Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/136409?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "type": "deb", "namespace": "debian", "name": "xorg-server", "version": "2:1.20.11-1+deb11u13", "qualifiers": { "distro": "trixie" }, "subpath": "", "is_vulnerable": true, "next_non_vulnerable_version": "2:1.20.11-1+deb11u14", "latest_non_vulnerable_version": "2:21.1.23-1", "affected_by_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/275715?format=api", "vulnerability_id": "VCID-2uvb-wkwb-jbbf", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50258.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50258.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138680", "reference_id": "1138680", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138680" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138703", "reference_id": "1138703", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138703" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2485383", "reference_id": "2485383", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2485383" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-50258" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2uvb-wkwb-jbbf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/275719?format=api", "vulnerability_id": "VCID-5zrz-y3fm-4uet", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50262.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50262.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138680", "reference_id": "1138680", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138680" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138703", "reference_id": "1138703", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138703" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2485387", "reference_id": "2485387", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2485387" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-50262" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5zrz-y3fm-4uet" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/275721?format=api", "vulnerability_id": "VCID-62xy-rm39-mqge", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50264.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50264.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.x.org/archives/xorg-announce/2026-June/003702.html", "reference_id": "003702.html", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T12:53:55Z/" } ], "url": "https://lists.x.org/archives/xorg-announce/2026-June/003702.html" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138680", "reference_id": "1138680", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138680" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138703", "reference_id": "1138703", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138703" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2485389", "reference_id": "2485389", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T12:53:55Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2485389" }, { "reference_url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/339c279514326134b0878fc23ce6e9520440ce7f", "reference_id": "339c279514326134b0878fc23ce6e9520440ce7f", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T12:53:55Z/" } ], "url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/339c279514326134b0878fc23ce6e9520440ce7f" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2026-50264", "reference_id": "CVE-2026-50264", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T12:53:55Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2026-50264" }, { "reference_url": "https://redhat.atlassian.net/browse/PSIRTSUPT-16950", "reference_id": "PSIRTSUPT-16950", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T12:53:55Z/" } ], "url": "https://redhat.atlassian.net/browse/PSIRTSUPT-16950" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-50264" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-62xy-rm39-mqge" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/62126?format=api", "vulnerability_id": "VCID-8mr3-m631-ykff", "summary": "xorg: xwayland: X.Org X server: Information exposure and denial of service via out-of-bounds memory access", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-34003.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-34003.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451113", "reference_id": "2451113", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451113" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::crb", "reference_id": "cpe:/a:redhat:rhel_eus:9.6::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1", "reference_id": "cpe:/o:redhat:enterprise_linux:10.1", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.2", "reference_id": "cpe:/o:redhat:enterprise_linux:10.2", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.2" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux_eus:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux_eus:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux_eus:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2026-34003", "reference_id": "CVE-2026-34003", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2026-34003" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10739", "reference_id": "RHSA-2026:10739", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:10739" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11352", "reference_id": "RHSA-2026:11352", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:11352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11369", "reference_id": "RHSA-2026:11369", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:11369" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11388", "reference_id": "RHSA-2026:11388", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:11388" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11656", "reference_id": "RHSA-2026:11656", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:11656" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11692", "reference_id": "RHSA-2026:11692", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:11692" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13414", "reference_id": "RHSA-2026:13414", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:13414" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19125", "reference_id": "RHSA-2026:19125", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:19125" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19342", "reference_id": "RHSA-2026:19342", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:19342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19343", "reference_id": "RHSA-2026:19343", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:19343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19344", "reference_id": "RHSA-2026:19344", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:19344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20547", "reference_id": "RHSA-2026:20547", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20547" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20555", "reference_id": "RHSA-2026:20555", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20555" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20557", "reference_id": "RHSA-2026:20557", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20557" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20558", "reference_id": "RHSA-2026:20558", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20558" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20560", "reference_id": "RHSA-2026:20560", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20560" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20561", "reference_id": "RHSA-2026:20561", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20561" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20562", "reference_id": "RHSA-2026:20562", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20562" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20563", "reference_id": "RHSA-2026:20563", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20563" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20575", "reference_id": "RHSA-2026:20575", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20575" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20576", "reference_id": "RHSA-2026:20576", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20576" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20590", "reference_id": "RHSA-2026:20590", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21699", "reference_id": "RHSA-2026:21699", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:21699" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21712", "reference_id": "RHSA-2026:21712", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:21712" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21715", "reference_id": "RHSA-2026:21715", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:21715" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21716", "reference_id": "RHSA-2026:21716", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:21716" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21718", "reference_id": "RHSA-2026:21718", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:21718" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21741", "reference_id": "RHSA-2026:21741", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:21741" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21742", "reference_id": "RHSA-2026:21742", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:21742" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:22424", "reference_id": "RHSA-2026:22424", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:22424" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:22456", "reference_id": "RHSA-2026:22456", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:22456" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:23254", "reference_id": "RHSA-2026:23254", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:23254" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:23255", "reference_id": "RHSA-2026:23255", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:23255" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:23496", "reference_id": "RHSA-2026:23496", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:23496" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-34003" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8mr3-m631-ykff" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106702?format=api", "vulnerability_id": "VCID-abhy-pfqz-efa2", "summary": "In X.Org X server 20.11 through 21.1.16, when a client application uses easystroke for mouse gestures, the main thread modifies various data structures used by the input thread without acquiring a lock, aka a race condition. In particular, AttachDevice in dix/devices.c does not acquire an input lock.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-49737", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00095", "scoring_system": "epss", "scoring_elements": "0.2632", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-49737" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1081338", "reference_id": "1081338", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1081338" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136492?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-49737" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-abhy-pfqz-efa2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/275716?format=api", "vulnerability_id": "VCID-csqc-7j51-x7bb", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50259.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50259.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.x.org/archives/xorg-announce/2026-June/003702.html", "reference_id": "003702.html", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T13:00:20Z/" } ], "url": "https://lists.x.org/archives/xorg-announce/2026-June/003702.html" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138680", "reference_id": "1138680", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138680" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138703", "reference_id": "1138703", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138703" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2485384", "reference_id": "2485384", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T13:00:20Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2485384" }, { "reference_url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/867b59b33bee669cb412f1314e47c52eacf6e00b", "reference_id": "867b59b33bee669cb412f1314e47c52eacf6e00b", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T13:00:20Z/" } ], "url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/867b59b33bee669cb412f1314e47c52eacf6e00b" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2026-50259", "reference_id": "CVE-2026-50259", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T13:00:20Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2026-50259" }, { "reference_url": "https://redhat.atlassian.net/browse/PSIRTSUPT-16950", "reference_id": "PSIRTSUPT-16950", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T13:00:20Z/" } ], "url": "https://redhat.atlassian.net/browse/PSIRTSUPT-16950" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-50259" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-csqc-7j51-x7bb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/275718?format=api", "vulnerability_id": "VCID-epmv-hj44-2bhq", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50261.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50261.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.x.org/archives/xorg-announce/2026-June/003702.html", "reference_id": "003702.html", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T12:38:42Z/" } ], "url": "https://lists.x.org/archives/xorg-announce/2026-June/003702.html" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138680", "reference_id": "1138680", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138680" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138703", "reference_id": "1138703", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138703" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2485386", "reference_id": "2485386", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T12:38:42Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2485386" }, { "reference_url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/bdd7bf57af208b1ddf57d4683d67104443b44812", "reference_id": "bdd7bf57af208b1ddf57d4683d67104443b44812", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T12:38:42Z/" } ], "url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/bdd7bf57af208b1ddf57d4683d67104443b44812" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2026-50261", "reference_id": "CVE-2026-50261", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T12:38:42Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2026-50261" }, { "reference_url": "https://redhat.atlassian.net/browse/PSIRTSUPT-16950", "reference_id": "PSIRTSUPT-16950", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T12:38:42Z/" } ], "url": "https://redhat.atlassian.net/browse/PSIRTSUPT-16950" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-50261" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-epmv-hj44-2bhq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/62177?format=api", "vulnerability_id": "VCID-mksc-f652-2qcd", "summary": "xorg: xwayland: X.Org X server: Denial of Service via integer underflow in XKB compatibility map handling", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-33999.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-33999.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451106", "reference_id": "2451106", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451106" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::crb", "reference_id": "cpe:/a:redhat:rhel_eus:9.6::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1", "reference_id": "cpe:/o:redhat:enterprise_linux:10.1", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.2", "reference_id": "cpe:/o:redhat:enterprise_linux:10.2", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.2" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux_eus:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux_eus:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux_eus:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2026-33999", "reference_id": "CVE-2026-33999", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2026-33999" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10739", "reference_id": "RHSA-2026:10739", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:10739" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11352", "reference_id": "RHSA-2026:11352", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:11352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11369", "reference_id": "RHSA-2026:11369", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:11369" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11388", "reference_id": "RHSA-2026:11388", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:11388" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11656", "reference_id": "RHSA-2026:11656", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:11656" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11692", "reference_id": "RHSA-2026:11692", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:11692" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13414", "reference_id": "RHSA-2026:13414", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:13414" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19125", "reference_id": "RHSA-2026:19125", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:19125" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19342", "reference_id": "RHSA-2026:19342", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:19342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19343", "reference_id": "RHSA-2026:19343", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:19343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19344", "reference_id": "RHSA-2026:19344", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:19344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20547", "reference_id": "RHSA-2026:20547", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20547" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20555", "reference_id": "RHSA-2026:20555", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20555" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20557", "reference_id": "RHSA-2026:20557", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20557" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20558", "reference_id": "RHSA-2026:20558", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20558" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20560", "reference_id": "RHSA-2026:20560", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20560" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20561", "reference_id": "RHSA-2026:20561", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20561" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20562", "reference_id": "RHSA-2026:20562", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20562" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20563", "reference_id": "RHSA-2026:20563", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20563" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20575", "reference_id": "RHSA-2026:20575", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20575" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20576", "reference_id": "RHSA-2026:20576", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20576" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20590", "reference_id": "RHSA-2026:20590", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21699", "reference_id": "RHSA-2026:21699", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:21699" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21712", "reference_id": "RHSA-2026:21712", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:21712" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21715", "reference_id": "RHSA-2026:21715", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:21715" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21716", "reference_id": "RHSA-2026:21716", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:21716" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21718", "reference_id": "RHSA-2026:21718", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:21718" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21741", "reference_id": "RHSA-2026:21741", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:21741" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21742", "reference_id": "RHSA-2026:21742", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:21742" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:22424", "reference_id": "RHSA-2026:22424", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:22424" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:22456", "reference_id": "RHSA-2026:22456", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:22456" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:23254", "reference_id": "RHSA-2026:23254", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:23254" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:23255", "reference_id": "RHSA-2026:23255", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:23255" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:23496", "reference_id": "RHSA-2026:23496", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:23496" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-33999" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mksc-f652-2qcd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/62158?format=api", "vulnerability_id": "VCID-mux3-jggq-bqej", "summary": "xorg: xwayland: X.Org X server: Use-after-free vulnerability leads to server crash and potential memory corruption", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-34001.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-34001.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451109", "reference_id": "2451109", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451109" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::crb", "reference_id": "cpe:/a:redhat:rhel_eus:9.6::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1", "reference_id": "cpe:/o:redhat:enterprise_linux:10.1", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.2", "reference_id": "cpe:/o:redhat:enterprise_linux:10.2", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.2" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux_eus:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux_eus:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux_eus:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2026-34001", "reference_id": "CVE-2026-34001", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2026-34001" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10739", "reference_id": "RHSA-2026:10739", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:10739" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11352", "reference_id": "RHSA-2026:11352", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:11352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11369", "reference_id": "RHSA-2026:11369", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:11369" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11388", "reference_id": "RHSA-2026:11388", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:11388" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11656", "reference_id": "RHSA-2026:11656", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:11656" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11692", "reference_id": "RHSA-2026:11692", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:11692" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13414", "reference_id": "RHSA-2026:13414", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:13414" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19125", "reference_id": "RHSA-2026:19125", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:19125" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19342", "reference_id": "RHSA-2026:19342", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:19342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19343", "reference_id": "RHSA-2026:19343", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:19343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19344", "reference_id": "RHSA-2026:19344", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:19344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20547", "reference_id": "RHSA-2026:20547", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20547" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20555", "reference_id": "RHSA-2026:20555", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20555" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20557", "reference_id": "RHSA-2026:20557", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20557" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20558", "reference_id": "RHSA-2026:20558", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20558" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20560", "reference_id": "RHSA-2026:20560", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20560" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20561", "reference_id": "RHSA-2026:20561", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20561" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20562", "reference_id": "RHSA-2026:20562", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20562" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20563", "reference_id": "RHSA-2026:20563", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20563" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20575", "reference_id": "RHSA-2026:20575", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20575" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20576", "reference_id": "RHSA-2026:20576", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20576" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20590", "reference_id": "RHSA-2026:20590", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21699", "reference_id": "RHSA-2026:21699", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:21699" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21712", "reference_id": "RHSA-2026:21712", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:21712" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21715", "reference_id": "RHSA-2026:21715", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:21715" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21716", "reference_id": "RHSA-2026:21716", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:21716" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21718", "reference_id": "RHSA-2026:21718", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:21718" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21741", "reference_id": "RHSA-2026:21741", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:21741" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21742", "reference_id": "RHSA-2026:21742", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:21742" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:22424", "reference_id": "RHSA-2026:22424", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:22424" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:22456", "reference_id": "RHSA-2026:22456", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:22456" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:23254", "reference_id": "RHSA-2026:23254", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:23254" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:23255", "reference_id": "RHSA-2026:23255", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:23255" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:23496", "reference_id": "RHSA-2026:23496", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:23496" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-34001" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mux3-jggq-bqej" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/275714?format=api", "vulnerability_id": "VCID-nynt-8cpp-27fe", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50257.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50257.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138680", "reference_id": "1138680", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138680" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138703", "reference_id": "1138703", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138703" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2485382", "reference_id": "2485382", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2485382" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-50257" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nynt-8cpp-27fe" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61084?format=api", "vulnerability_id": "VCID-ucf1-81as-eucj", "summary": "xwayland: xorg: X.Org X server: Information disclosure and denial of service via out-of-bounds read in XKB geometry processing.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-34000.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-34000.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451107", "reference_id": "2451107", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451107" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::crb", "reference_id": "cpe:/a:redhat:rhel_eus:9.6::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux_eus:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux_eus:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux_eus:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2026-34000", "reference_id": "CVE-2026-34000", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2026-34000" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19342", "reference_id": "RHSA-2026:19342", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:19342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20547", "reference_id": "RHSA-2026:20547", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20547" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20555", "reference_id": "RHSA-2026:20555", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20555" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20557", "reference_id": "RHSA-2026:20557", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20557" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20558", "reference_id": "RHSA-2026:20558", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20558" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20560", "reference_id": "RHSA-2026:20560", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20560" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20561", "reference_id": "RHSA-2026:20561", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20561" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20562", "reference_id": "RHSA-2026:20562", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20562" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20563", "reference_id": "RHSA-2026:20563", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20563" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20575", "reference_id": "RHSA-2026:20575", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20575" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20576", "reference_id": "RHSA-2026:20576", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20576" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20590", "reference_id": "RHSA-2026:20590", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21699", "reference_id": "RHSA-2026:21699", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:21699" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21712", "reference_id": "RHSA-2026:21712", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:21712" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21715", "reference_id": "RHSA-2026:21715", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:21715" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21716", "reference_id": "RHSA-2026:21716", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:21716" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21718", "reference_id": "RHSA-2026:21718", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:21718" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21741", "reference_id": "RHSA-2026:21741", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:21741" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21742", "reference_id": "RHSA-2026:21742", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:21742" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:22424", "reference_id": "RHSA-2026:22424", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:22424" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:22456", "reference_id": "RHSA-2026:22456", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:22456" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:23254", "reference_id": "RHSA-2026:23254", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:23254" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:23255", "reference_id": "RHSA-2026:23255", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:23255" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:23496", "reference_id": "RHSA-2026:23496", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:23496" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-34000" ], "risk_score": 2.8, "exploitability": "0.5", "weighted_severity": "5.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ucf1-81as-eucj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/275717?format=api", "vulnerability_id": "VCID-wsp6-uyxx-53hf", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50260.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50260.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.x.org/archives/xorg-announce/2026-June/003702.html", "reference_id": "003702.html", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T15:44:25Z/" } ], "url": "https://lists.x.org/archives/xorg-announce/2026-June/003702.html" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138680", "reference_id": "1138680", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138680" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138703", "reference_id": "1138703", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138703" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2485385", "reference_id": "2485385", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T15:44:25Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2485385" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2026-50260", "reference_id": "CVE-2026-50260", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T15:44:25Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2026-50260" }, { "reference_url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/f5abfb61994471023d8c6470428c8e30c411cc0b", "reference_id": "f5abfb61994471023d8c6470428c8e30c411cc0b", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T15:44:25Z/" } ], "url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/f5abfb61994471023d8c6470428c8e30c411cc0b" }, { "reference_url": "https://redhat.atlassian.net/browse/PSIRTSUPT-16950", "reference_id": "PSIRTSUPT-16950", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T15:44:25Z/" } ], "url": "https://redhat.atlassian.net/browse/PSIRTSUPT-16950" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-50260" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wsp6-uyxx-53hf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/100709?format=api", "vulnerability_id": "VCID-xsha-wn9z-4fg2", "summary": "xorg-x11-server: DoS in xquartz when editing the Application menu due to mutaing immutable arrays", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3553.