference_id	RHSA-2023:2805
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2805

reference_url	https://access.redhat.com/errata/RHSA-2023:2806
reference_id	RHSA-2023:2806
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2806

reference_url	https://access.redhat.com/errata/RHSA-2023:2830
reference_id	RHSA-2023:2830
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2830

reference_url	https://access.redhat.com/errata/RHSA-2025:12751
reference_id	RHSA-2025:12751
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12751

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u4?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u4%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.5-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.5-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.5-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2022-4283

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-d9am-npf2-jkfm

url VCID-dbns-h674-n7gm

vulnerability_id VCID-dbns-h674-n7gm

summary X.Org X Window System (aka X11 and X) X11R5 and X.Org Server (aka xserver and xorg-server) before 1.16.3, when using SUN-DES-1 (Secure RPC) authentication credentials, does not check the return value of a malloc call, which allows remote attackers to cause a denial of service (NULL pointer dereference and server crash) via a crafted connection request.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8091.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8091.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-8091

reference_id

reference_type

scores

value	0.04839
scoring_system	epss
scoring_elements	0.89707
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-8091

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1168680
reference_id	1168680
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1168680

reference_url	https://security.gentoo.org/glsa/201504-06
reference_id	GLSA-201504-06
reference_type
scores
url	https://security.gentoo.org/glsa/201504-06

reference_url	https://access.redhat.com/errata/RHSA-2014:1982
reference_id	RHSA-2014:1982
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:1982

reference_url	https://access.redhat.com/errata/RHSA-2014:1983
reference_id	RHSA-2014:1983
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:1983

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.2.901-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2014-8091

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dbns-h674-n7gm

url VCID-dnsa-z3ck-53dc

vulnerability_id VCID-dnsa-z3ck-53dc

summary The authentication setup in XWayland 1.16.x and 1.17.x before 1.17.2 starts the server in non-authenticating mode, which allows local users to read from or send information to arbitrary X11 clients via vectors involving a UNIX socket.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3164.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3164.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-3164

reference_id

reference_type

scores

value	0.00065
scoring_system	epss
scoring_elements	0.2041
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-3164

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1219548
reference_id	1219548
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1219548

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=788410
reference_id	788410
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=788410

reference_url	https://security.gentoo.org/glsa/201701-64
reference_id	GLSA-201701-64
reference_type
scores
url	https://security.gentoo.org/glsa/201701-64

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.17.2-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.17.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.17.2-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2015-3164

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dnsa-z3ck-53dc

url VCID-ef9m-a6nn-j3d2

vulnerability_id VCID-ef9m-a6nn-j3d2

summary The fbComposite function in fbpict.c in the Render extension in the X server in X.Org X11R7.1 allows remote authenticated users to cause a denial of service (memory corruption and daemon crash) or possibly execute arbitrary code via a crafted request, related to an incorrect macro definition.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1166.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1166.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2010-1166

reference_id

reference_type

scores

value	0.03655
scoring_system	epss
scoring_elements	0.88078
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2010-1166

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=582601
reference_id	582601
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=582601

reference_url	https://access.redhat.com/errata/RHSA-2010:0382
reference_id	RHSA-2010:0382
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2010:0382

fixed_packages

url	pkg:deb/debian/xorg-server@0?distro=trixie
purl	pkg:deb/debian/xorg-server@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@0%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2010-1166

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ef9m-a6nn-j3d2

url VCID-egcx-kc7z-skfq

vulnerability_id VCID-egcx-kc7z-skfq

summary xorg-x11-server before 1.19.5 was vulnerable to integer overflow in (S)ProcXIBarrierReleasePointer functions allowing malicious X client to cause X server to crash or possibly execute arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12179.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12179.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-12179

reference_id

reference_type

scores

value	0.00838
scoring_system	epss
scoring_elements	0.75042
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-12179

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1509220
reference_id	1509220
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1509220

reference_url	https://security.gentoo.org/glsa/201711-05
reference_id	GLSA-201711-05
reference_type
scores
url	https://security.gentoo.org/glsa/201711-05

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.5-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2017-12179

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-egcx-kc7z-skfq

url VCID-ej11-bqxf-7qas

vulnerability_id VCID-ej11-bqxf-7qas

summary A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Out-Of-Bounds access in XkbSetNames function may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14345.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14345.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-14345

reference_id

reference_type

scores

value	0.00101
scoring_system	epss
scoring_elements	0.27491
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-14345

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1862241
reference_id	1862241
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1862241

reference_url	https://security.gentoo.org/glsa/202012-01
reference_id	GLSA-202012-01
reference_type
scores
url	https://security.gentoo.org/glsa/202012-01

reference_url	https://access.redhat.com/errata/RHSA-2020:4910
reference_id	RHSA-2020:4910
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4910

reference_url	https://access.redhat.com/errata/RHSA-2020:4953
reference_id	RHSA-2020:4953
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4953

reference_url	https://access.redhat.com/errata/RHSA-2021:1804
reference_id	RHSA-2021:1804
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1804

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.20.9-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.9-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.9-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2020-14345

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ej11-bqxf-7qas

url VCID-f67a-ybc4-x3c2

vulnerability_id VCID-f67a-ybc4-x3c2

summary privilege escalation

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2319.json

reference_id

reference_type

scores

value	7.6
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2319.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-2319

reference_id

reference_type

scores

value	0.00037
scoring_system	epss
scoring_elements	0.11235
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-2319

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014903
reference_id	1014903
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014903

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2106671
reference_id	2106671
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2106671

reference_url

reference_id

AVG-2770

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://api.first.org/data/v1/epss?cve=CVE-2008-2362

reference_url	https://security.gentoo.org/glsa/202210-30
reference_id	GLSA-202210-30
reference_type
scores
url	https://security.gentoo.org/glsa/202210-30

reference_url	https://access.redhat.com/errata/RHSA-2022:5905
reference_id	RHSA-2022:5905
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:5905

reference_url	https://access.redhat.com/errata/RHSA-2022:7583
reference_id	RHSA-2022:7583
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:7583

reference_url	https://access.redhat.com/errata/RHSA-2022:8221
reference_id	RHSA-2022:8221
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:8221

reference_url	https://access.redhat.com/errata/RHSA-2022:8222
reference_id	RHSA-2022:8222
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:8222

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.4-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.4-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.4-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2022-2319

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-f67a-ybc4-x3c2

url VCID-f9yc-23gb-qyhy

vulnerability_id VCID-f9yc-23gb-qyhy

summary Multiple integer overflows in the Render extension in the X server 1.4 in X.Org X11R7.3 allow context-dependent attackers to execute arbitrary code via a (1) SProcRenderCreateLinearGradient, (2) SProcRenderCreateRadialGradient, or (3) SProcRenderCreateConicalGradient request with an invalid field specifying the number of bytes to swap in the request data, which triggers heap memory corruption.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2362.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2362.json

reference_url

reference_id

reference_type

scores

value	0.02076
scoring_system	epss
scoring_elements	0.84279
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2008-2362

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=448785
reference_id	448785
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=448785

reference_url	https://security.gentoo.org/glsa/200806-07
reference_id	GLSA-200806-07
reference_type
scores
url	https://security.gentoo.org/glsa/200806-07

reference_url	https://access.redhat.com/errata/RHSA-2008:0504
reference_id	RHSA-2008:0504
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0504

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.4.1~git20080517-2?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.4.1~git20080517-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.1~git20080517-2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2008-2362

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-f9yc-23gb-qyhy

url VCID-fdrh-s6h2-buhk

vulnerability_id VCID-fdrh-s6h2-buhk

summary Multiple integer overflows in X.Org X Window System (aka X11 or X) X11R1 and X.Org Server (aka xserver and xorg-server) before 1.16.3 allow remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted request to the (1) ProcPutImage, (2) GetHosts, (3) RegionSizeof, or (4) REQUEST_FIXED_SIZE function, which triggers an out-of-bounds read or write.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8092.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8092.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-8092

reference_id

reference_type

scores

value	0.01293
scoring_system	epss
scoring_elements	0.80018
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-8092

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1168684
reference_id	1168684
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1168684

reference_url	https://security.gentoo.org/glsa/201504-06
reference_id	GLSA-201504-06
reference_type
scores
url	https://security.gentoo.org/glsa/201504-06

reference_url	https://access.redhat.com/errata/RHSA-2014:1982
reference_id	RHSA-2014:1982
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:1982

reference_url	https://access.redhat.com/errata/RHSA-2014:1983
reference_id	RHSA-2014:1983
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:1983

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.2.901-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2014-8092

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fdrh-s6h2-buhk

url VCID-fm63-7bke-rbe2

vulnerability_id VCID-fm63-7bke-rbe2

summary A flaw was found in the X.Org Server before version 1.20.10. An out-of-bounds access in the XkbSetMap function may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14360.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14360.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-14360

reference_id

reference_type

scores

value	0.00135
scoring_system	epss
scoring_elements	0.3308
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-14360

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1869139
reference_id	1869139
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1869139

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976216
reference_id	976216
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976216

reference_url	https://security.archlinux.org/ASA-202012-6
reference_id	ASA-202012-6
reference_type
scores
url	https://security.archlinux.org/ASA-202012-6

reference_url

reference_id

AVG-1310

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0409.json

reference_url	https://security.gentoo.org/glsa/202012-01
reference_id	GLSA-202012-01
reference_type
scores
url	https://security.gentoo.org/glsa/202012-01

reference_url	https://access.redhat.com/errata/RHSA-2020:5408
reference_id	RHSA-2020:5408
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5408

reference_url	https://access.redhat.com/errata/RHSA-2021:1804
reference_id	RHSA-2021:1804
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1804