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3553.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3553", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00118", "scoring_system": "epss", "scoring_elements": "0.30261", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3553" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2140706", "reference_id": "2140706", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2140706" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136484?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.4-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.4-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-3553" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xsha-wn9z-4fg2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61059?format=api", "vulnerability_id": "VCID-ydth-wf4d-zugb", "summary": "xorg: xwayland: X.Org X server: Information disclosure or Denial of Service via out-of-bounds read in XKB modifier map handling", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-34002.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-34002.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451112", "reference_id": "2451112", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451112" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::crb", "reference_id": "cpe:/a:redhat:rhel_eus:9.6::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux_eus:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux_eus:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux_eus:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2026-34002", "reference_id": "CVE-2026-34002", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2026-34002" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20547", "reference_id": "RHSA-2026:20547", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20547" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20555", "reference_id": "RHSA-2026:20555", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20555" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20557", "reference_id": "RHSA-2026:20557", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20557" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20558", "reference_id": "RHSA-2026:20558", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20558" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20560", "reference_id": "RHSA-2026:20560", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20560" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20561", "reference_id": "RHSA-2026:20561", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20561" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20562", "reference_id": "RHSA-2026:20562", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20562" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20563", "reference_id": "RHSA-2026:20563", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20563" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20575", "reference_id": "RHSA-2026:20575", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20575" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20576", "reference_id": "RHSA-2026:20576", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20576" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20590", "reference_id": "RHSA-2026:20590", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:20590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21699", "reference_id": "RHSA-2026:21699", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:21699" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21712", "reference_id": "RHSA-2026:21712", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:21712" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21715", "reference_id": "RHSA-2026:21715", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:21715" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21716", "reference_id": "RHSA-2026:21716", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:21716" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21718", "reference_id": "RHSA-2026:21718", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:21718" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21741", "reference_id": "RHSA-2026:21741", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:21741" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21742", "reference_id": "RHSA-2026:21742", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:21742" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:22424", "reference_id": "RHSA-2026:22424", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:22424" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:22456", "reference_id": "RHSA-2026:22456", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:22456" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:23254", "reference_id": "RHSA-2026:23254", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:23254" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:23255", "reference_id": "RHSA-2026:23255", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:23255" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:23496", "reference_id": "RHSA-2026:23496", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:23496" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-34002" ], "risk_score": 2.8, "exploitability": "0.5", "weighted_severity": "5.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ydth-wf4d-zugb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/275720?format=api", "vulnerability_id": "VCID-zdwz-bgk3-fqdj", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50263.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50263.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138680", "reference_id": "1138680", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138680" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138703", "reference_id": "1138703", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138703" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2485388", "reference_id": "2485388", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2485388" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-50263" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zdwz-bgk3-fqdj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/275713?format=api", "vulnerability_id": "VCID-zsm3-vywn-pkej", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50256.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50256.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138680", "reference_id": "1138680", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138680" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138703", "reference_id": "1138703", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138703" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2485380", "reference_id": "2485380", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2485380" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-50256" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zsm3-vywn-pkej" } ], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91480?format=api", "vulnerability_id": "VCID-1hen-4651-9fay", "summary": "xorg-x11-server: heap buffer overflow in XISendDeviceHierarchyEvent", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21885.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21885.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256540", "reference_id": "2256540", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256540" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client", "reference_id": "cpe:/o:redhat:enterprise_linux:7::client", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode", "reference_id": "cpe:/o:redhat:enterprise_linux:7::computenode", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server", "reference_id": "cpe:/o:redhat:enterprise_linux:7::server", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation", "reference_id": "cpe:/o:redhat:enterprise_linux:7::workstation", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-21885", "reference_id": "CVE-2024-21885", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-21885" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0320", "reference_id": "RHSA-2024:0320", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0320" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0557", "reference_id": "RHSA-2024:0557", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0557" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0558", "reference_id": "RHSA-2024:0558", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0558" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0597", "reference_id": "RHSA-2024:0597", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0597" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0607", "reference_id": "RHSA-2024:0607", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0607" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0614", "reference_id": "RHSA-2024:0614", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0614" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0617", "reference_id": "RHSA-2024:0617", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0617" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0621", "reference_id": "RHSA-2024:0621", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0621" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0626", "reference_id": "RHSA-2024:0626", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0626" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0629", "reference_id": "RHSA-2024:0629", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0629" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2170", "reference_id": "RHSA-2024:2170", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2996", "reference_id": "RHSA-2024:2996", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2996" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:12751" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136512?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u11?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u11%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136511?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136513?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-21885" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1hen-4651-9fay" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5018?format=api", "vulnerability_id": "VCID-1xeu-h1q2-5bfh", "summary": "arbitrary code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4008.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4008.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4008", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.2254", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4008" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2026059", "reference_id": "2026059", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2026059" }, { "reference_url": "https://security.archlinux.org/AVG-2636", "reference_id": "AVG-2636", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2636" }, { "reference_url": "https://security.archlinux.org/AVG-2640", "reference_id": "AVG-2640", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2640" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0003", "reference_id": "RHSA-2022:0003", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0003" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1917", "reference_id": "RHSA-2022:1917", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1917" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136483?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136482?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.13-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.13-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2021-4008" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1xeu-h1q2-5bfh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106645?format=api", "vulnerability_id": "VCID-24mm-8spg-nqfq", "summary": "Integer overflow in the fbShmPutImage function in the MIT-SHM extension in the X server 1.4 in X.Org X11R7.3 allows context-dependent attackers to read arbitrary process memory via crafted values for a Pixmap width and height.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1379.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1379.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2008-1379", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00996", "scoring_system": "epss", "scoring_elements": "0.77292", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2008-1379" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=445414", "reference_id": "445414", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=445414" }, { "reference_url": "https://security.gentoo.org/glsa/200806-07", "reference_id": "GLSA-200806-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200806-07" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0502", "reference_id": "RHSA-2008:0502", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0503", "reference_id": "RHSA-2008:0503", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0503" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0504", "reference_id": "RHSA-2008:0504", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0504" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0512", "reference_id": "RHSA-2008:0512", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0512" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136435?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.4.1~git20080517-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.1~git20080517-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2008-1379" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-24mm-8spg-nqfq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106675?format=api", "vulnerability_id": "VCID-24mx-tgrf-nqa8", "summary": "The SProcXFixesSelectSelectionInput function in the XFixes extension in X.Org X Window System (aka X11 or X) X11R6.8.0 and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length value.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8102.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8102.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8102", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01115", "scoring_system": "epss", "scoring_elements": "0.78527", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8102" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168714", "reference_id": "1168714", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168714" }, { "reference_url": "https://security.gentoo.org/glsa/201504-06", "reference_id": "GLSA-201504-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201504-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1982", "reference_id": "RHSA-2014:1982", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1982" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1983", "reference_id": "RHSA-2014:1983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1983" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136451?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.2.901-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2014-8102" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-24mx-tgrf-nqa8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5016?format=api", "vulnerability_id": "VCID-2enj-ds99-9fde", "summary": "arbitrary code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4010.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4010.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4010", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00177", "scoring_system": "epss", "scoring_elements": "0.38977", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4010" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2026073", "reference_id": "2026073", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2026073" }, { "reference_url": "https://security.archlinux.org/AVG-2636", "reference_id": "AVG-2636", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2636" }, { "reference_url": "https://security.archlinux.org/AVG-2640", "reference_id": "AVG-2640", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2640" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0003", "reference_id": "RHSA-2022:0003", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0003" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1917", "reference_id": "RHSA-2022:1917", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1917" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136483?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136482?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.13-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.13-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2021-4010" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2enj-ds99-9fde" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106643?format=api", "vulnerability_id": "VCID-31f1-edc5-nfey", "summary": "The (1) SProcRecordCreateContext and (2) SProcRecordRegisterClients functions in the Record extension and the (3) SProcSecurityGenerateAuthorization function in the Security extension in the X server 1.4 in X.Org X11R7.3 allow context-dependent attackers to execute arbitrary code via requests with crafted length values that specify an arbitrary number of bytes to be swapped on the heap, which triggers heap corruption.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1377.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1377.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2008-1377", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02373", "scoring_system": "epss", "scoring_elements": "0.85252", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2008-1377" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=445403", "reference_id": "445403", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=445403" }, { "reference_url": "https://security.gentoo.org/glsa/200806-07", "reference_id": "GLSA-200806-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200806-07" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0502", "reference_id": "RHSA-2008:0502", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0503", "reference_id": "RHSA-2008:0503", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0503" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0504", "reference_id": "RHSA-2008:0504", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0504" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0512", "reference_id": "RHSA-2008:0512", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0512" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136435?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.4.1~git20080517-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.1~git20080517-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2008-1377" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-31f1-edc5-nfey" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106660?format=api", "vulnerability_id": "VCID-3tqr-68kv-t3cp", "summary": "Integer underflow in the xTrapezoidValid macro in render/picture.h in X.Org allows context-dependent attackers to cause a denial of service (crash) via a negative bottom value.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-6424.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-6424.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-6424", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0684", "scoring_system": "epss", "scoring_elements": "0.91508", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-6424" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6424", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6424" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1037984", "reference_id": "1037984", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1037984" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742922", "reference_id": "742922", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742922" }, { "reference_url": "https://security.gentoo.org/glsa/201701-64", "reference_id": "GLSA-201701-64", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-64" }, { "reference_url": "https://security.gentoo.org/glsa/201710-30", "reference_id": "GLSA-201710-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201710-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2013:1868", "reference_id": "RHSA-2013:1868", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2013:1868" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136450?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.14.2.901-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.14.2.901-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2013-6424" ], "risk_score": 0.1, "exploitability": "0.5", "weighted_severity": "0.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3tqr-68kv-t3cp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/90719?format=api", "vulnerability_id": "VCID-44pt-tgfg-k3hh", "summary": "xorg-x11-server: Heap buffer overread/data leakage in ProcAppleDRICreatePixmap", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31082.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31082.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.x.org/archives/xorg-announce/2024-April/003497.html", "reference_id": "003497.html", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-29T15:13:28Z/" } ], "url": "https://lists.x.org/archives/xorg-announce/2024-April/003497.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271999", "reference_id": "2271999", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-29T15:13:28Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271999" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-31082", "reference_id": "CVE-2024-31082", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-29T15:13:28Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-31082" }, { "reference_url": "https://security.gentoo.org/glsa/202411-08", "reference_id": "GLSA-202411-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202411-08" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136519?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u7?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u7%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136520?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.11-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.11-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-31082" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-44pt-tgfg-k3hh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106670?format=api", "vulnerability_id": "VCID-47qj-hd74-27h7", "summary": "The XVideo extension in XFree86 4.0.0, X.Org X Window System (aka X11 or X) X11R6.7, and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) SProcXvQueryExtension, (2) SProcXvQueryAdaptors, (3) SProcXvQueryEncodings, (4) SProcXvGrabPort, (5) SProcXvUngrabPort, (6) SProcXvPutVideo, (7) SProcXvPutStill, (8) SProcXvGetVideo, (9) SProcXvGetStill, (10) SProcXvPutImage, (11) SProcXvShmPutImage, (12) SProcXvSelectVideoNotify, (13) SProcXvSelectPortNotify, (14) SProcXvStopVideo, (15) SProcXvSetPortAttribute, (16) SProcXvGetPortAttribute, (17) SProcXvQueryBestSize, (18) SProcXvQueryPortAttributes, (19) SProcXvQueryImageAttributes, or (20) SProcXvListImageFormats function.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8099.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8099.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8099", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01337", "scoring_system": "epss", "scoring_elements": "0.80329", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8099" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168710", "reference_id": "1168710", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168710" }, { "reference_url": "https://security.gentoo.org/glsa/201504-06", "reference_id": "GLSA-201504-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201504-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1982", "reference_id": "RHSA-2014:1982", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1982" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1983", "reference_id": "RHSA-2014:1983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1983" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136451?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.2.901-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2014-8099" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-47qj-hd74-27h7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/90720?format=api", "vulnerability_id": "VCID-4q3g-1az1-ybd6", "summary": "xorg-x11-server: Use-after-free in ProcRenderAddGlyphs", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31083.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31083.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272000", "reference_id": "2272000", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272000" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client", "reference_id": "cpe:/o:redhat:enterprise_linux:7::client", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode", "reference_id": "cpe:/o:redhat:enterprise_linux:7::computenode", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server", "reference_id": "cpe:/o:redhat:enterprise_linux:7::server", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation", "reference_id": "cpe:/o:redhat:enterprise_linux:7::workstation", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-31083", "reference_id": "CVE-2024-31083", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-31083" }, { "reference_url": "https://security.gentoo.org/glsa/202411-08", "reference_id": "GLSA-202411-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202411-08" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:1785", "reference_id": "RHSA-2024:1785", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:1785" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2036", "reference_id": "RHSA-2024:2036", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2036" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2037", "reference_id": "RHSA-2024:2037", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2037" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2038", "reference_id": "RHSA-2024:2038", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2038" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2039", "reference_id": "RHSA-2024:2039", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2039" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2040", "reference_id": "RHSA-2024:2040", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2040" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2041", "reference_id": "RHSA-2024:2041", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2042", "reference_id": "RHSA-2024:2042", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2042" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2080", "reference_id": "RHSA-2024:2080", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2080" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2616", "reference_id": "RHSA-2024:2616", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2616" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3258", "reference_id": "RHSA-2024:3258", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:3258" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3261", "reference_id": "RHSA-2024:3261", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:3261" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3343", "reference_id": "RHSA-2024:3343", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:3343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9093", "reference_id": "RHSA-2024:9093", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9093" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9122", "reference_id": "RHSA-2024:9122", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9122" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:12751" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136519?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u7?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u7%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136520?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.11-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.11-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-31083" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4q3g-1az1-ybd6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106655?format=api", "vulnerability_id": "VCID-563m-twrn-1kg7", "summary": "xkeyboard-config before 2.5 in X.Org before 7.6 enables certain XKB debugging functions by default, which allows physically proximate attackers to bypass an X screen lock via keyboard combinations that break the input grab.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0064.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0064.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2012-0064", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23834", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2012-0064" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=656410", "reference_id": "656410", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=656410" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=783039", "reference_id": "783039", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=783039" }, { "reference_url": "https://security.gentoo.org/glsa/201201-16", "reference_id": "GLSA-201201-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201201-16" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136443?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.11.3.901-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.11.3.901-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2012-0064" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-563m-twrn-1kg7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106630?format=api", "vulnerability_id": "VCID-5adj-h8vd-fydm", "summary": "Integer overflow in the ProcDbeSwapBuffers function in the DBE extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree86 X server, allows local users to execute arbitrary code via a crafted X protocol request that triggers memory corruption during processing of unspecified data structures.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-6103.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-6103.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2006-6103", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.1425", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2006-6103" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618240", "reference_id": "1618240", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618240" }, { "reference_url": "https://security.gentoo.org/glsa/200701-25", "reference_id": "GLSA-200701-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200701-25" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2007:0002", "reference_id": "RHSA-2007:0002", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2007:0002" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2007:0003", "reference_id": "RHSA-2007:0003", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2007:0003" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136419?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.1.1-15?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.1.1-15%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2006-6103" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5adj-h8vd-fydm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106652?format=api", "vulnerability_id": "VCID-5h7m-8559-sqau", "summary": "The ProcRenderAddGlyphs function in the Render extension (render/render.c) in X.Org xserver 1.7.7 and earlier allows local users to read arbitrary memory and possibly cause a denial of service (server crash) via unspecified vectors related to an \"input sanitization flaw.\"", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4819.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4819.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-4819", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22526", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-4819" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=740961", "reference_id": "740961", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=740961" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:1359", "reference_id": "RHSA-2011:1359", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:1359" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:1360", "reference_id": "RHSA-2011:1360", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:1360" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136439?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.9.0.901-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.9.0.901-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2010-4819" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5h7m-8559-sqau" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/70727?format=api", "vulnerability_id": "VCID-5nbt-cvgt-pkff", "summary": "GNOME screensaver 2.20 in Ubuntu 7.10, when used with Compiz, does not properly reserve input focus, which allows attackers with physical access to take control of the session after entering an Alt-Tab sequence, a related issue to CVE-2007-3069.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-3920.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-3920.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2007-3920", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00051", "scoring_system": "epss", "scoring_elements": "0.16325", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2007-3920" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=350271", "reference_id": "350271", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=350271" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=449108", "reference_id": "449108", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=449108" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0485", "reference_id": "RHSA-2008:0485", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0485" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136425?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.4.1~git20080118-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.1~git20080118-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2007-3920" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5nbt-cvgt-pkff" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91745?format=api", "vulnerability_id": "VCID-67p9-ddez-7ka1", "summary": "xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6377.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6377.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253291", "reference_id": "2253291", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253291" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7886", "reference_id": "RHSA-2023:7886", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7886" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0006", "reference_id": "RHSA-2024:0006", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0006" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0009", "reference_id": "RHSA-2024:0009", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0009" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0010", "reference_id": "RHSA-2024:0010", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0010" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0014", "reference_id": "RHSA-2024:0014", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0014" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0015", "reference_id": "RHSA-2024:0015", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0015" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0016", "reference_id": "RHSA-2024:0016", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0016" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0017", "reference_id": "RHSA-2024:0017", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0017" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0018", "reference_id": "RHSA-2024:0018", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0018" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0020", "reference_id": "RHSA-2024:0020", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0020" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2170", "reference_id": "RHSA-2024:2170", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2996", "reference_id": "RHSA-2024:2996", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2996" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:13998", "reference_id": "RHSA-2025:13998", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:13998" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136505?