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.20.10-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.10-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.10-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2020-14360

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fm63-7bke-rbe2

url VCID-fr1v-dcuh-jbhs

vulnerability_id VCID-fr1v-dcuh-jbhs

summary xorg-x11-server: SELinux context corruption

references

reference_url

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0409.json

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2257690
reference_id	2257690
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2257690

reference_url	https://security.gentoo.org/glsa/202401-30
reference_id	GLSA-202401-30
reference_type
scores
url	https://security.gentoo.org/glsa/202401-30

reference_url	https://access.redhat.com/errata/RHSA-2024:0320
reference_id	RHSA-2024:0320
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0320

reference_url	https://access.redhat.com/errata/RHSA-2024:2169
reference_id	RHSA-2024:2169
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2169

reference_url	https://access.redhat.com/errata/RHSA-2024:2170
reference_id	RHSA-2024:2170
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2170

reference_url	https://access.redhat.com/errata/RHSA-2024:2995
reference_id	RHSA-2024:2995
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2995

reference_url	https://access.redhat.com/errata/RHSA-2024:2996
reference_id	RHSA-2024:2996
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2996

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u11?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u11?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u11%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u5?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u5%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.11-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.11-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.11-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2024-0409

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fr1v-dcuh-jbhs

url VCID-ftyy-61hx-wkff

vulnerability_id VCID-ftyy-61hx-wkff

summary X.org X server 1.13.3 and earlier, when not run as root, allows local users to cause a denial of service (crash) or possibly gain privileges via vectors involving cached xkb files.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1056.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1056.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-1056

reference_id

reference_type

scores

value	0.00054
scoring_system	epss
scoring_elements	0.17066
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-1056

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1052324
reference_id	1052324
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1052324

reference_url	https://security.gentoo.org/glsa/201405-07
reference_id	GLSA-201405-07
reference_type
scores
url	https://security.gentoo.org/glsa/201405-07

fixed_packages

url	pkg:deb/debian/xorg-server@0?distro=trixie
purl	pkg:deb/debian/xorg-server@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@0%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2013-1056

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ftyy-61hx-wkff

url VCID-g9ce-3gn2-ekbh

vulnerability_id VCID-g9ce-3gn2-ekbh

summary A flaw was found in xorg-x11-server in versions before 1.20.11. An integer underflow can occur in xserver which can lead to a local privilege escalation. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3472.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3472.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-3472

reference_id

reference_type

scores

value	0.00081
scoring_system	epss
scoring_elements	0.23822
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-3472

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1944167
reference_id	1944167
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1944167

reference_url

https://security.archlinux.org/AVG-1811

reference_id

AVG-1811

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1811

reference_url

https://security.archlinux.org/AVG-1812

reference_id

AVG-1812

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1812

reference_url	https://security.gentoo.org/glsa/202104-02
reference_id	GLSA-202104-02
reference_type
scores
url	https://security.gentoo.org/glsa/202104-02

reference_url	https://access.redhat.com/errata/RHSA-2021:2033
reference_id	RHSA-2021:2033
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:2033

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.20.11-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.11-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2021-3472

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-g9ce-3gn2-ekbh

url VCID-gq7x-petb-hfau

vulnerability_id VCID-gq7x-petb-hfau

summary xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Unprocessed Client Request Due to Bytes to Ignore

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49178.json

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49178.json

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369
reference_id	1108369
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2369977
reference_id	2369977
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2369977

reference_url	https://access.redhat.com/errata/RHSA-2025:10258
reference_id	RHSA-2025:10258
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10258

reference_url	https://access.redhat.com/errata/RHSA-2025:10342
reference_id	RHSA-2025:10342
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10342

reference_url	https://access.redhat.com/errata/RHSA-2025:10343
reference_id	RHSA-2025:10343
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10343

reference_url	https://access.redhat.com/errata/RHSA-2025:10344
reference_id	RHSA-2025:10344
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10344

reference_url	https://access.redhat.com/errata/RHSA-2025:10346
reference_id	RHSA-2025:10346
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10346

reference_url	https://access.redhat.com/errata/RHSA-2025:10347
reference_id	RHSA-2025:10347
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10347

reference_url	https://access.redhat.com/errata/RHSA-2025:10348
reference_id	RHSA-2025:10348
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10348

reference_url	https://access.redhat.com/errata/RHSA-2025:10349
reference_id	RHSA-2025:10349
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10349

reference_url	https://access.redhat.com/errata/RHSA-2025:10350
reference_id	RHSA-2025:10350
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10350

reference_url	https://access.redhat.com/errata/RHSA-2025:10351
reference_id	RHSA-2025:10351
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10351

reference_url	https://access.redhat.com/errata/RHSA-2025:10352
reference_id	RHSA-2025:10352
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10352

reference_url	https://access.redhat.com/errata/RHSA-2025:10355
reference_id	RHSA-2025:10355
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10355

reference_url	https://access.redhat.com/errata/RHSA-2025:10356
reference_id	RHSA-2025:10356
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10356

reference_url	https://access.redhat.com/errata/RHSA-2025:10360
reference_id	RHSA-2025:10360
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10360

reference_url	https://access.redhat.com/errata/RHSA-2025:10370
reference_id	RHSA-2025:10370
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10370

reference_url	https://access.redhat.com/errata/RHSA-2025:10374
reference_id	RHSA-2025:10374
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10374

reference_url	https://access.redhat.com/errata/RHSA-2025:10375
reference_id	RHSA-2025:10375
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10375

reference_url	https://access.redhat.com/errata/RHSA-2025:10376
reference_id	RHSA-2025:10376
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10376

reference_url	https://access.redhat.com/errata/RHSA-2025:10377
reference_id	RHSA-2025:10377
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10377

reference_url	https://access.redhat.com/errata/RHSA-2025:10378
reference_id	RHSA-2025:10378
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10378

reference_url	https://access.redhat.com/errata/RHSA-2025:10381
reference_id	RHSA-2025:10381
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10381

reference_url	https://access.redhat.com/errata/RHSA-2025:10410
reference_id	RHSA-2025:10410
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10410

reference_url	https://access.redhat.com/errata/RHSA-2025:9303
reference_id	RHSA-2025:9303
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9303

reference_url	https://access.redhat.com/errata/RHSA-2025:9304
reference_id	RHSA-2025:9304
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9304

reference_url	https://access.redhat.com/errata/RHSA-2025:9305
reference_id	RHSA-2025:9305
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9305

reference_url	https://access.redhat.com/errata/RHSA-2025:9306
reference_id	RHSA-2025:9306
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9306

reference_url	https://access.redhat.com/errata/RHSA-2025:9392
reference_id	RHSA-2025:9392
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9392

reference_url	https://access.redhat.com/errata/RHSA-2025:9964
reference_id	RHSA-2025:9964
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9964

fixed_packages

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u16?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u16?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u16%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u10?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u10?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u10%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.16-1.2?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.16-1.2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2025-49178

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gq7x-petb-hfau

url VCID-h6us-hyjy-7ye4

vulnerability_id VCID-h6us-hyjy-7ye4

summary Integer overflow in the ProcRenderCreateCursor function in the Render extension in the X server 1.4 in X.Org X11R7.3 allows context-dependent attackers to cause a denial of service (daemon crash) via unspecified request fields that are used to calculate a glyph buffer size, which triggers a dereference of unmapped memory.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2361.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2361.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2008-2361

reference_id

reference_type

scores

value	0.01482
scoring_system	epss
scoring_elements	0.81336
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2008-2361

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=448784
reference_id	448784
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=448784

reference_url	https://security.gentoo.org/glsa/200806-07
reference_id	GLSA-200806-07
reference_type
scores
url	https://security.gentoo.org/glsa/200806-07

reference_url	https://access.redhat.com/errata/RHSA-2008:0502
reference_id	RHSA-2008:0502
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0502

reference_url	https://access.redhat.com/errata/RHSA-2008:0503
reference_id	RHSA-2008:0503
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0503

reference_url	https://access.redhat.com/errata/RHSA-2008:0504
reference_id	RHSA-2008:0504
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0504

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.4.1~git20080517-2?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.4.1~git20080517-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.1~git20080517-2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2008-2361

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-h6us-hyjy-7ye4

url VCID-hnhq-2yq6-87cn

vulnerability_id VCID-hnhq-2yq6-87cn

summary Integer overflow in the AllocateGlyph function in the Render extension in the X server 1.4 in X.Org X11R7.3 allows context-dependent attackers to execute arbitrary code via unspecified request fields that are used to calculate a heap buffer size, which triggers a heap-based buffer overflow.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2360.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2360.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2008-2360

reference_id

reference_type

scores

value	0.0192
scoring_system	epss
scoring_elements	0.83681
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2008-2360

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=448783
reference_id	448783
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=448783

reference_url	https://security.gentoo.org/glsa/200806-07
reference_id	GLSA-200806-07
reference_type
scores
url	https://security.gentoo.org/glsa/200806-07

reference_url	https://access.redhat.com/errata/RHSA-2008:0502
reference_id	RHSA-2008:0502
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0502

reference_url	https://access.redhat.com/errata/RHSA-2008:0503
reference_id	RHSA-2008:0503
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0503

reference_url	https://access.redhat.com/errata/RHSA-2008:0504
reference_id	RHSA-2008:0504
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0504

reference_url	https://access.redhat.com/errata/RHSA-2008:0512
reference_id	RHSA-2008:0512
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0512

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.4.1~git20080517-2?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.4.1~git20080517-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.1~git20080517-2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2008-2360