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u10?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u10%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136504?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u4?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u4%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136507?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.10-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.10-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-6377" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-67p9-ddez-7ka1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106637?format=api", "vulnerability_id": "VCID-6814-39jv-pubh", "summary": "X.Org Xserver before 1.4.1 allows local users to determine the existence of arbitrary files via a filename argument in the -sp option to the X program, which produces different error messages depending on whether the filename exists.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5958.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5958.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2007-5958", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03599", "scoring_system": "epss", "scoring_elements": "0.8798", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2007-5958" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=391841", "reference_id": "391841", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=391841" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/5152.sh", "reference_id": "CVE-2007-5958", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/5152.sh" }, { "reference_url": "https://security.gentoo.org/glsa/200801-09", "reference_id": "GLSA-200801-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200801-09" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0029", "reference_id": "RHSA-2008:0029", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0029" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0030", "reference_id": "RHSA-2008:0030", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0030" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0031", "reference_id": "RHSA-2008:0031", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0031" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136428?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2007-5958" ], "risk_score": null, "exploitability": "2.0", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6814-39jv-pubh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/99562?format=api", "vulnerability_id": "VCID-6bnp-kn76-4qdm", "summary": "xorg-x11-server: XTestSwapFakeInput stack overflow", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46340.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46340.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46340", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01237", "scoring_system": "epss", "scoring_elements": "0.79556", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46340" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071", "reference_id": "1026071", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151755", "reference_id": "2151755", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151755" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0045", "reference_id": "RHSA-2023:0045", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0045" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0046", "reference_id": "RHSA-2023:0046", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0046" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2248", "reference_id": "RHSA-2023:2248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2249", "reference_id": "RHSA-2023:2249", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2249" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2257", "reference_id": "RHSA-2023:2257", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2257" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2805", "reference_id": "RHSA-2023:2805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2806", "reference_id": "RHSA-2023:2806", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2806" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2830", "reference_id": "RHSA-2023:2830", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2830" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136489?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u4?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u4%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136488?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.5-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.5-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-46340" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6bnp-kn76-4qdm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/92135?format=api", "vulnerability_id": "VCID-6ezy-q9rx-rfdd", "summary": "xorg-x11-server: Use-after-free bug in DestroyWindow", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5380.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5380.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2244736", "reference_id": "2244736", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2244736" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7428", "reference_id": "RHSA-2023:7428", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7428" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2298", "reference_id": "RHSA-2024:2298", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2298" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3067", "reference_id": "RHSA-2024:3067", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:3067" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136500?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u8?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u8%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136499?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136502?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.9-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-5380" ], "risk_score": 2.1, "exploitability": "0.5", "weighted_severity": "4.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6ezy-q9rx-rfdd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106653?format=api", "vulnerability_id": "VCID-6sfc-pmbw-6ffg", "summary": "The LockServer function in os/utils.c in X.Org xserver before 1.11.2 allows local users to determine the existence of arbitrary files via a symlink attack on a temporary lock file, which is handled differently if the file exists.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4028.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4028.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-4028", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27302", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-4028" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=745755", "reference_id": "745755", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=745755" }, { "reference_url": "https://security.gentoo.org/glsa/201110-19", "reference_id": "GLSA-201110-19", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201110-19" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0303", "reference_id": "RHSA-2012:0303", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0303" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0939", "reference_id": "RHSA-2012:0939", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0939" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136440?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.11.1.901-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.11.1.901-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2011-4028" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6sfc-pmbw-6ffg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80411?format=api", "vulnerability_id": "VCID-6t55-ed2e-2bcw", "summary": "xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Integer Overflow in Big Requests Extension", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49176.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49176.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108073", "reference_id": "1108073", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108073" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369", "reference_id": "1108369", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369954", "reference_id": "2369954", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369954" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10258", "reference_id": "RHSA-2025:10258", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10258" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10342", "reference_id": "RHSA-2025:10342", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10343", "reference_id": "RHSA-2025:10343", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10344", "reference_id": "RHSA-2025:10344", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10346", "reference_id": "RHSA-2025:10346", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10346" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10347", "reference_id": "RHSA-2025:10347", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10347" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10348", "reference_id": "RHSA-2025:10348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10349", "reference_id": "RHSA-2025:10349", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10349" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10350", "reference_id": "RHSA-2025:10350", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10350" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10351", "reference_id": "RHSA-2025:10351", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10351" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10352", "reference_id": "RHSA-2025:10352", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10355", "reference_id": "RHSA-2025:10355", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10355" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10356", "reference_id": "RHSA-2025:10356", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10356" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10360", "reference_id": "RHSA-2025:10360", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10360" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10370", "reference_id": "RHSA-2025:10370", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10370" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10374", "reference_id": "RHSA-2025:10374", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10374" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10375", "reference_id": "RHSA-2025:10375", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10375" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10376", "reference_id": "RHSA-2025:10376", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10376" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10377", "reference_id": "RHSA-2025:10377", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10377" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10378", "reference_id": "RHSA-2025:10378", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10378" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10381", "reference_id": "RHSA-2025:10381", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10381" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10410", "reference_id": "RHSA-2025:10410", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10410" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9303", "reference_id": "RHSA-2025:9303", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9303" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9304", "reference_id": "RHSA-2025:9304", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9304" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9305", "reference_id": "RHSA-2025:9305", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9305" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9306", "reference_id": "RHSA-2025:9306", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9306" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9392", "reference_id": "RHSA-2025:9392", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9964", "reference_id": "RHSA-2025:9964", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9964" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136533?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u16?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u16%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136532?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u10?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u10%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136537?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-49176" ], "risk_score": 3.3, "exploitability": "0.5", "weighted_severity": "6.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6t55-ed2e-2bcw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106699?format=api", "vulnerability_id": "VCID-713b-xwq2-7ych", "summary": "A flaw was found in xorg-x11-server before 1.20.10. A heap-buffer overflow in XkbSetDeviceInfo may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25712.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25712.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25712", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32452", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25712" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1887276", "reference_id": "1887276", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1887276" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976216", "reference_id": "976216", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976216" }, { "reference_url": "https://security.archlinux.org/ASA-202012-6", "reference_id": "ASA-202012-6", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202012-6" }, { "reference_url": "https://security.archlinux.org/AVG-1310", "reference_id": "AVG-1310", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1310" }, { "reference_url": "https://security.gentoo.org/glsa/202012-01", "reference_id": "GLSA-202012-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202012-01" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5408", "reference_id": "RHSA-2020:5408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5408" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1804", "reference_id": "RHSA-2021:1804", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1804" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136480?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.10-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.10-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-25712" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-713b-xwq2-7ych" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106684?format=api", "vulnerability_id": "VCID-74jd-1pbz-u7cu", "summary": "xorg-x11-server before 1.19.5 was missing length validation in XFree86 DRI extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12182.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12182.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00944", "scoring_system": "epss", "scoring_elements": "0.76655", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12182" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509223", "reference_id": "1509223", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509223" }, { "reference_url": "https://security.gentoo.org/glsa/201711-05", "reference_id": "GLSA-201711-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201711-05" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136465?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.5-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2017-12182" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-74jd-1pbz-u7cu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106639?format=api", "vulnerability_id": "VCID-7hgn-umm1-9ydh", "summary": "The ProcGetReservedColormapEntries function in the TOG-CUP extension in X.Org Xserver before 1.4.1 allows context-dependent attackers to read the contents of arbitrary memory locations via a request containing a 32-bit value that is improperly used as an array index.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6428.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6428.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2007-6428", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02514", "scoring_system": "epss", "scoring_elements": "0.85671", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2007-6428" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=413791", "reference_id": "413791", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=413791" }, { "reference_url": "https://security.gentoo.org/glsa/200801-09", "reference_id": "GLSA-200801-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200801-09" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0029", "reference_id": "RHSA-2008:0029", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0029" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0030", "reference_id": "RHSA-2008:0030", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0030" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0031", "reference_id": "RHSA-2008:0031", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0031" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136428?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2007-6428" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7hgn-umm1-9ydh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91489?format=api", "vulnerability_id": "VCID-828y-hsz4-tqbe", "summary": "xorg-x11-server: reattaching to different master device may lead to out-of-bounds memory access", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0229.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0229.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256690", "reference_id": "2256690", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256690" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client", "reference_id": "cpe:/o:redhat:enterprise_linux:7::client", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode", "reference_id": "cpe:/o:redhat:enterprise_linux:7::computenode", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server", "reference_id": "cpe:/o:redhat:enterprise_linux:7::server", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation", "reference_id": "cpe:/o:redhat:enterprise_linux:7::workstation", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-0229", "reference_id": "CVE-2024-0229", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-0229" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0320", "reference_id": "RHSA-2024:0320", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0320" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0557", "reference_id": "RHSA-2024:0557", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0557" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0558", "reference_id": "RHSA-2024:0558", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0558" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0597", "reference_id": "RHSA-2024:0597", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0597" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0607", "reference_id": "RHSA-2024:0607", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0607" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0614", "reference_id": "RHSA-2024:0614", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0614" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0617", "reference_id": "RHSA-2024:0617", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0617" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0621", "reference_id": "RHSA-2024:0621", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0621" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0626", "reference_id": "RHSA-2024:0626", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0626" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0629", "reference_id": "RHSA-2024:0629", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0629" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2170", "reference_id": "RHSA-2024:2170", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2996", "reference_id": "RHSA-2024:2996", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2996" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:12751" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136512?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u11?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u11%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136511?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136513?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-0229" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-828y-hsz4-tqbe" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5017?format=api", "vulnerability_id": "VCID-8bbs-eqdc-c7fh", "summary": "arbitrary code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4009.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4009.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4009", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25722", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4009" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2026072", "reference_id": "2026072", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2026072" }, { "reference_url": "https://security.archlinux.org/AVG-2636", "reference_id": "AVG-2636", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2636" }, { "reference_url": "https://security.archlinux.org/AVG-2640", "reference_id": "AVG-2640", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2640" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0003", "reference_id": "RHSA-2022:0003", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0003" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1917", "reference_id": "RHSA-2022:1917", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1917" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136483?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136482?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.13-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.13-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2021-4009" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8bbs-eqdc-c7fh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73042?format=api", "vulnerability_id": "VCID-8h6n-ntrj-q7g6", "summary": "xorg: xwayland: Use-after-free in Xkb client resource removal", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-62230.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-62230.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2402653", "reference_id": "2402653", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2402653" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19432", "reference_id": "RHSA-2025:19432", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19432" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19433", "reference_id": "RHSA-2025:19433", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19433" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19434", "reference_id": "RHSA-2025:19434", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19434" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19435", "reference_id": "RHSA-2025:19435", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19435" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19489", "reference_id": "RHSA-2025:19489", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19489" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19623", "reference_id": "RHSA-2025:19623", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19623" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19909", "reference_id": "RHSA-2025:19909", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19909" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20958", "reference_id": "RHSA-2025:20958", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:20958" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20960", "reference_id": "RHSA-2025:20960", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:20960" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20961", "reference_id": "RHSA-2025:20961", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:20961" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:21035", "reference_id": "RHSA-2025:21035", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:21035" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22040", "reference_id": "RHSA-2025:22040", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22040" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22041", "reference_id": "RHSA-2025:22041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22051", "reference_id": "RHSA-2025:22051", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22051" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22055", "reference_id": "RHSA-2025:22055", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22055" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22056", "reference_id": "RHSA-2025:22056", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22056" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22077", "reference_id": "RHSA-2025:22077", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22077" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22096", "reference_id": "RHSA-2025:22096", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22096" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22164", "reference_id": "RHSA-2025:22164", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22164" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22167", "reference_id": "RHSA-2025:22167", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22167" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22364", "reference_id": "RHSA-2025:22364", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22364" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22365", "reference_id": "RHSA-2025:22365", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22365" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22426", "reference_id": "RHSA-2025:22426", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22426" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22427", "reference_id": "RHSA-2025:22427", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22427" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22667", "reference_id": "RHSA-2025:22667", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22667" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22729", "reference_id": "RHSA-2025:22729", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22729" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22742", "reference_id": "RHSA-2025:22742", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22742" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22753", "reference_id": "RHSA-2025:22753", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22753" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0031", "reference_id": "RHSA-2026:0031", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0031" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0033", "reference_id": "RHSA-2026:0033", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0033" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0034", "reference_id": "RHSA-2026:0034", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0034" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0035", "reference_id": "RHSA-2026:0035", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0035" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0036", "reference_id": "RHSA-2026:0036", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0036" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136543?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u17?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u17%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136542?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u11?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u11%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136545?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136544?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.20-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.20-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-62230" ], "risk_score": 3.3, "exploitability": "0.5", "weighted_severity": "6.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8h6n-ntrj-q7g6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106677?format=api", "vulnerability_id": "VCID-8k3e-h7va-myfg", "summary": "X.Org Server (aka xserver and xorg-server) 1.15.0 through 1.16.x before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) sproc_dri3_query_version, (2) sproc_dri3_open, (3) sproc_dri3_pixmap_from_buffer, (4) sproc_dri3_buffer_from_pixmap, (5) sproc_dri3_fence_from_fd, (6) sproc_dri3_fd_from_fence, (7) proc_present_query_capabilities, (8) sproc_present_query_version, (9) sproc_present_pixmap, (10) sproc_present_notify_msc, (11) sproc_present_select_input, or (12) sproc_present_query_capabilities function in the (a) DRI3 or (b) Present extension.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8103.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8103.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8103", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01787", "scoring_system": "epss", "scoring_elements": "0.83079", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8103" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168716", "reference_id": "1168716", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168716" }, { "reference_url": "https://security.gentoo.org/glsa/201504-06", "reference_id": "GLSA-201504-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201504-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1983", "reference_id": "RHSA-2014:1983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1983" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136451?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.2.901-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2014-8103" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8k3e-h7va-myfg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106668?format=api", "vulnerability_id": "VCID-8unb-tn3a-abe3", "summary": "The DBE extension in X.Org X Window System (aka X11 or X) X11R6.1 and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) ProcDbeSwapBuffers or (2) SProcDbeSwapBuffers function.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8097.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8097.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8097", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01297", "scoring_system": "epss", "scoring_elements": "0.80046", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8097" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168705", "reference_id": "1168705", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168705" }, { "reference_url": "https://security.gentoo.org/glsa/201504-06", "reference_id": "GLSA-201504-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201504-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1982", "reference_id": "RHSA-2014:1982", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1982" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1983", "reference_id": "RHSA-2014:1983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1983" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136451?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.2.901-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2014-8097" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8unb-tn3a-abe3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106687?format=api", "vulnerability_id": "VCID-939t-kz1h-k7d6", "summary": "xorg-x11-server before 1.19.5 was missing length validation in X-Resource extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12186.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12186.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0075", "scoring_system": "epss", "scoring_elements": "0.735", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12186" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509216", "reference_id": "1509216", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509216" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136465?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.5-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2017-12186" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-939t-kz1h-k7d6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85250?format=api", "vulnerability_id": "VCID-95dx-8w8k-4kfp", "summary": "xorg: xwayland: Out-of-bounds write in CreatePointerBarrierClient()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26598.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26598.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906", "reference_id": "1098906", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907", "reference_id": "1098907", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345254", "reference_id": "2345254", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345254" }, { "reference_url": "https://security.gentoo.org/glsa/202506-04", "reference_id": "GLSA-202506-04", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202506-04" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2500", "reference_id": "RHSA-2025:2500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2502", "reference_id": "RHSA-2025:2502", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2861", "reference_id": "RHSA-2025:2861", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2861" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2862", "reference_id": "RHSA-2025:2862", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2862" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2865", "reference_id": "RHSA-2025:2865", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2865" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2866", "reference_id": "RHSA-2025:2866", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2873", "reference_id": "RHSA-2025:2873", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2873" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2874", "reference_id": "RHSA-2025:2874", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2874" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2875", "reference_id": "RHSA-2025:2875", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2879", "reference_id": "RHSA-2025:2879", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2879" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2880", "reference_id": "RHSA-2025:2880", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2880" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3976", "reference_id": "RHSA-2025:3976", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:3976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7163", "reference_id": "RHSA-2025:7163", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7165", "reference_id": "RHSA-2025:7165", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7458", "reference_id": "RHSA-2025:7458", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7458" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136526?