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hnhq-2yq6-87cn

url VCID-hzef-8edc-hyev

vulnerability_id VCID-hzef-8edc-hyev

summary A flaw was found in the way xserver memory was not properly initialized. This could leak parts of server memory to the X client. In cases where Xorg server runs with elevated privileges, this could result in possible ASLR bypass. Xorg-server before version 1.20.9 is vulnerable.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14347.json

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14347.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-14347

reference_id

reference_type

scores

value	0.00098
scoring_system	epss
scoring_elements	0.26971
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-14347

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1862258
reference_id	1862258
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1862258

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=968986
reference_id	968986
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=968986

reference_url

https://security.archlinux.org/AVG-1211

reference_id

AVG-1211

reference_type

scores

value	Low
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1211

reference_url	https://security.gentoo.org/glsa/202012-01
reference_id	GLSA-202012-01
reference_type
scores
url	https://security.gentoo.org/glsa/202012-01

reference_url	https://access.redhat.com/errata/RHSA-2020:5408
reference_id	RHSA-2020:5408
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5408

reference_url	https://access.redhat.com/errata/RHSA-2021:1804
reference_id	RHSA-2021:1804
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1804

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.20.9-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.9-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.9-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2020-14347

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hzef-8edc-hyev

url VCID-j463-aw53-kuc4

vulnerability_id VCID-j463-aw53-kuc4

summary It was found that xorg-x11-server before 1.19.0 including uses memcmp() to check the received MIT cookie against a series of valid cookies. If the cookie is correct, it is allowed to attach to the Xorg session. Since most memcmp() implementations return after an invalid byte is seen, this causes a time difference between a valid and invalid byte, which could allow an efficient brute force attack.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-2624.json

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-2624.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-2624

reference_id

reference_type

scores

value	0.00046
scoring_system	epss
scoring_elements	0.14713
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-2624

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1424984
reference_id	1424984
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1424984

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=856398
reference_id	856398
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=856398

reference_url	https://security.gentoo.org/glsa/201704-03
reference_id	GLSA-201704-03
reference_type
scores
url	https://security.gentoo.org/glsa/201704-03

reference_url	https://security.gentoo.org/glsa/201710-30
reference_id	GLSA-201710-30
reference_type
scores
url	https://security.gentoo.org/glsa/201710-30

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.19.2-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.19.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2017-2624

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-j463-aw53-kuc4

url VCID-j55v-3y8e-2kf3

vulnerability_id VCID-j55v-3y8e-2kf3

summary The GLX extension in X.Org xserver 1.7.7 allows remote authenticated users to cause a denial of service (server crash) and possibly execute arbitrary code via (1) a crafted request that triggers a client swap in glx/glxcmdsswap.c; or (2) a crafted length or (3) a negative value in the screen field in a request to glx/glxcmds.c.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4818.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4818.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2010-4818

reference_id

reference_type

scores

value	0.02846
scoring_system	epss
scoring_elements	0.8649
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2010-4818

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=740954
reference_id	740954
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=740954

reference_url	https://access.redhat.com/errata/RHSA-2011:1359
reference_id	RHSA-2011:1359
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:1359

reference_url	https://access.redhat.com/errata/RHSA-2011:1360
reference_id	RHSA-2011:1360
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:1360

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.9.99.902-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.9.99.902-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.9.99.902-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2010-4818

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-j55v-3y8e-2kf3

url VCID-jrks-xpht-eycq

vulnerability_id VCID-jrks-xpht-eycq

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14361.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14361.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-14361

reference_id

reference_type

scores

value	0.00232
scoring_system	epss
scoring_elements	0.46046
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-14361

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1869142
reference_id	1869142
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1869142

reference_url	https://security.gentoo.org/glsa/202012-01
reference_id	GLSA-202012-01
reference_type
scores
url	https://security.gentoo.org/glsa/202012-01

reference_url	https://access.redhat.com/errata/RHSA-2020:4910
reference_id	RHSA-2020:4910
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4910

reference_url	https://access.redhat.com/errata/RHSA-2020:4953
reference_id	RHSA-2020:4953
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4953

reference_url	https://access.redhat.com/errata/RHSA-2021:1804
reference_id	RHSA-2021:1804
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1804

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.20.9-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.9-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.9-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2020-14361

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jrks-xpht-eycq

url VCID-jt46-r94m-v7er

vulnerability_id VCID-jt46-r94m-v7er

summary The SProcXCMiscGetXIDList function in the XC-MISC extension in X.Org X Window System (aka X11 or X) X11R6.0 and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8096.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8096.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-8096

reference_id

reference_type

scores

value	0.01014
scoring_system	epss
scoring_elements	0.7749
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-8096

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1168700
reference_id	1168700
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1168700

reference_url	https://security.gentoo.org/glsa/201504-06
reference_id	GLSA-201504-06
reference_type
scores
url	https://security.gentoo.org/glsa/201504-06

reference_url	https://access.redhat.com/errata/RHSA-2014:1982
reference_id	RHSA-2014:1982
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:1982

reference_url	https://access.redhat.com/errata/RHSA-2014:1983
reference_id	RHSA-2014:1983
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:1983

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.2.901-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2014-8096

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jt46-r94m-v7er

url VCID-jx8z-exfq-sqcn

vulnerability_id VCID-jx8z-exfq-sqcn

summary X.Org Server (aka xserver and xorg-server) before 1.16.3 and 1.17.x before 1.17.1 allows remote attackers to obtain sensitive information from process memory or cause a denial of service (crash) via a crafted string length value in a XkbSetGeometry request.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-0255.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-0255.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-0255

reference_id

reference_type

scores

value	0.06422
scoring_system	epss
scoring_elements	0.91213
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-0255

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0255
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0255

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1189062
reference_id	1189062
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1189062

reference_url	https://security.gentoo.org/glsa/201504-06
reference_id	GLSA-201504-06
reference_type
scores
url	https://security.gentoo.org/glsa/201504-06

reference_url	https://access.redhat.com/errata/RHSA-2015:0797
reference_id	RHSA-2015:0797
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:0797

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.16.4-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.16.4-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2015-0255

risk_score 0.1

exploitability 0.5

weighted_severity 0.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jx8z-exfq-sqcn

url VCID-jzxy-vgcy-nbbz

vulnerability_id VCID-jzxy-vgcy-nbbz

summary xorg-x11-server before 1.19.5 was missing length validation in XFree86 DGA extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12181.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12181.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-12181

reference_id

reference_type

scores

value	0.00838
scoring_system	epss
scoring_elements	0.75042
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-12181

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1509222
reference_id	1509222
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1509222

reference_url	https://security.gentoo.org/glsa/201711-05
reference_id	GLSA-201711-05
reference_type
scores
url	https://security.gentoo.org/glsa/201711-05

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.5-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2017-12181

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jzxy-vgcy-nbbz

url VCID-k29g-v3tn-67bc

vulnerability_id VCID-k29g-v3tn-67bc

summary xorg-x11-server before 1.19.5 was missing length validation in XFree86 VidModeExtension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12180.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12180.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-12180

reference_id

reference_type

scores

value	0.00502
scoring_system	epss
scoring_elements	0.66407
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-12180

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1509221
reference_id	1509221
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1509221

reference_url	https://security.gentoo.org/glsa/201711-05
reference_id	GLSA-201711-05
reference_type
scores
url	https://security.gentoo.org/glsa/201711-05

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.5-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2017-12180

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-k29g-v3tn-67bc

url VCID-k3mg-7ndc-sqe7

vulnerability_id VCID-k3mg-7ndc-sqe7

summary In X.Org Server (aka xserver and xorg-server) before 1.19.4, an attacker authenticated to an X server with the X shared memory extension enabled can cause aborts of the X server or replace shared memory segments of other X clients in the same session.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13721.json

reference_id

reference_type

scores

value	3.6
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13721.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-13721

reference_id

reference_type

scores

value	0.0008
scoring_system	epss
scoring_elements	0.23572
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-13721

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1500387
reference_id	1500387
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1500387

reference_url	https://security.archlinux.org/ASA-201710-10
reference_id	ASA-201710-10
reference_type
scores
url	https://security.archlinux.org/ASA-201710-10

reference_url

reference_id

AVG-432

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12187.json

reference_url	https://security.gentoo.org/glsa/201710-30
reference_id	GLSA-201710-30
reference_type
scores
url	https://security.gentoo.org/glsa/201710-30

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.19.4-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.19.4-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.4-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2017-13721

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-k3mg-7ndc-sqe7

url VCID-kqe5-6n97-aufv

vulnerability_id VCID-kqe5-6n97-aufv

summary xorg-x11-server before 1.19.5 was missing length validation in RENDER extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.

references

reference_url

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12187.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-12187

reference_id

reference_type

scores

value	0.00843
scoring_system	epss
scoring_elements	0.75119
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-12187

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1509217
reference_id	1509217
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1509217

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.5-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2017-12187

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kqe5-6n97-aufv

url VCID-ksb1-g8mu-nbhu

vulnerability_id VCID-ksb1-g8mu-nbhu

summary xorg-x11-server: XvdiSelectVideoNotify use-after-free

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46342.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46342.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-46342

reference_id

reference_type

scores

value	0.00132
scoring_system	epss
scoring_elements	0.32304
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-46342