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u15?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u15%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136525?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u9?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u9%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136527?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-26598" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-95dx-8w8k-4kfp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85245?format=api", "vulnerability_id": "VCID-96ga-avmd-kubh", "summary": "xorg: xwayland: Use-after-free in PlayReleasedEvents()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26600.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26600.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906", "reference_id": "1098906", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907", "reference_id": "1098907", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345252", "reference_id": "2345252", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345252" }, { "reference_url": "https://security.gentoo.org/glsa/202506-04", "reference_id": "GLSA-202506-04", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202506-04" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2500", "reference_id": "RHSA-2025:2500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2502", "reference_id": "RHSA-2025:2502", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2861", "reference_id": "RHSA-2025:2861", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2861" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2862", "reference_id": "RHSA-2025:2862", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2862" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2865", "reference_id": "RHSA-2025:2865", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2865" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2866", "reference_id": "RHSA-2025:2866", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2873", "reference_id": "RHSA-2025:2873", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2873" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2874", "reference_id": "RHSA-2025:2874", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2874" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2875", "reference_id": "RHSA-2025:2875", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2879", "reference_id": "RHSA-2025:2879", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2879" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2880", "reference_id": "RHSA-2025:2880", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2880" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3976", "reference_id": "RHSA-2025:3976", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:3976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7163", "reference_id": "RHSA-2025:7163", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7165", "reference_id": "RHSA-2025:7165", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7458", "reference_id": "RHSA-2025:7458", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7458" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136526?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u15?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u15%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136525?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u9?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u9%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136527?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-26600" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-96ga-avmd-kubh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106656?format=api", "vulnerability_id": "VCID-96zj-dxw7-jbf1", "summary": "Format string vulnerability in the LogVHdrMessageVerb function in os/log.c in X.Org X11 1.11 allows attackers to cause a denial of service or possibly execute arbitrary code via format string specifiers in an input device name.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2118.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2118.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2012-2118", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02146", "scoring_system": "epss", "scoring_elements": "0.84544", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2012-2118" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=673148", "reference_id": "673148", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=673148" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=814126", "reference_id": "814126", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=814126" }, { "reference_url": "https://security.gentoo.org/glsa/201207-04", "reference_id": "GLSA-201207-04", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201207-04" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136444?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.12.1.902-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.12.1.902-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2012-2118" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-96zj-dxw7-jbf1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6224?format=api", "vulnerability_id": "VCID-97f6-pm5e-8qf3", "summary": "privilege escalation", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14665.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14665.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-14665", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.16034", "scoring_system": "epss", "scoring_elements": "0.94902", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-14665" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14665", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14665" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1637761", "reference_id": "1637761", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1637761" }, { "reference_url": "https://security.archlinux.org/ASA-201810-15", "reference_id": "ASA-201810-15", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201810-15" }, { "reference_url": "https://security.archlinux.org/AVG-788", "reference_id": "AVG-788", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-788" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/aix/local/45938.pl", "reference_id": "CVE-2018-14665", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/aix/local/45938.pl" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/45832.py", "reference_id": "CVE-2018-14665", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/45832.py" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/45697.txt", "reference_id": "CVE-2018-14665", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/45697.txt" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/45908.rb", "reference_id": "CVE-2018-14665", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/45908.rb" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/45922.sh", "reference_id": "CVE-2018-14665", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/45922.sh" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/openbsd/local/45742.sh", "reference_id": "CVE-2018-14665", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/openbsd/local/45742.sh" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/solaris/local/46142.sh", "reference_id": "CVE-2018-14665", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/solaris/local/46142.sh" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/local/47701.rb", "reference_id": "CVE-2018-14665", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/local/47701.rb" }, { "reference_url": "https://raw.githubusercontent.com/rapid7/metasploit-framework/be6cfde92158d2c6716711046536c9f1ca44d958/modules/exploits/multi/local/xorg_x11_suid_server.rb", "reference_id": "CVE-2018-14665", "reference_type": "exploit", "scores": [], "url": "https://raw.githubusercontent.com/rapid7/metasploit-framework/be6cfde92158d2c6716711046536c9f1ca44d958/modules/exploits/multi/local/xorg_x11_suid_server.rb" }, { "reference_url": "https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/aix/local/xorg_x11_server.rb", "reference_id": "CVE-2018-14665", "reference_type": "exploit", "scores": [], "url": "https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/aix/local/xorg_x11_server.rb" }, { "reference_url": "https://twitter.com/hackerfantastic/status/1055517801224396800", "reference_id": "CVE-2018-14665", "reference_type": "exploit", "scores": [], "url": "https://twitter.com/hackerfantastic/status/1055517801224396800" }, { "reference_url": "https://security.gentoo.org/glsa/201810-09", "reference_id": "GLSA-201810-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201810-09" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:3410", "reference_id": "RHSA-2018:3410", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:3410" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136478?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.3-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.3-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2018-14665" ], "risk_score": 10.0, "exploitability": "2.0", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-97f6-pm5e-8qf3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106665?format=api", "vulnerability_id": "VCID-9k4g-mc81-tffe", "summary": "Integer overflow in the ProcDRI2GetBuffers function in the DRI2 extension in X.Org Server (aka xserver and xorg-server) 1.7.0 through 1.16.x before 1.16.3 allows remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted request, which triggers an out-of-bounds read or write.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8094.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8094.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8094", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01042", "scoring_system": "epss", "scoring_elements": "0.77789", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168691", "reference_id": "1168691", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168691" }, { "reference_url": "https://security.gentoo.org/glsa/201504-06", "reference_id": "GLSA-201504-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201504-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1983", "reference_id": "RHSA-2014:1983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1983" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136451?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.2.901-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2014-8094" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9k4g-mc81-tffe" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106672?format=api", "vulnerability_id": "VCID-9kj6-9etk-uudg", "summary": "The RandR extension in XFree86 4.2.0, X.Org X Window System (aka X11 or X) X11R6.7, and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) SProcRRQueryVersion, (2) SProcRRGetScreenInfo, (3) SProcRRSelectInput, or (4) SProcRRConfigureOutputProperty function.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8101.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8101.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8101", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01269", "scoring_system": "epss", "scoring_elements": "0.79818", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168713", "reference_id": "1168713", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168713" }, { "reference_url": "https://security.gentoo.org/glsa/201504-06", "reference_id": "GLSA-201504-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201504-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1982", "reference_id": "RHSA-2014:1982", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1982" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1983", "reference_id": "RHSA-2014:1983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1983" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136451?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.2.901-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2014-8101" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9kj6-9etk-uudg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80475?format=api", "vulnerability_id": "VCID-9pnm-jep8-3bf9", "summary": "xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Integer overflow in X Record extension", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49179.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49179.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369", "reference_id": "1108369", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369978", "reference_id": "2369978", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369978" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10258", "reference_id": "RHSA-2025:10258", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10258" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10342", "reference_id": "RHSA-2025:10342", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10343", "reference_id": "RHSA-2025:10343", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10344", "reference_id": "RHSA-2025:10344", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10346", "reference_id": "RHSA-2025:10346", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10346" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10347", "reference_id": "RHSA-2025:10347", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10347" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10348", "reference_id": "RHSA-2025:10348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10349", "reference_id": "RHSA-2025:10349", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10349" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10350", "reference_id": "RHSA-2025:10350", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10350" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10351", "reference_id": "RHSA-2025:10351", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10351" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10352", "reference_id": "RHSA-2025:10352", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10355", "reference_id": "RHSA-2025:10355", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10355" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10356", "reference_id": "RHSA-2025:10356", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10356" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10360", "reference_id": "RHSA-2025:10360", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10360" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10370", "reference_id": "RHSA-2025:10370", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10370" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10374", "reference_id": "RHSA-2025:10374", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10374" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10375", "reference_id": "RHSA-2025:10375", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10375" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10376", "reference_id": "RHSA-2025:10376", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10376" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10377", "reference_id": "RHSA-2025:10377", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10377" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10378", "reference_id": "RHSA-2025:10378", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10378" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10381", "reference_id": "RHSA-2025:10381", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10381" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10410", "reference_id": "RHSA-2025:10410", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10410" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9303", "reference_id": "RHSA-2025:9303", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9303" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9304", "reference_id": "RHSA-2025:9304", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9304" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9305", "reference_id": "RHSA-2025:9305", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9305" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9306", "reference_id": "RHSA-2025:9306", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9306" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9392", "reference_id": "RHSA-2025:9392", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9964", "reference_id": "RHSA-2025:9964", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9964" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136533?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u16?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u16%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136532?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u10?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u10%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136535?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-49179" ], "risk_score": 3.3, "exploitability": "0.5", "weighted_severity": "6.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9pnm-jep8-3bf9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106698?format=api", "vulnerability_id": "VCID-a2n5-8wwp-87hw", "summary": "A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Integer underflow leading to heap-buffer overflow may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14362.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14362.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14362", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00232", "scoring_system": "epss", "scoring_elements": "0.46046", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14362" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1869144", "reference_id": "1869144", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1869144" }, { "reference_url": "https://security.gentoo.org/glsa/202012-01", "reference_id": "GLSA-202012-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202012-01" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4910", "reference_id": "RHSA-2020:4910", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4910" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4953", "reference_id": "RHSA-2020:4953", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4953" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1804", "reference_id": "RHSA-2021:1804", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1804" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136479?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.9-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-14362" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-a2n5-8wwp-87hw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/77824?format=api", "vulnerability_id": "VCID-azs1-b52k-qqgw", "summary": "X.Org and XFree86, including libX11, xdm, xf86dga, xinit, xload, xtrans, and xterm, does not check the return values for setuid and seteuid calls when attempting to drop privileges, which might allow local users to gain privileges by causing those calls to fail, such as by exceeding a ulimit.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-4447.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-4447.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2006-4447", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32324", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2006-4447" }, { "reference_url": "https://security.gentoo.org/glsa/200608-25", "reference_id": "GLSA-200608-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200608-25" }, { "reference_url": "https://security.gentoo.org/glsa/200704-22", "reference_id": "GLSA-200704-22", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200704-22" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136417?format=api", "purl": "pkg:deb/debian/xorg-server@1:1.0.2-9?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@1:1.0.2-9%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2006-4447" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-azs1-b52k-qqgw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106626?format=api", "vulnerability_id": "VCID-bj7e-pnpm-nqfw", "summary": "X.Org server (xorg-server) 1.0.0 and later, X11R6.9.0, and X11R7.0 inadvertently treats the address of the geteuid function as if it is the return value of a call to geteuid, which allows local users to bypass intended restrictions and (1) execute arbitrary code via the -modulepath command line option or (2) overwrite arbitrary files via -logfile.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2006-0745", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00177", "scoring_system": "epss", "scoring_elements": "0.38946", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2006-0745" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=378465", "reference_id": "378465", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=378465" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/1596.txt", "reference_id": "OSVDB-24000;CVE-2006-0745", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/1596.txt" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136408?format=api", "purl": "pkg:deb/debian/xorg-server@1:1.0.2-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@1:1.0.2-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2006-0745" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bj7e-pnpm-nqfw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106666?format=api", "vulnerability_id": "VCID-bny6-pyf6-k3ht", "summary": "The XInput extension in X.Org X Window System (aka X11 or X) X11R4 and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) SProcXChangeDeviceControl, (2) ProcXChangeDeviceControl, (3) ProcXChangeFeedbackControl, (4) ProcXSendExtensionEvent, (5) SProcXIAllowEvents, (6) SProcXIChangeCursor, (7) ProcXIChangeHierarchy, (8) SProcXIGetClientPointer, (9) SProcXIGrabDevice, (10) SProcXIUngrabDevice, (11) ProcXIUngrabDevice, (12) SProcXIPassiveGrabDevice, (13) ProcXIPassiveGrabDevice, (14) SProcXIPassiveUngrabDevice, (15) ProcXIPassiveUngrabDevice, (16) SProcXListDeviceProperties, (17) SProcXDeleteDeviceProperty, (18) SProcXIListProperties, (19) SProcXIDeleteProperty, (20) SProcXIGetProperty, (21) SProcXIQueryDevice, (22) SProcXIQueryPointer, (23) SProcXISelectEvents, (24) SProcXISetClientPointer, (25) SProcXISetFocus, (26) SProcXIGetFocus, or (27) SProcXIWarpPointer function.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8095.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8095.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8095", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01115", "scoring_system": "epss", "scoring_elements": "0.78527", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168694", "reference_id": "1168694", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168694" }, { "reference_url": "https://security.gentoo.org/glsa/201504-06", "reference_id": "GLSA-201504-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201504-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1982", "reference_id": "RHSA-2014:1982", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1982" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1983", "reference_id": "RHSA-2014:1983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1983" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136451?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.2.901-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2014-8095" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bny6-pyf6-k3ht" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/100698?format=api", "vulnerability_id": "VCID-bxtg-a4vf-8fau", "summary": "xorg-x11-server: memory leak in ProcXkbGetKbdByName() in xkb/xkb.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3551.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3551.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3551", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0063", "scoring_system": "epss", "scoring_elements": "0.7068", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3551" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2140701", "reference_id": "2140701", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2140701" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8491", "reference_id": "RHSA-2022:8491", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8491" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2248", "reference_id": "RHSA-2023:2248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2249", "reference_id": "RHSA-2023:2249", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2249" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2805", "reference_id": "RHSA-2023:2805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2806", "reference_id": "RHSA-2023:2806", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2806" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136487?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136486?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.4-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.4-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-3551" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bxtg-a4vf-8fau" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91494?format=api", "vulnerability_id": "VCID-czx3-mdx4-hbey", "summary": "xorg-x11-server: SELinux unlabeled GLX PBuffer", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0408.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0408.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257689", "reference_id": "2257689", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T17:14:07Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257689" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client", "reference_id": "cpe:/o:redhat:enterprise_linux:7::client", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode", "reference_id": "cpe:/o:redhat:enterprise_linux:7::computenode", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server", "reference_id": "cpe:/o:redhat:enterprise_linux:7::server", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation", "reference_id": "cpe:/o:redhat:enterprise_linux:7::workstation", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-0408", "reference_id": "CVE-2024-0408", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T17:14:07Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-0408" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0320", "reference_id": "RHSA-2024:0320", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T17:14:07Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0320" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T17:14:07Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2170", "reference_id": "RHSA-2024:2170", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T17:14:07Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T17:14:07Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2996", "reference_id": "RHSA-2024:2996", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T17:14:07Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2996" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136512?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u11?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u11%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136511?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136513?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-0408" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-czx3-mdx4-hbey" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106635?format=api", "vulnerability_id": "VCID-d78c-241h-7yh6", "summary": "Array index error in the XFree86-Misc extension in X.Org Xserver before 1.4.1 allows context-dependent attackers to execute arbitrary code via a PassMessage request containing a large array index.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5760.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5760.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2007-5760", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.04445", "scoring_system": "epss", "scoring_elements": "0.89242", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2007-5760" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=414031", "reference_id": "414031", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=414031" }, { "reference_url": "https://security.gentoo.org/glsa/200801-09", "reference_id": "GLSA-200801-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200801-09" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0030", "reference_id": "RHSA-2008:0030", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0030" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0031", "reference_id": "RHSA-2008:0031", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0031" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136428?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2007-5760" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-d78c-241h-7yh6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106680?format=api", "vulnerability_id": "VCID-d837-arrp-cyhx", "summary": "The ProcPutImage function in dix/dispatch.c in X.Org Server (aka xserver and xorg-server) before 1.16.4 allows attackers to cause a denial of service (divide-by-zero and crash) via a zero-height PutImage request.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3418.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3418.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-3418", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00497", "scoring_system": "epss", "scoring_elements": "0.66197", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-3418" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1216020", "reference_id": "1216020", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1216020" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=774308", "reference_id": "774308", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=774308" }, { "reference_url": "https://security.gentoo.org/glsa/201701-64", "reference_id": "GLSA-201701-64", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-64" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136456?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2015-3418" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-d837-arrp-cyhx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/99593?format=api", "vulnerability_id": "VCID-d9am-npf2-jkfm", "summary": "xorg-x11-server: XkbGetKbdByName use-after-free", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-4283.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-4283.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-4283", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.002", "scoring_system": "epss", "scoring_elements": "0.41916", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-4283" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071", "reference_id": "1026071", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151761", "reference_id": "2151761", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151761" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0045", "reference_id": "RHSA-2023:0045", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0045" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0046", "reference_id": "RHSA-2023:0046", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0046" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2248", "reference_id": "RHSA-2023:2248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2249", "reference_id": "RHSA-2023:2249", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2249" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2257", "reference_id": "RHSA-2023:2257", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2257" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2805", "reference_id": "RHSA-2023:2805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2806", "reference_id": "RHSA-2023:2806", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2806" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2830", "reference_id": "RHSA-2023:2830", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2830" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136489?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u4?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u4%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136488?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.5-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.5-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-4283" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-d9am-npf2-jkfm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106661?format=api", "vulnerability_id": "VCID-dbns-h674-n7gm", "summary": "X.Org X Window System (aka X11 and X) X11R5 and X.Org Server (aka xserver and xorg-server) before 1.16.3, when using SUN-DES-1 (Secure RPC) authentication credentials, does not check the return value of a malloc call, which allows remote attackers to cause a denial of service (NULL pointer dereference and server crash) via a crafted connection request.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8091.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8091.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8091", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.04839", "scoring_system": "epss", "scoring_elements": "0.89707", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8091" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168680", "reference_id": "1168680", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168680" }, { "reference_url": "https://security.gentoo.org/glsa/201504-06", "reference_id": "GLSA-201504-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201504-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1982", "reference_id": "RHSA-2014:1982", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1982" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1983", "reference_id": "RHSA-2014:1983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1983" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136451?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.2.901-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2014-8091" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dbns-h674-n7gm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106679?format=api", "vulnerability_id": "VCID-dnsa-z3ck-53dc", "summary": "The authentication setup in XWayland 1.16.x and 1.17.x before 1.17.2 starts the server in non-authenticating mode, which allows local users to read from or send information to arbitrary X11 clients via vectors involving a UNIX socket.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3164.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3164.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-3164", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.2041", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-3164" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1219548", "reference_id": "1219548", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1219548" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=788410", "reference_id": "788410", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=788410" }, { "reference_url": "https://security.gentoo.org/glsa/201701-64", "reference_id": "GLSA-201701-64", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-64" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136459?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.17.2-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.17.2-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2015-3164" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dnsa-z3ck-53dc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106650?format=api", "vulnerability_id": "VCID-ef9m-a6nn-j3d2", "summary": "The fbComposite function in fbpict.c in the Render extension in the X server in X.Org X11R7.1 allows remote authenticated users to cause a denial of service (memory corruption and daemon crash) or possibly execute arbitrary code via a crafted request, related to an incorrect macro definition.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1166.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1166.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-1166", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03655", "scoring_system": "epss", "scoring_elements": "0.88078", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-1166" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=582601", "reference_id": "582601", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=582601" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2010:0382", "reference_id": "RHSA-2010:0382", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2010:0382" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136437?format=api", "purl": "pkg:deb/debian/xorg-server@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2010-1166" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ef9m-a6nn-j3d2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106681?format=api", "vulnerability_id": "VCID-egcx-kc7z-skfq", "summary": "xorg-x11-server before 1.19.5 was vulnerable to integer overflow in (S)ProcXIBarrierReleasePointer functions allowing malicious X client to cause X server to crash or possibly execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12179.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12179.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75042", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12179" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509220", "reference_id": "1509220", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509220" }, { "reference_url": "https://security.gentoo.org/glsa/201711-05", "reference_id": "GLSA-201711-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201711-05" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136465?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.5-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2017-12179" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-egcx-kc7z-skfq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106693?format=api", "vulnerability_id": "VCID-ej11-bqxf-7qas", "summary": "A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Out-Of-Bounds access in XkbSetNames function may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14345.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14345.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14345", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00101", "scoring_system": "epss", "scoring_elements": "0.27491", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14345" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1862241", "reference_id": "1862241", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1862241" }, { "reference_url": "https://security.gentoo.org/glsa/202012-01", "reference_id": "GLSA-202012-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202012-01" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4910", "reference_id": "RHSA-2020:4910", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4910" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4953", "reference_id": "RHSA-2020:4953", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4953" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1804", "reference_id": "RHSA-2021:1804", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1804" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136479?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.9-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-14345" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ej11-bqxf-7qas" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4866?format=api", "vulnerability_id": "VCID-f67a-ybc4-x3c2", "summary": "privilege escalation", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2319.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2319.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2319", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11235", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2319" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014903", "reference_id": "1014903", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014903" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2106671", "reference_id": "2106671", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2106671" }, { "reference_url": "https://security.archlinux.org/AVG-2770", "reference_id": "AVG-2770", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2770" }, { "reference_url": "https://security.gentoo.org/glsa/202210-30", "reference_id": "GLSA-202210-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202210-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5905", "reference_id": "RHSA-2022:5905", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5905" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7583", "reference_id": "RHSA-2022:7583", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7583" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8221", "reference_id": "RHSA-2022:8221", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8221" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8222", "reference_id": "RHSA-2022:8222", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8222" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136485?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136484?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.4-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.4-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-2319" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-f67a-ybc4-x3c2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106648?format=api", "vulnerability_id": "VCID-f9yc-23gb-qyhy", "summary": "Multiple integer overflows in the Render extension in the X server 1.4 in X.Org X11R7.3 allow context-dependent attackers to execute arbitrary code via a (1) SProcRenderCreateLinearGradient, (2) SProcRenderCreateRadialGradient, or (3) SProcRenderCreateConicalGradient request with an invalid field specifying the number of bytes to swap in the request data, which triggers heap memory corruption.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2362.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2362.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2008-2362", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02076", "scoring_system": "epss", "scoring_elements": "0.84279", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2008-2362" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=448785", "reference_id": "448785", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=448785" }, { "reference_url": "https://security.gentoo.org/glsa/200806-07", "reference_id": "GLSA-200806-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200806-07" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0504", "reference_id": "RHSA-2008:0504", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0504" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136435?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.4.1~git20080517-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.1~git20080517-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2008-2362" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-f9yc-23gb-qyhy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106662?format=api", "vulnerability_id": "VCID-fdrh-s6h2-buhk", "summary": "Multiple integer overflows in X.Org X Window System (aka X11 or X) X11R1 and X.Org Server (aka xserver and xorg-server) before 1.16.3 allow remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted request to the (1) ProcPutImage, (2) GetHosts, (3) RegionSizeof, or (4) REQUEST_FIXED_SIZE function, which triggers an out-of-bounds read or write.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8092.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8092.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8092", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01293", "scoring_system": "epss", "scoring_elements": "0.80018", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168684", "reference_id": "1168684", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168684" }, { "reference_url": "https://security.gentoo.org/glsa/201504-06", "reference_id": "GLSA-201504-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201504-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1982", "reference_id": "RHSA-2014:1982", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1982" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1983", "reference_id": "RHSA-2014:1983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1983" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136451?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.2.901-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2014-8092" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fdrh-s6h2-buhk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106696?format=api", "vulnerability_id": "VCID-fm63-7bke-rbe2", "summary": "A flaw was found in the X.Org Server before version 1.20.10. An out-of-bounds access in the XkbSetMap function may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14360.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14360.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14360", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00135", "scoring_system": "epss", "scoring_elements": "0.3308", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14360" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1869139", "reference_id": "1869139", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1869139" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976216", "reference_id": "976216", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976216" }, { "reference_url": "https://security.archlinux.org/ASA-202012-6", "reference_id": "ASA-202012-6", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202012-6" }, { "reference_url": "https://security.archlinux.org/AVG-1310", "reference_id": "AVG-1310", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1310" }, { "reference_url": "https://security.gentoo.org/glsa/202012-01", "reference_id": "GLSA-202012-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202012-01" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5408", "reference_id": "RHSA-2020:5408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5408" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1804", "reference_id": "RHSA-2021:1804", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1804" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136480?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.10-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.10-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-14360" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fm63-7bke-rbe2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91496?format=api", "vulnerability_id": "VCID-fr1v-dcuh-jbhs", "summary": "xorg-x11-server: SELinux context corruption", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0409.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0409.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257690", "reference_id": "2257690", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T16:47:29Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257690" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client", "reference_id": "cpe:/o:redhat:enterprise_linux:7::client", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode", "reference_id": "cpe:/o:redhat:enterprise_linux:7::computenode", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server", "reference_id": "cpe:/o:redhat:enterprise_linux:7::server", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation", "reference_id": "cpe:/o:redhat:enterprise_linux:7::workstation", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-0409", "reference_id": "CVE-2024-0409", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T16:47:29Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-0409" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0320", "reference_id": "RHSA-2024:0320", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T16:47:29Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0320" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T16:47:29Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2170", "reference_id": "RHSA-2024:2170", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T16:47:29Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T16:47:29Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2996", "reference_id": "RHSA-2024:2996", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T16:47:29Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2996" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136512?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u11?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u11%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136511?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136513?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-0409" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fr1v-dcuh-jbhs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106657?format=api", "vulnerability_id": "VCID-ftyy-61hx-wkff", "summary": "X.org X server 1.13.3 and earlier, when not run as root, allows local users to cause a denial of service (crash) or possibly gain privileges via vectors involving cached xkb files.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1056.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1056.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-1056", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17066", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-1056" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1052324", "reference_id": "1052324", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1052324" }, { "reference_url": "https://security.gentoo.org/glsa/201405-07", "reference_id": "GLSA-201405-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201405-07" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136437?format=api", "purl": "pkg:deb/debian/xorg-server@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2013-1056" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ftyy-61hx-wkff" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106700?format=api", "vulnerability_id": "VCID-g9ce-3gn2-ekbh", "summary": "A flaw was found in xorg-x11-server in versions before 1.20.11. An integer underflow can occur in xserver which can lead to a local privilege escalation. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3472.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3472.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3472", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23822", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3472" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1944167", "reference_id": "1944167", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1944167" }, { "reference_url": "https://security.archlinux.org/AVG-1811", "reference_id": "AVG-1811", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1811" }, { "reference_url": "https://security.archlinux.org/AVG-1812", "reference_id": "AVG-1812", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1812" }, { "reference_url": "https://security.gentoo.org/glsa/202104-02", "reference_id": "GLSA-202104-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2033", "reference_id": "RHSA-2021:2033", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2033" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136481?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2021-3472" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-g9ce-3gn2-ekbh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80443?format=api", "vulnerability_id": "VCID-gq7x-petb-hfau", "summary": "xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Unprocessed Client Request Due to Bytes to Ignore", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49178.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49178.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369", "reference_id": "1108369", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369977", "reference_id": "2369977", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369977" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10258", "reference_id": "RHSA-2025:10258", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10258" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10342", "reference_id": "RHSA-2025:10342", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10343", "reference_id": "RHSA-2025:10343", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10344", "reference_id": "RHSA-2025:10344", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10346", "reference_id": "RHSA-2025:10346", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10346" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10347", "reference_id": "RHSA-2025:10347", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10347" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10348", "reference_id": "RHSA-2025:10348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10349", "reference_id": "RHSA-2025:10349", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10349" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10350", "reference_id": "RHSA-2025:10350", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10350" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10351", "reference_id": "RHSA-2025:10351", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10351" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10352", "reference_id": "RHSA-2025:10352", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10355", "reference_id": "RHSA-2025:10355", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10355" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10356", "reference_id": "RHSA-2025:10356", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10356" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10360", "reference_id": "RHSA-2025:10360", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10360" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10370", "reference_id": "RHSA-2025:10370", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10370" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10374", "reference_id": "RHSA-2025:10374", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10374" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10375", "reference_id": "RHSA-2025:10375", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10375" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10376", "reference_id": "RHSA-2025:10376", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10376" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10377", "reference_id": "RHSA-2025:10377", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10377" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10378", "reference_id": "RHSA-2025:10378", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10378" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10381", "reference_id": "RHSA-2025:10381", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10381" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10410", "reference_id": "RHSA-2025:10410", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10410" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9303", "reference_id": "RHSA-2025:9303", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9303" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9304", "reference_id": "RHSA-2025:9304", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9304" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9305", "reference_id": "RHSA-2025:9305", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9305" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9306", "reference_id": "RHSA-2025:9306", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9306" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9392", "reference_id": "RHSA-2025:9392", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9964", "reference_id": "RHSA-2025:9964", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9964" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136533?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u16?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u16%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136532?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u10?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u10%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136535?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-49178" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gq7x-petb-hfau" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106647?format=api", "vulnerability_id": "VCID-h6us-hyjy-7ye4", "summary": "Integer overflow in the ProcRenderCreateCursor function in the Render extension in the X server 1.4 in X.Org X11R7.3 allows context-dependent attackers to cause a denial of service (daemon crash) via unspecified request fields that are used to calculate a glyph buffer size, which triggers a dereference of unmapped memory.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2361.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2361.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2008-2361", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01482", "scoring_system": "epss", "scoring_elements": "0.81336", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2008-2361" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=448784", "reference_id": "448784", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=448784" }, { "reference_url": "https://security.gentoo.org/glsa/200806-07", "reference_id": "GLSA-200806-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200806-07" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0502", "reference_id": "RHSA-2008:0502", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0503", "reference_id": "RHSA-2008:0503", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0503" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0504", "reference_id": "RHSA-2008:0504", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0504" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136435?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.4.1~git20080517-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.1~git20080517-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2008-2361" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-h6us-hyjy-7ye4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106646?format=api", "vulnerability_id": "VCID-hnhq-2yq6-87cn", "summary": "Integer overflow in the AllocateGlyph function in the Render extension in the X server 1.4 in X.Org X11R7.3 allows context-dependent attackers to execute arbitrary code via unspecified request fields that are used to calculate a heap buffer size, which triggers a heap-based buffer overflow.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2360.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2360.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2008-2360", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0192", "scoring_system": "epss", "scoring_elements": "0.83681", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2008-2360" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=448783", "reference_id": "448783", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=448783" }, { "reference_url": "https://security.gentoo.org/glsa/200806-07", "reference_id": "GLSA-200806-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200806-07" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0502", "reference_id": "RHSA-2008:0502", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0503", "reference_id": "RHSA-2008:0503", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0503" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0504", "reference_id": "RHSA-2008:0504", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0504" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0512", "reference_id": "RHSA-2008:0512", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0512" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136435?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.4.1~git20080517-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.1~git20080517-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2008-2360" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hnhq-2yq6-87cn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106695?format=api", "vulnerability_id": "VCID-hzef-8edc-hyev", "summary": "A flaw was found in the way xserver memory was not properly initialized. This could leak parts of server memory to the X client. In cases where Xorg server runs with elevated privileges, this could result in possible ASLR bypass. Xorg-server before version 1.20.9 is vulnerable.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14347.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14347.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14347", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26971", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14347" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1862258", "reference_id": "1862258", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1862258" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=968986", "reference_id": "968986", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=968986" }, { "reference_url": "https://security.archlinux.org/AVG-1211", "reference_id": "AVG-1211", "reference_type": "", "scores": [ { "value": "Low", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1211" }, { "reference_url": "https://security.gentoo.org/glsa/202012-01", "reference_id": "GLSA-202012-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202012-01" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5408", "reference_id": "RHSA-2020:5408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5408" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1804", "reference_id": "RHSA-2021:1804", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1804" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136479?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.9-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-14347" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hzef-8edc-hyev" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106692?format=api", "vulnerability_id": "VCID-j463-aw53-kuc4", "summary": "It was found that xorg-x11-server before 1.19.0 including uses memcmp() to check the received MIT cookie against a series of valid cookies. If the cookie is correct, it is allowed to attach to the Xorg session. Since most memcmp() implementations return after an invalid byte is seen, this causes a time difference between a valid and invalid byte, which could allow an efficient brute force attack.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-2624.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-2624.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-2624", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14713", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-2624" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:H/Au:N/C:C/I:N/A:N" }, { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1424984", "reference_id": "1424984", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1424984" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=856398", "reference_id": "856398", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=856398" }, { "reference_url": "https://security.gentoo.org/glsa/201704-03", "reference_id": "GLSA-201704-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201704-03" }, { "reference_url": "https://security.gentoo.org/glsa/201710-30", "reference_id": "GLSA-201710-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201710-30" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136477?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2017-2624" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-j463-aw53-kuc4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106651?format=api", "vulnerability_id": "VCID-j55v-3y8e-2kf3", "summary": "The GLX extension in X.Org xserver 1.7.7 allows remote authenticated users to cause a denial of service (server crash) and possibly execute arbitrary code via (1) a crafted request that triggers a client swap in glx/glxcmdsswap.c; or (2) a crafted length or (3) a negative value in the screen field in a request to glx/glxcmds.c.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4818.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4818.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-4818", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02846", "scoring_system": "epss", "scoring_elements": "0.8649", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-4818" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=740954", "reference_id": "740954", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=740954" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:1359", "reference_id": "RHSA-2011:1359", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:1359" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:1360", "reference_id": "RHSA-2011:1360", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:1360" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136438?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.9.99.902-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.9.99.902-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2010-4818" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-j55v-3y8e-2kf3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106697?format=api", "vulnerability_id": "VCID-jrks-xpht-eycq", "summary": "A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Integer underflow leading to heap-buffer overflow may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14361.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14361.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14361", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00232", "scoring_system": "epss", "scoring_elements": "0.46046", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14361" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1869142", "reference_id": "1869142", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1869142" }, { "reference_url": "https://security.gentoo.org/glsa/202012-01", "reference_id": "GLSA-202012-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202012-01" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4910", "reference_id": "RHSA-2020:4910", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4910" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4953", "reference_id": "RHSA-2020:4953", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4953" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1804", "reference_id": "RHSA-2021:1804", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1804" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136479?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.9-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-14361" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jrks-xpht-eycq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106667?format=api", "vulnerability_id": "VCID-jt46-r94m-v7er", "summary": "The SProcXCMiscGetXIDList function in the XC-MISC extension in X.Org X Window System (aka X11 or X) X11R6.0 and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8096.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8096.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8096", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01014", "scoring_system": "epss", "scoring_elements": "0.7749", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8096" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168700", "reference_id": "1168700", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168700" }, { "reference_url": "https://security.gentoo.org/glsa/201504-06", "reference_id": "GLSA-201504-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201504-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1982", "reference_id": "RHSA-2014:1982", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1982" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1983", "reference_id": "RHSA-2014:1983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1983" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136451?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.2.901-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2014-8096" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jt46-r94m-v7er" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106678?format=api", "vulnerability_id": "VCID-jx8z-exfq-sqcn", "summary": "X.Org Server (aka xserver and xorg-server) before 1.16.3 and 1.17.x before 1.17.1 allows remote attackers to obtain sensitive information from process memory or cause a denial of service (crash) via a crafted string length value in a XkbSetGeometry request.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-0255.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-0255.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-0255", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.06422", "scoring_system": "epss", "scoring_elements": "0.91213", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-0255" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0255", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0255" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1189062", "reference_id": "1189062", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1189062" }, { "reference_url": "https://security.gentoo.org/glsa/201504-06", "reference_id": "GLSA-201504-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201504-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2015:0797", "reference_id": "RHSA-2015:0797", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2015:0797" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136456?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2015-0255" ], "risk_score": 0.1, "exploitability": "0.5", "weighted_severity": "0.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jx8z-exfq-sqcn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106683?format=api", "vulnerability_id": "VCID-jzxy-vgcy-nbbz", "summary": "xorg-x11-server before 1.19.5 was missing length validation in XFree86 DGA extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12181.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12181.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75042", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12181" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509222", "reference_id": "1509222", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509222" }, { "reference_url": "https://security.gentoo.org/glsa/201711-05", "reference_id": "GLSA-201711-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201711-05" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136465?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.5-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2017-12181" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jzxy-vgcy-nbbz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106682?format=api", "vulnerability_id": "VCID-k29g-v3tn-67bc", "summary": "xorg-x11-server before 1.19.5 was missing length validation in XFree86 VidModeExtension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12180.