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071
reference_id	1026071
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2151757
reference_id	2151757
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2151757

reference_url	https://security.gentoo.org/glsa/202305-30
reference_id	GLSA-202305-30
reference_type
scores
url	https://security.gentoo.org/glsa/202305-30

reference_url	https://access.redhat.com/errata/RHSA-2023:0045
reference_id	RHSA-2023:0045
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0045

reference_url	https://access.redhat.com/errata/RHSA-2023:0046
reference_id	RHSA-2023:0046
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0046

reference_url	https://access.redhat.com/errata/RHSA-2023:2248
reference_id	RHSA-2023:2248
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2248

reference_url	https://access.redhat.com/errata/RHSA-2023:2249
reference_id	RHSA-2023:2249
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2249

reference_url	https://access.redhat.com/errata/RHSA-2023:2257
reference_id	RHSA-2023:2257
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2257

reference_url	https://access.redhat.com/errata/RHSA-2023:2805
reference_id	RHSA-2023:2805
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2805

reference_url	https://access.redhat.com/errata/RHSA-2023:2806
reference_id	RHSA-2023:2806
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2806

reference_url	https://access.redhat.com/errata/RHSA-2023:2830
reference_id	RHSA-2023:2830
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2830

reference_url	https://access.redhat.com/errata/RHSA-2025:12751
reference_id	RHSA-2025:12751
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12751

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u4?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u4%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.5-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.5-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.5-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2022-46342

risk_score 4.0

exploitability 0.5

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ksb1-g8mu-nbhu

url VCID-ksup-ynuw-3kf7

vulnerability_id VCID-ksup-ynuw-3kf7

summary multiple issues

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10971.json

reference_id

reference_type

scores

value	4.7
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10971.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-10971

reference_id

reference_type

scores

value	0.02753
scoring_system	epss
scoring_elements	0.86277
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-10971

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10971
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10971

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10972
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10972

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1473204
reference_id	1473204
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1473204

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867492
reference_id	867492
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867492

reference_url	https://security.archlinux.org/ASA-201708-11
reference_id	ASA-201708-11
reference_type
scores
url	https://security.archlinux.org/ASA-201708-11

reference_url

reference_id

AVG-341

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://api.first.org/data/v1/epss?cve=CVE-2008-0006

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.19.3-2?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.19.3-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.3-2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2017-10971

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ksup-ynuw-3kf7

url VCID-ktpn-yv97-nycv

vulnerability_id VCID-ktpn-yv97-nycv

summary Buffer overflow in (1) X.Org Xserver before 1.4.1, and (2) the libfont and libXfont libraries on some platforms including Sun Solaris, allows context-dependent attackers to execute arbitrary code via a PCF font with a large difference between the last col and first col values in the PCF_BDF_ENCODINGS table.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-0006.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-0006.json

reference_url

reference_id

reference_type

scores

value	0.23908
scoring_system	epss
scoring_elements	0.96127
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2008-0006

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=428044
reference_id	428044
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=428044

reference_url	https://security.gentoo.org/glsa/200801-09
reference_id	GLSA-200801-09
reference_type
scores
url	https://security.gentoo.org/glsa/200801-09

reference_url	https://access.redhat.com/errata/RHSA-2008:0029
reference_id	RHSA-2008:0029
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0029

reference_url	https://access.redhat.com/errata/RHSA-2008:0030
reference_id	RHSA-2008:0030
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0030

reference_url	https://access.redhat.com/errata/RHSA-2008:0064
reference_id	RHSA-2008:0064
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0064

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2008-0006

risk_score 0.1

exploitability 0.5

weighted_severity 0.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ktpn-yv97-nycv

url VCID-kue6-ss77-fqah

vulnerability_id VCID-kue6-ss77-fqah

summary Integer overflow in the ProcDbeGetVisualInfo function in the DBE extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree86 X server, allows local users to execute arbitrary code via a crafted X protocol request that triggers memory corruption during processing of unspecified data structures.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-6102.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-6102.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2006-6102

reference_id

reference_type

scores

value	0.06429
scoring_system	epss
scoring_elements	0.91219
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2006-6102

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1618239
reference_id	1618239
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1618239

reference_url	https://access.redhat.com/errata/RHSA-2007:0002
reference_id	RHSA-2007:0002
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2007:0002

reference_url	https://access.redhat.com/errata/RHSA-2007:0003
reference_id	RHSA-2007:0003
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2007:0003

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.1.1-15?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.1.1-15?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.1.1-15%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2006-6102

risk_score 0.1

exploitability 0.5

weighted_severity 0.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kue6-ss77-fqah

url VCID-mbyt-8urr-yqff

vulnerability_id VCID-mbyt-8urr-yqff

summary xorg-x11-server: DeepCopyPointerClasses use-after-free leads to privilege elevation

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0494.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0494.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-0494

reference_id

reference_type

scores

value	0.00711
scoring_system	epss
scoring_elements	0.72638
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-0494

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1030777
reference_id	1030777
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1030777

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2165995
reference_id	2165995
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2165995

reference_url	https://security.gentoo.org/glsa/202305-30
reference_id	GLSA-202305-30
reference_type
scores
url	https://security.gentoo.org/glsa/202305-30

reference_url	https://access.redhat.com/errata/RHSA-2023:0622
reference_id	RHSA-2023:0622
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0622

reference_url	https://access.redhat.com/errata/RHSA-2023:0623
reference_id	RHSA-2023:0623
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0623

reference_url	https://access.redhat.com/errata/RHSA-2023:0662
reference_id	RHSA-2023:0662
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0662

reference_url	https://access.redhat.com/errata/RHSA-2023:0663
reference_id	RHSA-2023:0663
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0663

reference_url	https://access.redhat.com/errata/RHSA-2023:0664
reference_id	RHSA-2023:0664
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0664

reference_url	https://access.redhat.com/errata/RHSA-2023:0665
reference_id	RHSA-2023:0665
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0665

reference_url	https://access.redhat.com/errata/RHSA-2023:0671
reference_id	RHSA-2023:0671
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0671

reference_url	https://access.redhat.com/errata/RHSA-2023:0675
reference_id	RHSA-2023:0675
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0675

reference_url	https://access.redhat.com/errata/RHSA-2023:2248
reference_id	RHSA-2023:2248
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2248

reference_url	https://access.redhat.com/errata/RHSA-2023:2249
reference_id	RHSA-2023:2249
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2249

reference_url	https://access.redhat.com/errata/RHSA-2023:2805
reference_id	RHSA-2023:2805
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2805

reference_url	https://access.redhat.com/errata/RHSA-2023:2806
reference_id	RHSA-2023:2806
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2806

reference_url	https://access.redhat.com/errata/RHSA-2025:12751
reference_id	RHSA-2025:12751
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12751

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u5?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u5%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.7-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.7-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2023-0494

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mbyt-8urr-yqff

url VCID-meuv-tkww-rfeu

vulnerability_id VCID-meuv-tkww-rfeu

summary Use-after-free vulnerability in the doImageText function in dix/dixfonts.c in the xorg-server module before 1.14.4 in X.Org X11 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted ImageText request that triggers memory-allocation failure.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4396.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4396.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-4396

reference_id

reference_type

scores

value	0.01971
scoring_system	epss
scoring_elements	0.83862
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-4396

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4396
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4396

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1014561
reference_id	1014561
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1014561

reference_url	https://security.gentoo.org/glsa/201405-07
reference_id	GLSA-201405-07
reference_type
scores
url	https://security.gentoo.org/glsa/201405-07

reference_url	https://access.redhat.com/errata/RHSA-2013:1426
reference_id	RHSA-2013:1426
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:1426

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.14.3-4?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.14.3-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.14.3-4%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2013-4396

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-meuv-tkww-rfeu

url VCID-mxq1-dhbf-9ufb

vulnerability_id VCID-mxq1-dhbf-9ufb

summary privilege escalation

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2320.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2320.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-2320

reference_id

reference_type

scores

value	0.00062
scoring_system	epss
scoring_elements	0.19531
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-2320

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014903
reference_id	1014903
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014903

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2106683
reference_id	2106683
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2106683

reference_url

reference_id

AVG-2770

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26595.json

reference_url	https://security.gentoo.org/glsa/202210-30
reference_id	GLSA-202210-30
reference_type
scores
url	https://security.gentoo.org/glsa/202210-30

reference_url	https://access.redhat.com/errata/RHSA-2022:5905
reference_id	RHSA-2022:5905
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:5905

reference_url	https://access.redhat.com/errata/RHSA-2022:7583
reference_id	RHSA-2022:7583
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:7583

reference_url	https://access.redhat.com/errata/RHSA-2022:8221
reference_id	RHSA-2022:8221
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:8221

reference_url	https://access.redhat.com/errata/RHSA-2022:8222
reference_id	RHSA-2022:8222
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:8222

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.4-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.4-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.4-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2022-2320