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12180.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66407", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12180" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509221", "reference_id": "1509221", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509221" }, { "reference_url": "https://security.gentoo.org/glsa/201711-05", "reference_id": "GLSA-201711-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201711-05" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136465?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.5-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2017-12180" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-k29g-v3tn-67bc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106690?format=api", "vulnerability_id": "VCID-k3mg-7ndc-sqe7", "summary": "In X.Org Server (aka xserver and xorg-server) before 1.19.4, an attacker authenticated to an X server with the X shared memory extension enabled can cause aborts of the X server or replace shared memory segments of other X clients in the same session.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13721.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13721.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0008", "scoring_system": "epss", "scoring_elements": "0.23572", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.7", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:S/C:P/I:P/A:C" }, { "value": "6.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1500387", "reference_id": "1500387", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1500387" }, { "reference_url": "https://security.archlinux.org/ASA-201710-10", "reference_id": "ASA-201710-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201710-10" }, { "reference_url": "https://security.archlinux.org/AVG-432", "reference_id": "AVG-432", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-432" }, { "reference_url": "https://security.gentoo.org/glsa/201710-30", "reference_id": "GLSA-201710-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201710-30" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136476?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.4-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.4-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2017-13721" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-k3mg-7ndc-sqe7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106689?format=api", "vulnerability_id": "VCID-kqe5-6n97-aufv", "summary": "xorg-x11-server before 1.19.5 was missing length validation in RENDER extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12187.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12187.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00843", "scoring_system": "epss", "scoring_elements": "0.75119", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12187" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509217", "reference_id": "1509217", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509217" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136465?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.5-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2017-12187" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kqe5-6n97-aufv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/99572?format=api", "vulnerability_id": "VCID-ksb1-g8mu-nbhu", "summary": "xorg-x11-server: XvdiSelectVideoNotify use-after-free", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46342.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46342.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46342", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32304", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46342" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071", "reference_id": "1026071", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151757", "reference_id": "2151757", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151757" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0045", "reference_id": "RHSA-2023:0045", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0045" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0046", "reference_id": "RHSA-2023:0046", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0046" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2248", "reference_id": "RHSA-2023:2248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2249", "reference_id": "RHSA-2023:2249", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2249" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2257", "reference_id": "RHSA-2023:2257", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2257" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2805", "reference_id": "RHSA-2023:2805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2806", "reference_id": "RHSA-2023:2806", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2806" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2830", "reference_id": "RHSA-2023:2830", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2830" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136489?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u4?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u4%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136488?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.5-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.5-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-46342" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ksb1-g8mu-nbhu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6499?format=api", "vulnerability_id": "VCID-ksup-ynuw-3kf7", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10971.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10971.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10971", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02753", "scoring_system": "epss", "scoring_elements": "0.86277", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10971" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10971", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10971" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10972", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10972" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1473204", "reference_id": "1473204", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1473204" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867492", "reference_id": "867492", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867492" }, { "reference_url": "https://security.archlinux.org/ASA-201708-11", "reference_id": "ASA-201708-11", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201708-11" }, { "reference_url": "https://security.archlinux.org/AVG-341", "reference_id": "AVG-341", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-341" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136464?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.3-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.3-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2017-10971" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ksup-ynuw-3kf7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/77885?format=api", "vulnerability_id": "VCID-ktpn-yv97-nycv", "summary": "Buffer overflow in (1) X.Org Xserver before 1.4.1, and (2) the libfont and libXfont libraries on some platforms including Sun Solaris, allows context-dependent attackers to execute arbitrary code via a PCF font with a large difference between the last col and first col values in the PCF_BDF_ENCODINGS table.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-0006.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-0006.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2008-0006", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.23908", "scoring_system": "epss", "scoring_elements": "0.96127", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2008-0006" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=428044", "reference_id": "428044", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=428044" }, { "reference_url": "https://security.gentoo.org/glsa/200801-09", "reference_id": "GLSA-200801-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200801-09" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0029", "reference_id": "RHSA-2008:0029", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0029" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0030", "reference_id": "RHSA-2008:0030", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0030" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0064", "reference_id": "RHSA-2008:0064", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0064" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136428?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2008-0006" ], "risk_score": 0.1, "exploitability": "0.5", "weighted_severity": "0.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ktpn-yv97-nycv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106629?format=api", "vulnerability_id": "VCID-kue6-ss77-fqah", "summary": "Integer overflow in the ProcDbeGetVisualInfo function in the DBE extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree86 X server, allows local users to execute arbitrary code via a crafted X protocol request that triggers memory corruption during processing of unspecified data structures.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-6102.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-6102.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2006-6102", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.06429", "scoring_system": "epss", "scoring_elements": "0.91219", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2006-6102" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618239", "reference_id": "1618239", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618239" }, { "reference_url": "https://security.gentoo.org/glsa/200701-25", "reference_id": "GLSA-200701-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200701-25" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2007:0002", "reference_id": "RHSA-2007:0002", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2007:0002" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2007:0003", "reference_id": "RHSA-2007:0003", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2007:0003" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136419?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.1.1-15?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.1.1-15%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2006-6102" ], "risk_score": 0.1, "exploitability": "0.5", "weighted_severity": "0.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kue6-ss77-fqah" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/98937?format=api", "vulnerability_id": "VCID-mbyt-8urr-yqff", "summary": "xorg-x11-server: DeepCopyPointerClasses use-after-free leads to privilege elevation", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0494.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0494.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0494", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00711", "scoring_system": "epss", "scoring_elements": "0.72638", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0494" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1030777", "reference_id": "1030777", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1030777" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2165995", "reference_id": "2165995", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2165995" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0622", "reference_id": "RHSA-2023:0622", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0622" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0623", "reference_id": "RHSA-2023:0623", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0623" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0662", "reference_id": "RHSA-2023:0662", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0662" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0663", "reference_id": "RHSA-2023:0663", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0663" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0664", "reference_id": "RHSA-2023:0664", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0664" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0665", "reference_id": "RHSA-2023:0665", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0665" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0671", "reference_id": "RHSA-2023:0671", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0671" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0675", "reference_id": "RHSA-2023:0675", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0675" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2248", "reference_id": "RHSA-2023:2248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2249", "reference_id": "RHSA-2023:2249", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2249" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2805", "reference_id": "RHSA-2023:2805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2806", "reference_id": "RHSA-2023:2806", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2806" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136495?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136493?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-0494" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mbyt-8urr-yqff" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106659?format=api", "vulnerability_id": "VCID-meuv-tkww-rfeu", "summary": "Use-after-free vulnerability in the doImageText function in dix/dixfonts.c in the xorg-server module before 1.14.4 in X.Org X11 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted ImageText request that triggers memory-allocation failure.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4396.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4396.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4396", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01971", "scoring_system": "epss", "scoring_elements": "0.83862", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4396" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4396", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4396" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1014561", "reference_id": "1014561", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1014561" }, { "reference_url": "https://security.gentoo.org/glsa/201405-07", "reference_id": "GLSA-201405-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201405-07" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2013:1426", "reference_id": "RHSA-2013:1426", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2013:1426" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136448?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.14.3-4?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.14.3-4%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2013-4396" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-meuv-tkww-rfeu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4865?format=api", "vulnerability_id": "VCID-mxq1-dhbf-9ufb", "summary": "privilege escalation", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2320.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2320.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2320", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19531", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2320" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014903", "reference_id": "1014903", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014903" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2106683", "reference_id": "2106683", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2106683" }, { "reference_url": "https://security.archlinux.org/AVG-2770", "reference_id": "AVG-2770", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2770" }, { "reference_url": "https://security.gentoo.org/glsa/202210-30", "reference_id": "GLSA-202210-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202210-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5905", "reference_id": "RHSA-2022:5905", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5905" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7583", "reference_id": "RHSA-2022:7583", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7583" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8221", "reference_id": "RHSA-2022:8221", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8221" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8222", "reference_id": "RHSA-2022:8222", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8222" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136485?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136484?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.4-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.4-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-2320" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mxq1-dhbf-9ufb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85262?format=api", "vulnerability_id": "VCID-nce7-2t7k-vfdt", "summary": "Xorg: xwayland: Buffer overflow in XkbVModMaskText()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26595.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26595.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906", "reference_id": "1098906", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907", "reference_id": "1098907", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345257", "reference_id": "2345257", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345257" }, { "reference_url": "https://security.gentoo.org/glsa/202506-04", "reference_id": "GLSA-202506-04", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202506-04" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2500", "reference_id": "RHSA-2025:2500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2502", "reference_id": "RHSA-2025:2502", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2861", "reference_id": "RHSA-2025:2861", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2861" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2862", "reference_id": "RHSA-2025:2862", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2862" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2865", "reference_id": "RHSA-2025:2865", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2865" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2866", "reference_id": "RHSA-2025:2866", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2873", "reference_id": "RHSA-2025:2873", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2873" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2874", "reference_id": "RHSA-2025:2874", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2874" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2875", "reference_id": "RHSA-2025:2875", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2879", "reference_id": "RHSA-2025:2879", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2879" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2880", "reference_id": "RHSA-2025:2880", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2880" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3976", "reference_id": "RHSA-2025:3976", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:3976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7163", "reference_id": "RHSA-2025:7163", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7165", "reference_id": "RHSA-2025:7165", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7458", "reference_id": "RHSA-2025:7458", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7458" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136526?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u15?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u15%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136525?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u9?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u9%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136527?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-26595" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nce7-2t7k-vfdt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/99580?format=api", "vulnerability_id": "VCID-nghe-4hvm-juhp", "summary": "xorg-x11-server: XIChangeProperty out-of-bounds access", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46344.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46344.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46344", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00867", "scoring_system": "epss", "scoring_elements": "0.75505", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46344" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071", "reference_id": "1026071", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151760", "reference_id": "2151760", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151760" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0045", "reference_id": "RHSA-2023:0045", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0045" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0046", "reference_id": "RHSA-2023:0046", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0046" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2248", "reference_id": "RHSA-2023:2248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2249", "reference_id": "RHSA-2023:2249", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2249" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2257", "reference_id": "RHSA-2023:2257", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2257" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2805", "reference_id": "RHSA-2023:2805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2806", "reference_id": "RHSA-2023:2806", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2806" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2830", "reference_id": "RHSA-2023:2830", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2830" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136489?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u4?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u4%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136488?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.5-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.5-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-46344" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nghe-4hvm-juhp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106686?format=api", "vulnerability_id": "VCID-nrev-k192-pfe8", "summary": "xorg-x11-server before 1.19.5 was missing length validation in MIT-SCREEN-SAVER extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12185.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12185.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75042", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12185" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509215", "reference_id": "1509215", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509215" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136465?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.5-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2017-12185" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nrev-k192-pfe8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106654?format=api", "vulnerability_id": "VCID-p2yg-z8e2-j7f5", "summary": "The LockServer function in os/utils.c in X.Org xserver before 1.11.2 allows local users to change the permissions of arbitrary files to 444, read those files, and possibly cause a denial of service (removed execution permission) via a symlink attack on a temporary lock file.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4029.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4029.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-4029", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00866", "scoring_system": "epss", "scoring_elements": "0.75486", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-4029" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=745024", "reference_id": "745024", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=745024" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/18040.c", "reference_id": "CVE-2011-4613;OSVDB-84058;CVE-2011-4029;OSVDB-76669", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/18040.c" }, { "reference_url": "https://security.gentoo.org/glsa/201110-19", "reference_id": "GLSA-201110-19", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201110-19" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0939", "reference_id": "RHSA-2012:0939", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0939" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136440?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.11.1.901-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.11.1.901-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2011-4029" ], "risk_score": null, "exploitability": "2.0", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-p2yg-z8e2-j7f5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106691?format=api", "vulnerability_id": "VCID-py27-f7s4-ybbq", "summary": "In X.Org Server (aka xserver and xorg-server) before 1.19.4, a local attacker authenticated to the X server could overflow a global buffer, causing crashes of the X server or potentially other problems by injecting large or malformed XKB related atoms and accessing them via xkbcomp.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13723.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13723.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00127", "scoring_system": "epss", "scoring_elements": "0.31525", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13723" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:S/C:N/I:N/A:C" }, { "value": "4.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1500388", "reference_id": "1500388", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1500388" }, { "reference_url": "https://security.archlinux.org/ASA-201710-10", "reference_id": "ASA-201710-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201710-10" }, { "reference_url": "https://security.archlinux.org/AVG-432", "reference_id": "AVG-432", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-432" }, { "reference_url": "https://security.gentoo.org/glsa/201710-30", "reference_id": "GLSA-201710-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201710-30" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136476?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.4-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.4-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2017-13723" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-py27-f7s4-ybbq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6498?format=api", "vulnerability_id": "VCID-qmf7-231x-cyaa", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10972.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10972.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10972", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00345", "scoring_system": "epss", "scoring_elements": "0.5734", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10972" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10971", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10971" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10972", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10972" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1473205", "reference_id": "1473205", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1473205" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867492", "reference_id": "867492", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867492" }, { "reference_url": "https://security.archlinux.org/ASA-201708-11", "reference_id": "ASA-201708-11", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201708-11" }, { "reference_url": "https://security.archlinux.org/AVG-341", "reference_id": "AVG-341", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-341" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136464?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.3-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.3-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2017-10972" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qmf7-231x-cyaa" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5015?format=api", "vulnerability_id": "VCID-qmrm-2e5f-h3an", "summary": "arbitrary code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4011.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4011.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4011", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12659", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4011" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2026074", "reference_id": "2026074", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2026074" }, { "reference_url": "https://security.archlinux.org/AVG-2636", "reference_id": "AVG-2636", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2636" }, { "reference_url": "https://security.archlinux.org/AVG-2640", "reference_id": "AVG-2640", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2640" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0003", "reference_id": "RHSA-2022:0003", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0003" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1917", "reference_id": "RHSA-2022:1917", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1917" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136483?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136482?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.13-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.13-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2021-4011" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qmrm-2e5f-h3an" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106633?format=api", "vulnerability_id": "VCID-qs4d-hm8w-jfcm", "summary": "The X render (Xrender) extension in X.org X Window System 7.0, 7.1, and 7.2, with Xserver 1.3.0 and earlier, allows remote authenticated users to cause a denial of service (daemon crash) via crafted values to the (1) XRenderCompositeTrapezoids and (2) XRenderAddTraps functions, which trigger a divide-by-zero error.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2437.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2437.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2007-2437", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03757", "scoring_system": "epss", "scoring_elements": "0.88237", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2007-2437" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=422936", "reference_id": "422936", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=422936" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/29939.txt", "reference_id": "CVE-2007-2437;OSVDB-34905", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/29939.txt" }, { "reference_url": "https://www.securityfocus.com/bid/23741/info", "reference_id": "CVE-2007-2437;OSVDB-34905", "reference_type": "exploit", "scores": [], "url": "https://www.securityfocus.com/bid/23741/info" }, { "reference_url": "https://security.gentoo.org/glsa/201301-01", "reference_id": "GLSA-201301-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201301-01" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136424?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.3.0.0.dfsg-4?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.3.0.0.dfsg-4%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2007-2437" ], "risk_score": null, "exploitability": "2.0", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qs4d-hm8w-jfcm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106634?format=api", "vulnerability_id": "VCID-qy7b-jt1s-dbfz", "summary": "Buffer overflow in the compNewPixmap function in compalloc.c in the Composite extension for the X.org X11 server before 1.4 allows local users to execute arbitrary code by copying data from a large pixel depth pixmap into a smaller pixel depth pixmap.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-4730.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-4730.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2007-4730", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00097", "scoring_system": "epss", "scoring_elements": "0.26653", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2007-4730" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=285991", "reference_id": "285991", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=285991" }, { "reference_url": "https://security.gentoo.org/glsa/200710-16", "reference_id": "GLSA-200710-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200710-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2007:0898", "reference_id": "RHSA-2007:0898", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2007:0898" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136427?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.4-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2007-4730" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qy7b-jt1s-dbfz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73075?format=api", "vulnerability_id": "VCID-r8bp-sg6q-sqgj", "summary": "xorg: xmayland: Value overflow in XkbSetCompatMap()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-62231.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-62231.