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mxq1-dhbf-9ufb

url VCID-nce7-2t7k-vfdt

vulnerability_id VCID-nce7-2t7k-vfdt

summary Xorg: xwayland: Buffer overflow in XkbVModMaskText()

references

reference_url

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26595.json

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906
reference_id	1098906
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907
reference_id	1098907
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2345257
reference_id	2345257
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2345257

reference_url	https://access.redhat.com/errata/RHSA-2025:2500
reference_id	RHSA-2025:2500
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2500

reference_url	https://access.redhat.com/errata/RHSA-2025:2502
reference_id	RHSA-2025:2502
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2502

reference_url	https://access.redhat.com/errata/RHSA-2025:2861
reference_id	RHSA-2025:2861
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2861

reference_url	https://access.redhat.com/errata/RHSA-2025:2862
reference_id	RHSA-2025:2862
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2862

reference_url	https://access.redhat.com/errata/RHSA-2025:2865
reference_id	RHSA-2025:2865
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2865

reference_url	https://access.redhat.com/errata/RHSA-2025:2866
reference_id	RHSA-2025:2866
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2866

reference_url	https://access.redhat.com/errata/RHSA-2025:2873
reference_id	RHSA-2025:2873
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2873

reference_url	https://access.redhat.com/errata/RHSA-2025:2874
reference_id	RHSA-2025:2874
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2874

reference_url	https://access.redhat.com/errata/RHSA-2025:2875
reference_id	RHSA-2025:2875
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2875

reference_url	https://access.redhat.com/errata/RHSA-2025:2879
reference_id	RHSA-2025:2879
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2879

reference_url	https://access.redhat.com/errata/RHSA-2025:2880
reference_id	RHSA-2025:2880
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2880

reference_url	https://access.redhat.com/errata/RHSA-2025:3976
reference_id	RHSA-2025:3976
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3976

reference_url	https://access.redhat.com/errata/RHSA-2025:7163
reference_id	RHSA-2025:7163
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7163

reference_url	https://access.redhat.com/errata/RHSA-2025:7165
reference_id	RHSA-2025:7165
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7165

reference_url	https://access.redhat.com/errata/RHSA-2025:7458
reference_id	RHSA-2025:7458
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7458

fixed_packages

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u15?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u15?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u15%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u9?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u9?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u9%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.16-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.16-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2025-26595

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nce7-2t7k-vfdt

url VCID-nghe-4hvm-juhp

vulnerability_id VCID-nghe-4hvm-juhp

summary xorg-x11-server: XIChangeProperty out-of-bounds access

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46344.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46344.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-46344

reference_id

reference_type

scores

value	0.00867
scoring_system	epss
scoring_elements	0.75505
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-46344

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071
reference_id	1026071
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2151760
reference_id	2151760
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2151760

reference_url	https://security.gentoo.org/glsa/202305-30
reference_id	GLSA-202305-30
reference_type
scores
url	https://security.gentoo.org/glsa/202305-30

reference_url	https://access.redhat.com/errata/RHSA-2023:0045
reference_id	RHSA-2023:0045
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0045

reference_url	https://access.redhat.com/errata/RHSA-2023:0046
reference_id	RHSA-2023:0046
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0046

reference_url	https://access.redhat.com/errata/RHSA-2023:2248
reference_id	RHSA-2023:2248
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2248

reference_url	https://access.redhat.com/errata/RHSA-2023:2249
reference_id	RHSA-2023:2249
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2249

reference_url	https://access.redhat.com/errata/RHSA-2023:2257
reference_id	RHSA-2023:2257
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2257

reference_url	https://access.redhat.com/errata/RHSA-2023:2805
reference_id	RHSA-2023:2805
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2805

reference_url	https://access.redhat.com/errata/RHSA-2023:2806
reference_id	RHSA-2023:2806
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2806

reference_url	https://access.redhat.com/errata/RHSA-2023:2830
reference_id	RHSA-2023:2830
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2830

reference_url	https://access.redhat.com/errata/RHSA-2025:12751
reference_id	RHSA-2025:12751
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12751

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u4?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u4%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.5-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.5-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.5-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2022-46344

risk_score 4.0

exploitability 0.5

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nghe-4hvm-juhp

url VCID-nrev-k192-pfe8

vulnerability_id VCID-nrev-k192-pfe8

summary xorg-x11-server before 1.19.5 was missing length validation in MIT-SCREEN-SAVER extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12185.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12185.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-12185

reference_id

reference_type

scores

value	0.00838
scoring_system	epss
scoring_elements	0.75042
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-12185

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1509215
reference_id	1509215
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1509215

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.5-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2017-12185

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nrev-k192-pfe8

url VCID-p2yg-z8e2-j7f5

vulnerability_id VCID-p2yg-z8e2-j7f5

summary The LockServer function in os/utils.c in X.Org xserver before 1.11.2 allows local users to change the permissions of arbitrary files to 444, read those files, and possibly cause a denial of service (removed execution permission) via a symlink attack on a temporary lock file.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4029.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4029.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2011-4029

reference_id

reference_type

scores

value	0.00866
scoring_system	epss
scoring_elements	0.75486
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2011-4029

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=745024
reference_id	745024
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=745024

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/18040.c
reference_id	CVE-2011-4613;OSVDB-84058;CVE-2011-4029;OSVDB-76669
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/18040.c

reference_url	https://security.gentoo.org/glsa/201110-19
reference_id	GLSA-201110-19
reference_type
scores
url	https://security.gentoo.org/glsa/201110-19

reference_url	https://access.redhat.com/errata/RHSA-2012:0939
reference_id	RHSA-2012:0939
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2012:0939

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.11.1.901-2?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.11.1.901-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.11.1.901-2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2011-4029

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-p2yg-z8e2-j7f5

url VCID-py27-f7s4-ybbq

vulnerability_id VCID-py27-f7s4-ybbq

summary In X.Org Server (aka xserver and xorg-server) before 1.19.4, a local attacker authenticated to the X server could overflow a global buffer, causing crashes of the X server or potentially other problems by injecting large or malformed XKB related atoms and accessing them via xkbcomp.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13723.json

reference_id

reference_type

scores

value	4.7
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13723.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-13723

reference_id

reference_type

scores

value	0.00127
scoring_system	epss
scoring_elements	0.31525
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-13723

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1500388
reference_id	1500388
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1500388

reference_url	https://security.archlinux.org/ASA-201710-10
reference_id	ASA-201710-10
reference_type
scores
url	https://security.archlinux.org/ASA-201710-10

reference_url

reference_id

AVG-432

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10972.json

reference_url	https://security.gentoo.org/glsa/201710-30
reference_id	GLSA-201710-30
reference_type
scores
url	https://security.gentoo.org/glsa/201710-30

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.19.4-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.19.4-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.4-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2017-13723

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-py27-f7s4-ybbq

url VCID-qmf7-231x-cyaa

vulnerability_id VCID-qmf7-231x-cyaa

summary multiple issues

references

reference_url

reference_id

reference_type

scores

value	6.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10972.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-10972

reference_id

reference_type

scores

value	0.00345
scoring_system	epss
scoring_elements	0.5734
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-10972

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10971
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10971

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10972
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10972

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1473205
reference_id	1473205
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1473205

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867492
reference_id	867492
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867492

reference_url	https://security.archlinux.org/ASA-201708-11
reference_id	ASA-201708-11
reference_type
scores
url	https://security.archlinux.org/ASA-201708-11

reference_url

reference_id

AVG-341

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4011.json

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.19.3-2?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.19.3-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.3-2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2017-10972

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qmf7-231x-cyaa

url VCID-qmrm-2e5f-h3an

vulnerability_id VCID-qmrm-2e5f-h3an

summary arbitrary code execution

references

reference_url

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4011.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-4011

reference_id

reference_type

scores

value	0.00041
scoring_system	epss
scoring_elements	0.12659
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-4011

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2026074
reference_id	2026074
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2026074

reference_url

reference_id

AVG-2636

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

reference_url

reference_id

AVG-2640

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://api.first.org/data/v1/epss?cve=CVE-2007-2437

reference_url	https://security.gentoo.org/glsa/202305-30
reference_id	GLSA-202305-30
reference_type
scores
url	https://security.gentoo.org/glsa/202305-30

reference_url	https://access.redhat.com/errata/RHSA-2022:0003
reference_id	RHSA-2022:0003
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:0003

reference_url	https://access.redhat.com/errata/RHSA-2022:1917
reference_id	RHSA-2022:1917
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:1917

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:1.20.13-3?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.13-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.13-3%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2021-4011

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qmrm-2e5f-h3an

url VCID-qs4d-hm8w-jfcm

vulnerability_id VCID-qs4d-hm8w-jfcm

summary The X render (Xrender) extension in X.org X Window System 7.0, 7.1, and 7.2, with Xserver 1.3.0 and earlier, allows remote authenticated users to cause a denial of service (daemon crash) via crafted values to the (1) XRenderCompositeTrapezoids and (2) XRenderAddTraps functions, which trigger a divide-by-zero error.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2437.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2437.json

reference_url

reference_id

reference_type

scores

value	0.03757
scoring_system	epss
scoring_elements	0.88237
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2007-2437

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=422936
reference_id	422936
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=422936

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/29939.txt
reference_id	CVE-2007-2437;OSVDB-34905
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/29939.txt

reference_url	https://www.securityfocus.com/bid/23741/info
reference_id	CVE-2007-2437;OSVDB-34905
reference_type	exploit
scores
url	https://www.securityfocus.com/bid/23741/info

reference_url	https://security.gentoo.org/glsa/201301-01
reference_id	GLSA-201301-01
reference_type
scores
url	https://security.gentoo.org/glsa/201301-01

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.3.0.0.dfsg-4?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.3.0.0.dfsg-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.3.0.0.dfsg-4%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2007-2437

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qs4d-hm8w-jfcm

url VCID-qy7b-jt1s-dbfz

vulnerability_id VCID-qy7b-jt1s-dbfz

summary Buffer overflow in the compNewPixmap function in compalloc.c in the Composite extension for the X.org X11 server before 1.4 allows local users to execute arbitrary code by copying data from a large pixel depth pixmap into a smaller pixel depth pixmap.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-4730.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-4730.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2007-4730

reference_id

reference_type

scores

value	0.00097
scoring_system	epss
scoring_elements	0.26653
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2007-4730

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=285991
reference_id	285991
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=285991

reference_url	https://security.gentoo.org/glsa/200710-16
reference_id	GLSA-200710-16
reference_type
scores
url	https://security.gentoo.org/glsa/200710-16

reference_url	https://access.redhat.com/errata/RHSA-2007:0898
reference_id	RHSA-2007:0898
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2007:0898

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.4-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.4-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2007-4730

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qy7b-jt1s-dbfz

url VCID-r8bp-sg6q-sqgj

vulnerability_id VCID-r8bp-sg6q-sqgj

summary xorg: xmayland: Value overflow in XkbSetCompatMap()

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-62231.json

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-62231.json

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2402660
reference_id	2402660
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2402660

reference_url	https://access.redhat.com/errata/RHSA-2025:19432
reference_id	RHSA-2025:19432
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:19432

reference_url	https://access.redhat.com/errata/RHSA-2025:19433
reference_id	RHSA-2025:19433
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:19433

reference_url	https://access.redhat.com/errata/RHSA-2025:19434
reference_id	RHSA-2025:19434
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:19434

reference_url	https://access.redhat.com/errata/RHSA-2025:19435
reference_id	RHSA-2025:19435
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:19435

reference_url	https://access.redhat.com/errata/RHSA-2025:19489
reference_id	RHSA-2025:19489
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:19489

reference_url	https://access.redhat.com/errata/RHSA-2025:19623
reference_id	RHSA-2025:19623
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:19623

reference_url	https://access.redhat.com/errata/RHSA-2025:19909
reference_id	RHSA-2025:19909
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:19909

reference_url	https://access.redhat.com/errata/RHSA-2025:20958
reference_id	RHSA-2025:20958
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:20958

reference_url	https://access.redhat.com/errata/RHSA-2025:20960
reference_id	RHSA-2025:20960
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:20960

reference_url	https://access.redhat.com/errata/RHSA-2025:20961
reference_id	RHSA-2025:20961
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:20961

reference_url	https://access.redhat.com/errata/RHSA-2025:21035
reference_id	RHSA-2025:21035
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:21035

reference_url	https://access.redhat.com/errata/RHSA-2025:22040
reference_id	RHSA-2025:22040
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22040

reference_url	https://access.redhat.com/errata/RHSA-2025:22041
reference_id	RHSA-2025:22041
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22041

reference_url	https://access.redhat.com/errata/RHSA-2025:22051
reference_id	RHSA-2025:22051
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22051

reference_url	https://access.redhat.com/errata/RHSA-2025:22055
reference_id	RHSA-2025:22055
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22055

reference_url	https://access.redhat.com/errata/RHSA-2025:22056
reference_id	RHSA-2025:22056
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22056

reference_url	https://access.redhat.com/errata/RHSA-2025:22077
reference_id	RHSA-2025:22077
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22077

reference_url	https://access.redhat.com/errata/RHSA-2025:22096
reference_id	RHSA-2025:22096
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22096

reference_url	https://access.redhat.com/errata/RHSA-2025:22164
reference_id	RHSA-2025:22164
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22164

reference_url	https://access.redhat.com/errata/RHSA-2025:22167
reference_id	RHSA-2025:22167
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22167

reference_url	https://access.redhat.com/errata/RHSA-2025:22364
reference_id	RHSA-2025:22364
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22364

reference_url	https://access.redhat.com/errata/RHSA-2025:22365
reference_id	RHSA-2025:22365
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22365

reference_url	https://access.redhat.com/errata/RHSA-2025:22426
reference_id	RHSA-2025:22426
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22426

reference_url	https://access.redhat.com/errata/RHSA-2025:22427
reference_id	RHSA-2025:22427
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22427

reference_url	https://access.redhat.com/errata/RHSA-2025:22667
reference_id	RHSA-2025:22667
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22667

reference_url	https://access.redhat.com/errata/RHSA-2025:22729
reference_id	RHSA-2025:22729
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22729

reference_url	https://access.redhat.com/errata/RHSA-2025:22742
reference_id	RHSA-2025:22742
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22742

reference_url	https://access.redhat.com/errata/RHSA-2025:22753
reference_id	RHSA-2025:22753
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:22753

reference_url	https://access.redhat.com/errata/RHSA-2026:0031
reference_id	RHSA-2026:0031
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0031

reference_url	https://access.redhat.com/errata/RHSA-2026:0033
reference_id	RHSA-2026:0033
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0033

reference_url	https://access.redhat.com/errata/RHSA-2026:0034
reference_id	RHSA-2026:0034
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0034

reference_url	https://access.redhat.com/errata/RHSA-2026:0035
reference_id	RHSA-2026:0035
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0035

reference_url	https://access.redhat.com/errata/RHSA-2026:0036
reference_id	RHSA-2026:0036
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0036

fixed_packages

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u17?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u17?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u17%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u11?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u11?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u11%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.20-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.20-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.20-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2025-62231

risk_score 3.3

exploitability 0.5

weighted_severity 6.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-r8bp-sg6q-sqgj

url VCID-raeg-4zw3-xbe4

vulnerability_id VCID-raeg-4zw3-xbe4

summary Multiple integer overflows in X.Org Xserver before 1.4.1 allow context-dependent attackers to execute arbitrary code via (1) a GetVisualInfo request containing a 32-bit value that is improperly used to calculate an amount of memory for allocation by the EVI extension, or (2) a request containing values related to pixmap size that are improperly used in management of shared memory by the MIT-SHM extension.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6429.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6429.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2007-6429

reference_id

reference_type

scores

value	0.0227
scoring_system	epss
scoring_elements	0.84944
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2007-6429

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=413721
reference_id	413721
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=413721

reference_url	https://security.gentoo.org/glsa/200801-09
reference_id	GLSA-200801-09
reference_type
scores
url	https://security.gentoo.org/glsa/200801-09

reference_url	https://access.redhat.com/errata/RHSA-2008:0029
reference_id	RHSA-2008:0029
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0029

reference_url	https://access.redhat.com/errata/RHSA-2008:0030
reference_id	RHSA-2008:0030
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0030

reference_url	https://access.redhat.com/errata/RHSA-2008:0031
reference_id	RHSA-2008:0031
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0031

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2007-6429

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-raeg-4zw3-xbe4

url VCID-rbgq-gsfu-7uga

vulnerability_id VCID-rbgq-gsfu-7uga

summary Integer overflow in the ProcRenderAddGlyphs function in the Render extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree86 X server, allows local users to execute arbitrary code via a crafted X protocol request that triggers memory corruption during processing of glyph management data structures.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-6101.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-6101.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2006-6101

reference_id

reference_type

scores

value	0.00045
scoring_system	epss
scoring_elements	0.14103
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2006-6101

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1618238
reference_id	1618238
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1618238

reference_url	https://access.redhat.com/errata/RHSA-2007:0002
reference_id	RHSA-2007:0002
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2007:0002

reference_url	https://access.redhat.com/errata/RHSA-2007:0003
reference_id	RHSA-2007:0003
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2007:0003

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.1.1-15?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.1.1-15?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.1.1-15%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2006-6101

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-rbgq-gsfu-7uga

url VCID-rq9m-9qtm-m3bv

vulnerability_id VCID-rq9m-9qtm-m3bv

summary X.Org: Xwayland: Use-after-free of the root cursor

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26594.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26594.json

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906
reference_id	1098906
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907
reference_id	1098907
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2345248
reference_id	2345248
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2345248

reference_url	https://access.redhat.com/errata/RHSA-2025:2500
reference_id	RHSA-2025:2500
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2500

reference_url	https://access.redhat.com/errata/RHSA-2025:2502
reference_id	RHSA-2025:2502
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2502

reference_url	https://access.redhat.com/errata/RHSA-2025:2861
reference_id	RHSA-2025:2861
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2861

reference_url	https://access.redhat.com/errata/RHSA-2025:2862
reference_id	RHSA-2025:2862
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2862

reference_url	https://access.redhat.com/errata/RHSA-2025:2865
reference_id	RHSA-2025:2865
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2865

reference_url	https://access.redhat.com/errata/RHSA-2025:2866
reference_id	RHSA-2025:2866
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2866

reference_url	https://access.redhat.com/errata/RHSA-2025:2873
reference_id	RHSA-2025:2873
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2873

reference_url	https://access.redhat.com/errata/RHSA-2025:2874
reference_id	RHSA-2025:2874
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2874

reference_url	https://access.redhat.com/errata/RHSA-2025:2875
reference_id	RHSA-2025:2875
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2875

reference_url	https://access.redhat.com/errata/RHSA-2025:2879
reference_id	RHSA-2025:2879
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2879

reference_url	https://access.redhat.com/errata/RHSA-2025:2880
reference_id	RHSA-2025:2880
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2880

reference_url	https://access.redhat.com/errata/RHSA-2025:3976
reference_id	RHSA-2025:3976
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3976

reference_url	https://access.redhat.com/errata/RHSA-2025:7163
reference_id	RHSA-2025:7163
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7163

reference_url	https://access.redhat.com/errata/RHSA-2025:7165
reference_id	RHSA-2025:7165
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7165

reference_url	https://access.redhat.com/errata/RHSA-2025:7458
reference_id	RHSA-2025:7458
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7458

fixed_packages

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u15?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u15?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u15%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u9?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u9?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u9%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.16-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.16-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2025-26594

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-rq9m-9qtm-m3bv

url VCID-rqjp-d3mr-ykdx

vulnerability_id VCID-rqjp-d3mr-ykdx

summary A flaw was found in xorg-x11-server before 1.20.9. An integer underflow in the X input extension protocol decoding in the X server may lead to arbitrary access of memory contents. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14346.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14346.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-14346

reference_id

reference_type

scores

value	0.00154
scoring_system	epss
scoring_elements	0.35814
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-14346