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2402660", "reference_id": "2402660", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2402660" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19432", "reference_id": "RHSA-2025:19432", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19432" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19433", "reference_id": "RHSA-2025:19433", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19433" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19434", "reference_id": "RHSA-2025:19434", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19434" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19435", "reference_id": "RHSA-2025:19435", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19435" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19489", "reference_id": "RHSA-2025:19489", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19489" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19623", "reference_id": "RHSA-2025:19623", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19623" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19909", "reference_id": "RHSA-2025:19909", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19909" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20958", "reference_id": "RHSA-2025:20958", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:20958" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20960", "reference_id": "RHSA-2025:20960", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:20960" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20961", "reference_id": "RHSA-2025:20961", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:20961" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:21035", "reference_id": "RHSA-2025:21035", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:21035" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22040", "reference_id": "RHSA-2025:22040", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22040" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22041", "reference_id": "RHSA-2025:22041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22051", "reference_id": "RHSA-2025:22051", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22051" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22055", "reference_id": "RHSA-2025:22055", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22055" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22056", "reference_id": "RHSA-2025:22056", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22056" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22077", "reference_id": "RHSA-2025:22077", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22077" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22096", "reference_id": "RHSA-2025:22096", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22096" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22164", "reference_id": "RHSA-2025:22164", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22164" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22167", "reference_id": "RHSA-2025:22167", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22167" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22364", "reference_id": "RHSA-2025:22364", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22364" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22365", "reference_id": "RHSA-2025:22365", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22365" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22426", "reference_id": "RHSA-2025:22426", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22426" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22427", "reference_id": "RHSA-2025:22427", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22427" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22667", "reference_id": "RHSA-2025:22667", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22667" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22729", "reference_id": "RHSA-2025:22729", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22729" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22742", "reference_id": "RHSA-2025:22742", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22742" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22753", "reference_id": "RHSA-2025:22753", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22753" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0031", "reference_id": "RHSA-2026:0031", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0031" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0033", "reference_id": "RHSA-2026:0033", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0033" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0034", "reference_id": "RHSA-2026:0034", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0034" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0035", "reference_id": "RHSA-2026:0035", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0035" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0036", "reference_id": "RHSA-2026:0036", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0036" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136543?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u17?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u17%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136542?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u11?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u11%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136545?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136544?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.20-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.20-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-62231" ], "risk_score": 3.3, "exploitability": "0.5", "weighted_severity": "6.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-r8bp-sg6q-sqgj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106642?format=api", "vulnerability_id": "VCID-raeg-4zw3-xbe4", "summary": "Multiple integer overflows in X.Org Xserver before 1.4.1 allow context-dependent attackers to execute arbitrary code via (1) a GetVisualInfo request containing a 32-bit value that is improperly used to calculate an amount of memory for allocation by the EVI extension, or (2) a request containing values related to pixmap size that are improperly used in management of shared memory by the MIT-SHM extension.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6429.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6429.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2007-6429", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0227", "scoring_system": "epss", "scoring_elements": "0.84944", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2007-6429" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=413721", "reference_id": "413721", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=413721" }, { "reference_url": "https://security.gentoo.org/glsa/200801-09", "reference_id": "GLSA-200801-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200801-09" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0029", "reference_id": "RHSA-2008:0029", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0029" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0030", "reference_id": "RHSA-2008:0030", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0030" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0031", "reference_id": "RHSA-2008:0031", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0031" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136428?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2007-6429" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-raeg-4zw3-xbe4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106628?format=api", "vulnerability_id": "VCID-rbgq-gsfu-7uga", "summary": "Integer overflow in the ProcRenderAddGlyphs function in the Render extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree86 X server, allows local users to execute arbitrary code via a crafted X protocol request that triggers memory corruption during processing of glyph management data structures.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-6101.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-6101.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2006-6101", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.14103", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2006-6101" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618238", "reference_id": "1618238", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618238" }, { "reference_url": "https://security.gentoo.org/glsa/200701-25", "reference_id": "GLSA-200701-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200701-25" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2007:0002", "reference_id": "RHSA-2007:0002", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2007:0002" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2007:0003", "reference_id": "RHSA-2007:0003", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2007:0003" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136419?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.1.1-15?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.1.1-15%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2006-6101" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rbgq-gsfu-7uga" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85235?format=api", "vulnerability_id": "VCID-rq9m-9qtm-m3bv", "summary": "X.Org: Xwayland: Use-after-free of the root cursor", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26594.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26594.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906", "reference_id": "1098906", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907", "reference_id": "1098907", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345248", "reference_id": "2345248", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345248" }, { "reference_url": "https://security.gentoo.org/glsa/202506-04", "reference_id": "GLSA-202506-04", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202506-04" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2500", "reference_id": "RHSA-2025:2500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2502", "reference_id": "RHSA-2025:2502", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2861", "reference_id": "RHSA-2025:2861", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2861" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2862", "reference_id": "RHSA-2025:2862", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2862" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2865", "reference_id": "RHSA-2025:2865", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2865" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2866", "reference_id": "RHSA-2025:2866", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2873", "reference_id": "RHSA-2025:2873", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2873" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2874", "reference_id": "RHSA-2025:2874", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2874" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2875", "reference_id": "RHSA-2025:2875", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2879", "reference_id": "RHSA-2025:2879", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2879" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2880", "reference_id": "RHSA-2025:2880", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2880" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3976", "reference_id": "RHSA-2025:3976", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:3976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7163", "reference_id": "RHSA-2025:7163", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7165", "reference_id": "RHSA-2025:7165", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7458", "reference_id": "RHSA-2025:7458", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7458" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136526?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u15?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u15%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136525?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u9?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u9%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136527?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-26594" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rq9m-9qtm-m3bv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106694?format=api", "vulnerability_id": "VCID-rqjp-d3mr-ykdx", "summary": "A flaw was found in xorg-x11-server before 1.20.9. An integer underflow in the X input extension protocol decoding in the X server may lead to arbitrary access of memory contents. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14346.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14346.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14346", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.35814", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14346" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1862246", "reference_id": "1862246", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1862246" }, { "reference_url": "https://security.gentoo.org/glsa/202012-01", "reference_id": "GLSA-202012-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202012-01" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4910", "reference_id": "RHSA-2020:4910", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4910" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4953", "reference_id": "RHSA-2020:4953", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4953" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1804", "reference_id": "RHSA-2021:1804", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1804" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136479?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.9-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2020-14346" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rqjp-d3mr-ykdx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106632?format=api", "vulnerability_id": "VCID-rwrz-8ej4-87dx", "summary": "Integer overflow in ALLOCATE_LOCAL in the ProcXCMiscGetXIDList function in the XC-MISC extension in the X.Org X11 server (xserver) 7.1-1.1.0, and other versions before 20070403, allows remote authenticated users to execute arbitrary code via a large expression, which results in memory corruption.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-1003.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-1003.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2007-1003", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.08011", "scoring_system": "epss", "scoring_elements": "0.92249", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2007-1003" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=235263", "reference_id": "235263", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=235263" }, { "reference_url": "https://security.gentoo.org/glsa/200705-10", "reference_id": "GLSA-200705-10", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200705-10" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2007:0125", "reference_id": "RHSA-2007:0125", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2007:0125" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2007:0126", "reference_id": "RHSA-2007:0126", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2007:0126" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2007:0127", "reference_id": "RHSA-2007:0127", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2007:0127" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136423?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.1.1-21?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.1.1-21%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2007-1003" ], "risk_score": 0.1, "exploitability": "0.5", "weighted_severity": "0.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rwrz-8ej4-87dx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/87721?format=api", "vulnerability_id": "VCID-sbxv-5gr6-8be3", "summary": "xorg-x11-server: tigervnc: heap-based buffer overflow privilege escalation vulnerability", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-9632.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-9632.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1086244", "reference_id": "1086244", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1086244" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1086245", "reference_id": "1086245", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1086245" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2317233", "reference_id": "2317233", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2317233" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-9632", "reference_id": "CVE-2024-9632", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-9632" }, { "reference_url": "https://security.gentoo.org/glsa/202411-08", "reference_id": "GLSA-202411-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202411-08" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:10090", "reference_id": "RHSA-2024:10090", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:10090" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:8798", "reference_id": "RHSA-2024:8798", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:8798" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9540", "reference_id": "RHSA-2024:9540", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9540" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9579", "reference_id": "RHSA-2024:9579", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9579" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9601", "reference_id": "RHSA-2024:9601", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9601" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9690", "reference_id": "RHSA-2024:9690", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9690" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9816", "reference_id": "RHSA-2024:9816", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9816" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9818", "reference_id": "RHSA-2024:9818", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9818" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9819", "reference_id": "RHSA-2024:9819", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9819" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9820", "reference_id": "RHSA-2024:9820", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9820" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9901", "reference_id": "RHSA-2024:9901", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9901" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7163", "reference_id": "RHSA-2025:7163", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7165", "reference_id": "RHSA-2025:7165", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7458", "reference_id": "RHSA-2025:7458", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7458" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136522?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u14?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u14%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136521?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u8?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u8%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136523?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.13-3.1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.13-3.1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-9632" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-sbxv-5gr6-8be3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106685?format=api", "vulnerability_id": "VCID-skxw-tvv4-rbdr", "summary": "xorg-x11-server before 1.19.5 was missing length validation in XINERAMA extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12184.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12184.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75042", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12184" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509225", "reference_id": "1509225", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509225" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136465?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.5-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2017-12184" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-skxw-tvv4-rbdr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6451?format=api", "vulnerability_id": "VCID-ss7u-mzyq-47cg", "summary": "arbitrary code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12178.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12178.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66407", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509219", "reference_id": "1509219", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509219" }, { "reference_url": "https://security.archlinux.org/ASA-201710-29", "reference_id": "ASA-201710-29", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201710-29" }, { "reference_url": "https://security.archlinux.org/AVG-443", "reference_id": "AVG-443", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-443" }, { "reference_url": "https://security.gentoo.org/glsa/201711-05", "reference_id": "GLSA-201711-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201711-05" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136465?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.5-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2017-12178" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ss7u-mzyq-47cg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/99570?format=api", "vulnerability_id": "VCID-swtg-qd41-pqgw", "summary": "xorg-x11-server: XIPassiveUngrab out-of-bounds access", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46341.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46341.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46341", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01059", "scoring_system": "epss", "scoring_elements": "0.77974", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46341" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071", "reference_id": "1026071", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151756", "reference_id": "2151756", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151756" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0045", "reference_id": "RHSA-2023:0045", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0045" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0046", "reference_id": "RHSA-2023:0046", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0046" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2248", "reference_id": "RHSA-2023:2248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2249", "reference_id": "RHSA-2023:2249", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2249" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2257", "reference_id": "RHSA-2023:2257", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2257" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2805", "reference_id": "RHSA-2023:2805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2806", "reference_id": "RHSA-2023:2806", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2806" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2830", "reference_id": "RHSA-2023:2830", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2830" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136489?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u4?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u4%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136488?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.5-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.5-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-46341" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-swtg-qd41-pqgw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91751?format=api", "vulnerability_id": "VCID-t19y-2rhp-23cx", "summary": "xorg-x11-server: out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6478.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6478.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253298", "reference_id": "2253298", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253298" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7886", "reference_id": "RHSA-2023:7886", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7886" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0006", "reference_id": "RHSA-2024:0006", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0006" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0009", "reference_id": "RHSA-2024:0009", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0009" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0010", "reference_id": "RHSA-2024:0010", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0010" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0014", "reference_id": "RHSA-2024:0014", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0014" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0015", "reference_id": "RHSA-2024:0015", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0015" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0016", "reference_id": "RHSA-2024:0016", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0016" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0017", "reference_id": "RHSA-2024:0017", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0017" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0018", "reference_id": "RHSA-2024:0018", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0018" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0020", "reference_id": "RHSA-2024:0020", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0020" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2170", "reference_id": "RHSA-2024:2170", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2996", "reference_id": "RHSA-2024:2996", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2996" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136510?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u9?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u9%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136509?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136507?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.10-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.10-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-6478" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-t19y-2rhp-23cx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/100693?format=api", "vulnerability_id": "VCID-t4ta-czp7-pye5", "summary": "xorg-x11-server: buffer overflow in _GetCountedString() in xkb/xkb.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3550.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3550.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3550", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00346", "scoring_system": "epss", "scoring_elements": "0.57477", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3550" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2140698", "reference_id": "2140698", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2140698" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8491", "reference_id": "RHSA-2022:8491", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8491" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2248", "reference_id": "RHSA-2023:2248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2249", "reference_id": "RHSA-2023:2249", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2249" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2805", "reference_id": "RHSA-2023:2805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2806", "reference_id": "RHSA-2023:2806", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2806" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136487?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136486?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.4-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.4-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-3550" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-t4ta-czp7-pye5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/90718?format=api", "vulnerability_id": "VCID-t6z8-cefj-jqa2", "summary": "xorg-x11-server: Heap buffer overread/data leakage in ProcXIPassiveGrabDevice", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31081.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31081.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271998", "reference_id": "2271998", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271998" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client", "reference_id": "cpe:/o:redhat:enterprise_linux:7::client", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode", "reference_id": "cpe:/o:redhat:enterprise_linux:7::computenode", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server", "reference_id": "cpe:/o:redhat:enterprise_linux:7::server", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation", "reference_id": "cpe:/o:redhat:enterprise_linux:7::workstation", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-31081", "reference_id": "CVE-2024-31081", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-31081" }, { "reference_url": "https://security.gentoo.org/glsa/202411-08", "reference_id": "GLSA-202411-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202411-08" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:1785", "reference_id": "RHSA-2024:1785", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:1785" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2036", "reference_id": "RHSA-2024:2036", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2036" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2037", "reference_id": "RHSA-2024:2037", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2037" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2038", "reference_id": "RHSA-2024:2038", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2038" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2039", "reference_id": "RHSA-2024:2039", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2039" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2040", "reference_id": "RHSA-2024:2040", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2040" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2041", "reference_id": "RHSA-2024:2041", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2042", "reference_id": "RHSA-2024:2042", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2042" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2080", "reference_id": "RHSA-2024:2080", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2080" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2616", "reference_id": "RHSA-2024:2616", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2616" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3258", "reference_id": "RHSA-2024:3258", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:3258" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3261", "reference_id": "RHSA-2024:3261", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:3261" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3343", "reference_id": "RHSA-2024:3343", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:3343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9093", "reference_id": "RHSA-2024:9093", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9093" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9122", "reference_id": "RHSA-2024:9122", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9122" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:12751" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136519?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u7?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u7%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136520?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.11-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.11-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-31081" ], "risk_score": 3.3, "exploitability": "0.5", "weighted_severity": "6.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-t6z8-cefj-jqa2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6450?format=api", "vulnerability_id": "VCID-tuku-xgqr-dfdc", "summary": "arbitrary code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12183.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12183.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66407", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509224", "reference_id": "1509224", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509224" }, { "reference_url": "https://security.archlinux.org/ASA-201710-29", "reference_id": "ASA-201710-29", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201710-29" }, { "reference_url": "https://security.archlinux.org/AVG-443", "reference_id": "AVG-443", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-443" }, { "reference_url": "https://security.gentoo.org/glsa/201711-05", "reference_id": "GLSA-201711-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201711-05" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136465?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.5-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2017-12183" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tuku-xgqr-dfdc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91481?format=api", "vulnerability_id": "VCID-tzs1-bp73-zycb", "summary": "xorg-x11-server: heap buffer overflow in DisableDevice", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21886.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21886.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256542", "reference_id": "2256542", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256542" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client", "reference_id": "cpe:/o:redhat:enterprise_linux:7::client", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode", "reference_id": "cpe:/o:redhat:enterprise_linux:7::computenode", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server", "reference_id": "cpe:/o:redhat:enterprise_linux:7::server", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation", "reference_id": "cpe:/o:redhat:enterprise_linux:7::workstation", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-21886", "reference_id": "CVE-2024-21886", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-21886" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0320", "reference_id": "RHSA-2024:0320", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0320" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0557", "reference_id": "RHSA-2024:0557", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0557" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0558", "reference_id": "RHSA-2024:0558", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0558" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0597", "reference_id": "RHSA-2024:0597", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0597" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0607", "reference_id": "RHSA-2024:0607", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0607" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0614", "reference_id": "RHSA-2024:0614", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0614" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0617", "reference_id": "RHSA-2024:0617", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0617" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0621", "reference_id": "RHSA-2024:0621", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0621" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0626", "reference_id": "RHSA-2024:0626", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0626" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0629", "reference_id": "RHSA-2024:0629", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0629" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2170", "reference_id": "RHSA-2024:2170", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2996", "reference_id": "RHSA-2024:2996", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2996" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:12751" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136512?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u11?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u11%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136511?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136513?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-21886" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tzs1-bp73-zycb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6453?format=api", "vulnerability_id": "VCID-umsv-cu6y-r7dy", "summary": "arbitrary code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12176.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12176.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0095", "scoring_system": "epss", "scoring_elements": "0.7672", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509214", "reference_id": "1509214", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509214" }, { "reference_url": "https://security.archlinux.org/ASA-201710-29", "reference_id": "ASA-201710-29", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201710-29" }, { "reference_url": "https://security.archlinux.org/AVG-443", "reference_id": "AVG-443", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-443" }, { "reference_url": "https://security.gentoo.org/glsa/201711-05", "reference_id": "GLSA-201711-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201711-05" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136465?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.5-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2017-12176" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-umsv-cu6y-r7dy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6452?format=api", "vulnerability_id": "VCID-vdf6-wkbk-37hb", "summary": "arbitrary code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12177.