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1862246
reference_id	1862246
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1862246

reference_url	https://security.gentoo.org/glsa/202012-01
reference_id	GLSA-202012-01
reference_type
scores
url	https://security.gentoo.org/glsa/202012-01

reference_url	https://access.redhat.com/errata/RHSA-2020:4910
reference_id	RHSA-2020:4910
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4910

reference_url	https://access.redhat.com/errata/RHSA-2020:4953
reference_id	RHSA-2020:4953
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4953

reference_url	https://access.redhat.com/errata/RHSA-2021:1804
reference_id	RHSA-2021:1804
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1804

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.20.9-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.9-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.9-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2020-14346

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-rqjp-d3mr-ykdx

url VCID-rwrz-8ej4-87dx

vulnerability_id VCID-rwrz-8ej4-87dx

summary Integer overflow in ALLOCATE_LOCAL in the ProcXCMiscGetXIDList function in the XC-MISC extension in the X.Org X11 server (xserver) 7.1-1.1.0, and other versions before 20070403, allows remote authenticated users to execute arbitrary code via a large expression, which results in memory corruption.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-1003.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-1003.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2007-1003

reference_id

reference_type

scores

value	0.08011
scoring_system	epss
scoring_elements	0.92249
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2007-1003

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=235263
reference_id	235263
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=235263

reference_url	https://security.gentoo.org/glsa/200705-10
reference_id	GLSA-200705-10
reference_type
scores
url	https://security.gentoo.org/glsa/200705-10

reference_url	https://access.redhat.com/errata/RHSA-2007:0125
reference_id	RHSA-2007:0125
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2007:0125

reference_url	https://access.redhat.com/errata/RHSA-2007:0126
reference_id	RHSA-2007:0126
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2007:0126

reference_url	https://access.redhat.com/errata/RHSA-2007:0127
reference_id	RHSA-2007:0127
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2007:0127

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.1.1-21?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.1.1-21?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.1.1-21%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2007-1003

risk_score 0.1

exploitability 0.5

weighted_severity 0.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-rwrz-8ej4-87dx

url VCID-sbxv-5gr6-8be3

vulnerability_id VCID-sbxv-5gr6-8be3

summary xorg-x11-server: tigervnc: heap-based buffer overflow privilege escalation vulnerability

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-9632.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-9632.json

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1086244
reference_id	1086244
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1086244

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1086245
reference_id	1086245
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1086245

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2317233
reference_id	2317233
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2317233

reference_url	https://security.gentoo.org/glsa/202411-08
reference_id	GLSA-202411-08
reference_type
scores
url	https://security.gentoo.org/glsa/202411-08

reference_url	https://access.redhat.com/errata/RHSA-2024:10090
reference_id	RHSA-2024:10090
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10090

reference_url	https://access.redhat.com/errata/RHSA-2024:8798
reference_id	RHSA-2024:8798
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:8798

reference_url	https://access.redhat.com/errata/RHSA-2024:9540
reference_id	RHSA-2024:9540
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:9540

reference_url	https://access.redhat.com/errata/RHSA-2024:9579
reference_id	RHSA-2024:9579
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:9579

reference_url	https://access.redhat.com/errata/RHSA-2024:9601
reference_id	RHSA-2024:9601
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:9601

reference_url	https://access.redhat.com/errata/RHSA-2024:9690
reference_id	RHSA-2024:9690
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:9690

reference_url	https://access.redhat.com/errata/RHSA-2024:9816
reference_id	RHSA-2024:9816
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:9816

reference_url	https://access.redhat.com/errata/RHSA-2024:9818
reference_id	RHSA-2024:9818
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:9818

reference_url	https://access.redhat.com/errata/RHSA-2024:9819
reference_id	RHSA-2024:9819
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:9819

reference_url	https://access.redhat.com/errata/RHSA-2024:9820
reference_id	RHSA-2024:9820
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:9820

reference_url	https://access.redhat.com/errata/RHSA-2024:9901
reference_id	RHSA-2024:9901
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:9901

reference_url	https://access.redhat.com/errata/RHSA-2025:12751
reference_id	RHSA-2025:12751
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12751

reference_url	https://access.redhat.com/errata/RHSA-2025:7163
reference_id	RHSA-2025:7163
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7163

reference_url	https://access.redhat.com/errata/RHSA-2025:7165
reference_id	RHSA-2025:7165
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7165

reference_url	https://access.redhat.com/errata/RHSA-2025:7458
reference_id	RHSA-2025:7458
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7458

fixed_packages

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u14?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u14?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u14%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u8?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u8?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.13-3.1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.13-3.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.13-3.1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2024-9632

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-sbxv-5gr6-8be3

url VCID-skxw-tvv4-rbdr

vulnerability_id VCID-skxw-tvv4-rbdr

summary xorg-x11-server before 1.19.5 was missing length validation in XINERAMA extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12184.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12184.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-12184

reference_id

reference_type

scores

value	0.00838
scoring_system	epss
scoring_elements	0.75042
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-12184

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1509225
reference_id	1509225
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1509225

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.5-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2017-12184

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-skxw-tvv4-rbdr

url VCID-ss7u-mzyq-47cg

vulnerability_id VCID-ss7u-mzyq-47cg

summary arbitrary code execution

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12178.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12178.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-12178

reference_id

reference_type

scores

value	0.00502
scoring_system	epss
scoring_elements	0.66407
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-12178

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1509219
reference_id	1509219
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1509219

reference_url	https://security.archlinux.org/ASA-201710-29
reference_id	ASA-201710-29
reference_type
scores
url	https://security.archlinux.org/ASA-201710-29

reference_url

reference_id

AVG-443

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46341.json

reference_url	https://security.gentoo.org/glsa/201711-05
reference_id	GLSA-201711-05
reference_type
scores
url	https://security.gentoo.org/glsa/201711-05

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.5-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2017-12178

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ss7u-mzyq-47cg

url VCID-swtg-qd41-pqgw

vulnerability_id VCID-swtg-qd41-pqgw

summary xorg-x11-server: XIPassiveUngrab out-of-bounds access

references

reference_url

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46341.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-46341

reference_id

reference_type

scores

value	0.01059
scoring_system	epss
scoring_elements	0.77974
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-46341

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071
reference_id	1026071
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2151756
reference_id	2151756
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2151756

reference_url	https://security.gentoo.org/glsa/202305-30
reference_id	GLSA-202305-30
reference_type
scores
url	https://security.gentoo.org/glsa/202305-30

reference_url	https://access.redhat.com/errata/RHSA-2023:0045
reference_id	RHSA-2023:0045
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0045

reference_url	https://access.redhat.com/errata/RHSA-2023:0046
reference_id	RHSA-2023:0046
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0046

reference_url	https://access.redhat.com/errata/RHSA-2023:2248
reference_id	RHSA-2023:2248
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2248

reference_url	https://access.redhat.com/errata/RHSA-2023:2249
reference_id	RHSA-2023:2249
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2249

reference_url	https://access.redhat.com/errata/RHSA-2023:2257
reference_id	RHSA-2023:2257
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2257

reference_url	https://access.redhat.com/errata/RHSA-2023:2805
reference_id	RHSA-2023:2805
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2805

reference_url	https://access.redhat.com/errata/RHSA-2023:2806
reference_id	RHSA-2023:2806
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2806

reference_url	https://access.redhat.com/errata/RHSA-2023:2830
reference_id	RHSA-2023:2830
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2830

reference_url	https://access.redhat.com/errata/RHSA-2025:12751
reference_id	RHSA-2025:12751
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12751

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u4?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u4%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.5-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.5-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.5-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2022-46341

risk_score 4.0

exploitability 0.5

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-swtg-qd41-pqgw

url VCID-t19y-2rhp-23cx

vulnerability_id VCID-t19y-2rhp-23cx

summary xorg-x11-server: out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6478.json

reference_id

reference_type

scores

value	7.6
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6478.json

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2253298
reference_id	2253298
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2253298

reference_url	https://security.gentoo.org/glsa/202401-30
reference_id	GLSA-202401-30
reference_type
scores
url	https://security.gentoo.org/glsa/202401-30

reference_url	https://access.redhat.com/errata/RHSA-2023:7886
reference_id	RHSA-2023:7886
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:7886

reference_url	https://access.redhat.com/errata/RHSA-2024:0006
reference_id	RHSA-2024:0006
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0006

reference_url	https://access.redhat.com/errata/RHSA-2024:0009
reference_id	RHSA-2024:0009
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0009

reference_url	https://access.redhat.com/errata/RHSA-2024:0010
reference_id	RHSA-2024:0010
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0010

reference_url	https://access.redhat.com/errata/RHSA-2024:0014
reference_id	RHSA-2024:0014
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0014

reference_url	https://access.redhat.com/errata/RHSA-2024:0015
reference_id	RHSA-2024:0015
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0015

reference_url	https://access.redhat.com/errata/RHSA-2024:0016
reference_id	RHSA-2024:0016
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0016

reference_url	https://access.redhat.com/errata/RHSA-2024:0017
reference_id	RHSA-2024:0017
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0017

reference_url	https://access.redhat.com/errata/RHSA-2024:0018
reference_id	RHSA-2024:0018
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0018

reference_url	https://access.redhat.com/errata/RHSA-2024:0020
reference_id	RHSA-2024:0020
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0020

reference_url	https://access.redhat.com/errata/RHSA-2024:2169
reference_id	RHSA-2024:2169
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2169

reference_url	https://access.redhat.com/errata/RHSA-2024:2170
reference_id	RHSA-2024:2170
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2170

reference_url	https://access.redhat.com/errata/RHSA-2024:2995
reference_id	RHSA-2024:2995
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2995

reference_url	https://access.redhat.com/errata/RHSA-2024:2996
reference_id	RHSA-2024:2996
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2996

reference_url	https://access.redhat.com/errata/RHSA-2025:12751
reference_id	RHSA-2025:12751
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12751

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u9?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u9?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u9%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u3?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u3%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.10-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.10-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.10-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2023-6478

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-t19y-2rhp-23cx

url VCID-t4ta-czp7-pye5

vulnerability_id VCID-t4ta-czp7-pye5

summary xorg-x11-server: buffer overflow in _GetCountedString() in xkb/xkb.c

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3550.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3550.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-3550

reference_id

reference_type

scores

value	0.00346
scoring_system	epss
scoring_elements	0.57477
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-3550

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2140698
reference_id	2140698
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2140698

reference_url	https://security.gentoo.org/glsa/202305-30
reference_id	GLSA-202305-30
reference_type
scores
url	https://security.gentoo.org/glsa/202305-30

reference_url	https://access.redhat.com/errata/RHSA-2022:8491
reference_id	RHSA-2022:8491
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:8491

reference_url	https://access.redhat.com/errata/RHSA-2023:2248
reference_id	RHSA-2023:2248
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2248

reference_url	https://access.redhat.com/errata/RHSA-2023:2249
reference_id	RHSA-2023:2249
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2249

reference_url	https://access.redhat.com/errata/RHSA-2023:2805
reference_id	RHSA-2023:2805
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2805

reference_url	https://access.redhat.com/errata/RHSA-2023:2806
reference_id	RHSA-2023:2806
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2806

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u3?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.4-3?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.4-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.4-3%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2022-3550

risk_score 4.0

exploitability 0.5

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-t4ta-czp7-pye5

url VCID-t6z8-cefj-jqa2

vulnerability_id VCID-t6z8-cefj-jqa2

summary xorg-x11-server: Heap buffer overread/data leakage in ProcXIPassiveGrabDevice

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31081.json

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31081.json

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2271998
reference_id	2271998
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2271998

reference_url	https://security.gentoo.org/glsa/202411-08
reference_id	GLSA-202411-08
reference_type
scores
url	https://security.gentoo.org/glsa/202411-08

reference_url	https://access.redhat.com/errata/RHSA-2024:1785
reference_id	RHSA-2024:1785
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1785

reference_url	https://access.redhat.com/errata/RHSA-2024:2036
reference_id	RHSA-2024:2036
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2036

reference_url	https://access.redhat.com/errata/RHSA-2024:2037
reference_id	RHSA-2024:2037
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2037

reference_url	https://access.redhat.com/errata/RHSA-2024:2038
reference_id	RHSA-2024:2038
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2038

reference_url	https://access.redhat.com/errata/RHSA-2024:2039
reference_id	RHSA-2024:2039
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2039

reference_url	https://access.redhat.com/errata/RHSA-2024:2040
reference_id	RHSA-2024:2040
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2040

reference_url	https://access.redhat.com/errata/RHSA-2024:2041
reference_id	RHSA-2024:2041
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2041

reference_url	https://access.redhat.com/errata/RHSA-2024:2042
reference_id	RHSA-2024:2042
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2042

reference_url	https://access.redhat.com/errata/RHSA-2024:2080
reference_id	RHSA-2024:2080
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2080

reference_url	https://access.redhat.com/errata/RHSA-2024:2616
reference_id	RHSA-2024:2616
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2616

reference_url	https://access.redhat.com/errata/RHSA-2024:3258
reference_id	RHSA-2024:3258
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:3258

reference_url	https://access.redhat.com/errata/RHSA-2024:3261
reference_id	RHSA-2024:3261
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:3261

reference_url	https://access.redhat.com/errata/RHSA-2024:3343
reference_id	RHSA-2024:3343
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:3343

reference_url	https://access.redhat.com/errata/RHSA-2024:9093
reference_id	RHSA-2024:9093
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:9093

reference_url	https://access.redhat.com/errata/RHSA-2024:9122
reference_id	RHSA-2024:9122
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:9122

reference_url	https://access.redhat.com/errata/RHSA-2025:12751
reference_id	RHSA-2025:12751
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12751

fixed_packages

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u7?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u7?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u7%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.11-3?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.11-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.11-3%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2024-31081

risk_score 3.3

exploitability 0.5

weighted_severity 6.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-t6z8-cefj-jqa2

url VCID-tuku-xgqr-dfdc

vulnerability_id VCID-tuku-xgqr-dfdc

summary arbitrary code execution

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12183.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12183.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-12183

reference_id

reference_type

scores

value	0.00502
scoring_system	epss
scoring_elements	0.66407
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-12183

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1509224
reference_id	1509224
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1509224

reference_url	https://security.archlinux.org/ASA-201710-29
reference_id	ASA-201710-29
reference_type
scores
url	https://security.archlinux.org/ASA-201710-29

reference_url

reference_id

AVG-443

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21886.json

reference_url	https://security.gentoo.org/glsa/201711-05
reference_id	GLSA-201711-05
reference_type
scores
url	https://security.gentoo.org/glsa/201711-05

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.5-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2017-12183

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tuku-xgqr-dfdc

100

url VCID-tzs1-bp73-zycb

vulnerability_id VCID-tzs1-bp73-zycb

summary xorg-x11-server: heap buffer overflow in DisableDevice

references

reference_url

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21886.json

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2256542
reference_id	2256542
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2256542

reference_url	https://security.gentoo.org/glsa/202401-30
reference_id	GLSA-202401-30
reference_type
scores
url	https://security.gentoo.org/glsa/202401-30

reference_url	https://access.redhat.com/errata/RHSA-2024:0320
reference_id	RHSA-2024:0320
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0320

reference_url	https://access.redhat.com/errata/RHSA-2024:0557
reference_id	RHSA-2024:0557
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0557

reference_url	https://access.redhat.com/errata/RHSA-2024:0558
reference_id	RHSA-2024:0558
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0558

reference_url	https://access.redhat.com/errata/RHSA-2024:0597
reference_id	RHSA-2024:0597
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0597

reference_url	https://access.redhat.com/errata/RHSA-2024:0607
reference_id	RHSA-2024:0607
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0607

reference_url	https://access.redhat.com/errata/RHSA-2024:0614
reference_id	RHSA-2024:0614
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0614

reference_url	https://access.redhat.com/errata/RHSA-2024:0617
reference_id	RHSA-2024:0617
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0617

reference_url	https://access.redhat.com/errata/RHSA-2024:0621
reference_id	RHSA-2024:0621
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0621

reference_url	https://access.redhat.com/errata/RHSA-2024:0626
reference_id	RHSA-2024:0626
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0626

reference_url	https://access.redhat.com/errata/RHSA-2024:0629
reference_id	RHSA-2024:0629
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0629

reference_url	https://access.redhat.com/errata/RHSA-2024:2169
reference_id	RHSA-2024:2169
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2169

reference_url	https://access.redhat.com/errata/RHSA-2024:2170
reference_id	RHSA-2024:2170
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2170

reference_url	https://access.redhat.com/errata/RHSA-2024:2995
reference_id	RHSA-2024:2995
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2995

reference_url	https://access.redhat.com/errata/RHSA-2024:2996
reference_id	RHSA-2024:2996
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2996

reference_url	https://access.redhat.com/errata/RHSA-2025:12751
reference_id	RHSA-2025:12751
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:12751

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u11?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u11?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u11%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u5?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u5%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.11-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.11-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.11-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2024-21886

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tzs1-bp73-zycb

101

url VCID-umsv-cu6y-r7dy

vulnerability_id VCID-umsv-cu6y-r7dy

summary arbitrary code execution

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12176.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12176.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-12176

reference_id

reference_type

scores

value	0.0095
scoring_system	epss
scoring_elements	0.7672
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-12176

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1509214
reference_id	1509214
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1509214

reference_url	https://security.archlinux.org/ASA-201710-29
reference_id	ASA-201710-29
reference_type
scores
url	https://security.archlinux.org/ASA-201710-29

reference_url

reference_id

AVG-443

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12177.json

reference_url	https://security.gentoo.org/glsa/201711-05
reference_id	GLSA-201711-05
reference_type
scores
url	https://security.gentoo.org/glsa/201711-05

fixed_packages

url	pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.5-1%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

purl pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-8mr3-m631-ykff

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-mksc-f652-2qcd

vulnerability	VCID-mux3-jggq-bqej

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-ucf1-81as-eucj

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-xsha-wn9z-4fg2

vulnerability	VCID-ydth-wf4d-zugb

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-abhy-pfqz-efa2

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie

url pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

purl pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2uvb-wkwb-jbbf

vulnerability	VCID-5zrz-y3fm-4uet

vulnerability	VCID-62xy-rm39-mqge

vulnerability	VCID-csqc-7j51-x7bb

vulnerability	VCID-epmv-hj44-2bhq

vulnerability	VCID-nynt-8cpp-27fe

vulnerability	VCID-wsp6-uyxx-53hf

vulnerability	VCID-zdwz-bgk3-fqdj

vulnerability	VCID-zsm3-vywn-pkej

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie

url	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
purl	pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie

aliases CVE-2017-12176

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-umsv-cu6y-r7dy

102

url VCID-vdf6-wkbk-37hb

vulnerability_id VCID-vdf6-wkbk-37hb

summary arbitrary code execution

references

reference_url

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12177.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-12177

reference_id

reference_type

scores

value	0.00944
scoring_system	epss
scoring_elements	0.76655
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-12177

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1509218
reference_id	1509218
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1509218

reference_url	https://security.archlinux.org/ASA-201710-29
reference_id	ASA-201710-29
reference_type
scores
url	https://security.archlinux.org/ASA-201710-29

reference_url

reference_id

AVG-443

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url