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12177.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00944", "scoring_system": "epss", "scoring_elements": "0.76655", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509218", "reference_id": "1509218", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509218" }, { "reference_url": "https://security.archlinux.org/ASA-201710-29", "reference_id": "ASA-201710-29", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201710-29" }, { "reference_url": "https://security.archlinux.org/AVG-443", "reference_id": "AVG-443", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-443" }, { "reference_url": "https://security.gentoo.org/glsa/201711-05", "reference_id": "GLSA-201711-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201711-05" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136465?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.5-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2017-12177" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vdf6-wkbk-37hb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73009?format=api", "vulnerability_id": "VCID-vs7d-ydc7-w7ec", "summary": "xorg: xmayland: Use-after-free in XPresentNotify structure creation", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-62229.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-62229.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2402649", "reference_id": "2402649", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2402649" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19432", "reference_id": "RHSA-2025:19432", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19432" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19433", "reference_id": "RHSA-2025:19433", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19433" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19434", "reference_id": "RHSA-2025:19434", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19434" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19435", "reference_id": "RHSA-2025:19435", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19435" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19489", "reference_id": "RHSA-2025:19489", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19489" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19623", "reference_id": "RHSA-2025:19623", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19623" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19909", "reference_id": "RHSA-2025:19909", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19909" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20958", "reference_id": "RHSA-2025:20958", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:20958" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20960", "reference_id": "RHSA-2025:20960", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:20960" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20961", "reference_id": "RHSA-2025:20961", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:20961" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:21035", "reference_id": "RHSA-2025:21035", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:21035" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22040", "reference_id": "RHSA-2025:22040", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22040" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22041", "reference_id": "RHSA-2025:22041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22051", "reference_id": "RHSA-2025:22051", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22051" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22055", "reference_id": "RHSA-2025:22055", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22055" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22056", "reference_id": "RHSA-2025:22056", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22056" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22077", "reference_id": "RHSA-2025:22077", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22077" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22096", "reference_id": "RHSA-2025:22096", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22096" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22164", "reference_id": "RHSA-2025:22164", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22164" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22167", "reference_id": "RHSA-2025:22167", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22167" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22364", "reference_id": "RHSA-2025:22364", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22364" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22365", "reference_id": "RHSA-2025:22365", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22365" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22426", "reference_id": "RHSA-2025:22426", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22426" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22427", "reference_id": "RHSA-2025:22427", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22427" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22667", "reference_id": "RHSA-2025:22667", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22667" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22729", "reference_id": "RHSA-2025:22729", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22729" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22742", "reference_id": "RHSA-2025:22742", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22742" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22753", "reference_id": "RHSA-2025:22753", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22753" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0031", "reference_id": "RHSA-2026:0031", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0031" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0033", "reference_id": "RHSA-2026:0033", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0033" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0034", "reference_id": "RHSA-2026:0034", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0034" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0035", "reference_id": "RHSA-2026:0035", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0035" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0036", "reference_id": "RHSA-2026:0036", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0036" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136543?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u17?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u17%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136542?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u11?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u11%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136545?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136544?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.20-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.20-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-62229" ], "risk_score": 3.3, "exploitability": "0.5", "weighted_severity": "6.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vs7d-ydc7-w7ec" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106658?format=api", "vulnerability_id": "VCID-vscc-4qb3-3fgd", "summary": "X.Org X server before 1.13.4 and 1.4.x before 1.14.1 does not properly restrict access to input events when adding a new hot-plug device, which might allow physically proximate attackers to obtain sensitive information, as demonstrated by reading passwords from a tty.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1940.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1940.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-1940", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00079", "scoring_system": "epss", "scoring_elements": "0.2342", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-1940" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=950438", "reference_id": "950438", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=950438" }, { "reference_url": "https://security.gentoo.org/glsa/201405-07", "reference_id": "GLSA-201405-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201405-07" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2013:1620", "reference_id": "RHSA-2013:1620", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2013:1620" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136446?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.12.4-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.12.4-6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2013-1940" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vscc-4qb3-3fgd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106638?format=api", "vulnerability_id": "VCID-vv5c-txda-hkfd", "summary": "The XInput extension in X.Org Xserver before 1.4.1 allows context-dependent attackers to execute arbitrary code via requests related to byte swapping and heap corruption within multiple functions, a different vulnerability than CVE-2007-4990.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6427.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6427.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2007-6427", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0424", "scoring_system": "epss", "scoring_elements": "0.8897", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2007-6427" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=413811", "reference_id": "413811", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=413811" }, { "reference_url": "https://security.gentoo.org/glsa/200801-09", "reference_id": "GLSA-200801-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200801-09" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0029", "reference_id": "RHSA-2008:0029", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0029" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0030", "reference_id": "RHSA-2008:0030", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0030" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0031", "reference_id": "RHSA-2008:0031", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0031" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136428?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2007-6427" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vv5c-txda-hkfd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/97615?format=api", "vulnerability_id": "VCID-w48c-6a3x-7qhd", "summary": "xorg-x11-server: X.Org Server Overlay Window Use-After-Free Local Privilege Escalation Vulnerability", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-1393.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-1393.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-1393", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.26029", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-1393" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2180288", "reference_id": "2180288", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2180288" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1548", "reference_id": "RHSA-2023:1548", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1548" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1549", "reference_id": "RHSA-2023:1549", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1549" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1551", "reference_id": "RHSA-2023:1551", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1551" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1592", "reference_id": "RHSA-2023:1592", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1592" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1594", "reference_id": "RHSA-2023:1594", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1594" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1598", "reference_id": "RHSA-2023:1598", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1598" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1599", "reference_id": "RHSA-2023:1599", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1599" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1600", "reference_id": "RHSA-2023:1600", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1600" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6340", "reference_id": "RHSA-2023:6340", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6340" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6341", "reference_id": "RHSA-2023:6341", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6341" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6916", "reference_id": "RHSA-2023:6916", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6916" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6917", "reference_id": "RHSA-2023:6917", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6917" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136498?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u6%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136496?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-1393" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-w48c-6a3x-7qhd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85253?format=api", "vulnerability_id": "VCID-waxn-nrqv-k7ca", "summary": "xorg: xwayland: Buffer overflow in XkbChangeTypesOfKey()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26597.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26597.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906", "reference_id": "1098906", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907", "reference_id": "1098907", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345255", "reference_id": "2345255", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345255" }, { "reference_url": "https://security.gentoo.org/glsa/202506-04", "reference_id": "GLSA-202506-04", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202506-04" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2500", "reference_id": "RHSA-2025:2500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2502", "reference_id": "RHSA-2025:2502", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2861", "reference_id": "RHSA-2025:2861", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2861" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2862", "reference_id": "RHSA-2025:2862", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2862" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2865", "reference_id": "RHSA-2025:2865", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2865" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2866", "reference_id": "RHSA-2025:2866", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2873", "reference_id": "RHSA-2025:2873", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2873" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2874", "reference_id": "RHSA-2025:2874", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2874" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2875", "reference_id": "RHSA-2025:2875", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2879", "reference_id": "RHSA-2025:2879", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2879" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2880", "reference_id": "RHSA-2025:2880", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2880" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3976", "reference_id": "RHSA-2025:3976", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:3976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7163", "reference_id": "RHSA-2025:7163", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7165", "reference_id": "RHSA-2025:7165", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7458", "reference_id": "RHSA-2025:7458", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7458" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136526?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u15?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u15%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136525?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u9?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u9%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136527?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-26597" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-waxn-nrqv-k7ca" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106649?format=api", "vulnerability_id": "VCID-wgpc-s7x8-77at", "summary": "xvfb-run 1.6.1 in Debian GNU/Linux, Ubuntu, Fedora 10, and possibly other operating systems place the magic cookie (MCOOKIE) on the command line, which allows local users to gain privileges by listing the process and its arguments.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1573.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1573.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-1573", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21736", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-1573" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=499234", "reference_id": "499234", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=499234" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=526678", "reference_id": "526678", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=526678" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136436?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.6.1.901-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.6.1.901-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2009-1573" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wgpc-s7x8-77at" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/99575?format=api", "vulnerability_id": "VCID-wrkb-mwhv-wqcc", "summary": "xorg-x11-server: ScreenSaverSetAttributes use-after-free", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46343.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46343.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46343", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01059", "scoring_system": "epss", "scoring_elements": "0.77974", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46343" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071", "reference_id": "1026071", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151758", "reference_id": "2151758", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151758" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0045", "reference_id": "RHSA-2023:0045", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0045" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0046", "reference_id": "RHSA-2023:0046", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0046" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2248", "reference_id": "RHSA-2023:2248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2249", "reference_id": "RHSA-2023:2249", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2249" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2257", "reference_id": "RHSA-2023:2257", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2257" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2805", "reference_id": "RHSA-2023:2805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2806", "reference_id": "RHSA-2023:2806", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2806" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2830", "reference_id": "RHSA-2023:2830", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2830" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136489?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u4?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u4%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136488?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.5-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.5-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-46343" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wrkb-mwhv-wqcc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91497?format=api", "vulnerability_id": "VCID-wv2b-584d-uyc2", "summary": "xorg-x11-server: Heap buffer overflow in DeviceFocusEvent and ProcXIQueryPointer", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6816.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6816.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257691", "reference_id": "2257691", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257691" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0320", "reference_id": "RHSA-2024:0320", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0320" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0557", "reference_id": "RHSA-2024:0557", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0557" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0558", "reference_id": "RHSA-2024:0558", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0558" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0597", "reference_id": "RHSA-2024:0597", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0597" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0607", "reference_id": "RHSA-2024:0607", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0607" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0614", "reference_id": "RHSA-2024:0614", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0614" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0617", "reference_id": "RHSA-2024:0617", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0617" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0621", "reference_id": "RHSA-2024:0621", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0621" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0626", "reference_id": "RHSA-2024:0626", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0626" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0629", "reference_id": "RHSA-2024:0629", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0629" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2170", "reference_id": "RHSA-2024:2170", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2996", "reference_id": "RHSA-2024:2996", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2996" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136512?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u11?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u11%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136511?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136513?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-6816" ], "risk_score": 4.4, "exploitability": "0.5", "weighted_severity": "8.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wv2b-584d-uyc2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/92130?format=api", "vulnerability_id": "VCID-xg2s-qrvs-ybca", "summary": "xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5367.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5367.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243091", "reference_id": "2243091", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243091" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6802", "reference_id": "RHSA-2023:6802", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6802" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6808", "reference_id": "RHSA-2023:6808", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6808" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7373", "reference_id": "RHSA-2023:7373", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7373" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7388", "reference_id": "RHSA-2023:7388", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7388" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7405", "reference_id": "RHSA-2023:7405", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7405" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7428", "reference_id": "RHSA-2023:7428", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7428" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7436", "reference_id": "RHSA-2023:7436", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7436" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7526", "reference_id": "RHSA-2023:7526", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7526" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7533", "reference_id": "RHSA-2023:7533", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7533" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0010", "reference_id": "RHSA-2024:0010", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0010" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0128", "reference_id": "RHSA-2024:0128", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0128" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2170", "reference_id": "RHSA-2024:2170", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2996", "reference_id": "RHSA-2024:2996", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2996" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136500?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u8?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u8%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136499?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136502?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.9-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-5367" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xg2s-qrvs-ybca" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85258?format=api", "vulnerability_id": "VCID-xq35-8sqg-9fcf", "summary": "xorg: xwayland: Heap overflow in XkbWriteKeySyms()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26596.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26596.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906", "reference_id": "1098906", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907", "reference_id": "1098907", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345256", "reference_id": "2345256", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345256" }, { "reference_url": "https://security.gentoo.org/glsa/202506-04", "reference_id": "GLSA-202506-04", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202506-04" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2500", "reference_id": "RHSA-2025:2500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2502", "reference_id": "RHSA-2025:2502", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2861", "reference_id": "RHSA-2025:2861", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2861" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2862", "reference_id": "RHSA-2025:2862", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2862" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2865", "reference_id": "RHSA-2025:2865", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2865" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2866", "reference_id": "RHSA-2025:2866", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2873", "reference_id": "RHSA-2025:2873", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2873" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2874", "reference_id": "RHSA-2025:2874", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2874" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2875", "reference_id": "RHSA-2025:2875", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2879", "reference_id": "RHSA-2025:2879", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2879" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2880", "reference_id": "RHSA-2025:2880", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2880" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3976", "reference_id": "RHSA-2025:3976", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:3976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7163", "reference_id": "RHSA-2025:7163", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7165", "reference_id": "RHSA-2025:7165", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7458", "reference_id": "RHSA-2025:7458", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7458" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136526?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u15?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u15%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136525?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u9?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u9%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136527?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-26596" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xq35-8sqg-9fcf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85240?format=api", "vulnerability_id": "VCID-y5rf-aq67-nbcd", "summary": "xorg: xwayland: Use-after-free in SyncInitTrigger()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26601.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26601.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906", "reference_id": "1098906", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907", "reference_id": "1098907", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345251", "reference_id": "2345251", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345251" }, { "reference_url": "https://security.gentoo.org/glsa/202506-04", "reference_id": "GLSA-202506-04", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202506-04" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2500", "reference_id": "RHSA-2025:2500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2502", "reference_id": "RHSA-2025:2502", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2861", "reference_id": "RHSA-2025:2861", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2861" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2862", "reference_id": "RHSA-2025:2862", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2862" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2865", "reference_id": "RHSA-2025:2865", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2865" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2866", "reference_id": "RHSA-2025:2866", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2873", "reference_id": "RHSA-2025:2873", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2873" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2874", "reference_id": "RHSA-2025:2874", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2874" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2875", "reference_id": "RHSA-2025:2875", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2879", "reference_id": "RHSA-2025:2879", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2879" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2880", "reference_id": "RHSA-2025:2880", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2880" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3976", "reference_id": "RHSA-2025:3976", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:3976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7163", "reference_id": "RHSA-2025:7163", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7165", "reference_id": "RHSA-2025:7165", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7458", "reference_id": "RHSA-2025:7458", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7458" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136526?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u15?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u15%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136525?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u9?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u9%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136527?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-26601" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-y5rf-aq67-nbcd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85246?format=api", "vulnerability_id": "VCID-yqg5-wy1b-hfgx", "summary": "xorg: xwayland: Use of uninitialized pointer in compRedirectWindow()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26599.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26599.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906", "reference_id": "1098906", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907", "reference_id": "1098907", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345253", "reference_id": "2345253", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345253" }, { "reference_url": "https://security.gentoo.org/glsa/202506-04", "reference_id": "GLSA-202506-04", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202506-04" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2500", "reference_id": "RHSA-2025:2500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2502", "reference_id": "RHSA-2025:2502", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2861", "reference_id": "RHSA-2025:2861", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2861" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2862", "reference_id": "RHSA-2025:2862", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2862" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2865", "reference_id": "RHSA-2025:2865", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2865" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2866", "reference_id": "RHSA-2025:2866", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2873", "reference_id": "RHSA-2025:2873", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2873" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2874", "reference_id": "RHSA-2025:2874", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2874" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2875", "reference_id": "RHSA-2025:2875", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2879", "reference_id": "RHSA-2025:2879", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2879" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2880", "reference_id": "RHSA-2025:2880", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2880" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3976", "reference_id": "RHSA-2025:3976", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:3976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7163", "reference_id": "RHSA-2025:7163", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7165", "reference_id": "RHSA-2025:7165", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7458", "reference_id": "RHSA-2025:7458", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7458" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136526?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u15?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u15%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136525?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u9?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u9%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136527?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-26599" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yqg5-wy1b-hfgx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106671?format=api", "vulnerability_id": "VCID-ys3e-5jfb-dfez", "summary": "The Render extension in XFree86 4.0.1, X.Org X Window System (aka X11 or X) X11R6.7, and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) ProcRenderQueryVersion, (2) SProcRenderQueryVersion, (3) SProcRenderQueryPictFormats, (4) SProcRenderQueryPictIndexValues, (5) SProcRenderCreatePicture, (6) SProcRenderChangePicture, (7) SProcRenderSetPictureClipRectangles, (8) SProcRenderFreePicture, (9) SProcRenderComposite, (10) SProcRenderScale, (11) SProcRenderCreateGlyphSet, (12) SProcRenderReferenceGlyphSet, (13) SProcRenderFreeGlyphSet, (14) SProcRenderFreeGlyphs, or (15) SProcRenderCompositeGlyphs function.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8100.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8100.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8100", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01297", "scoring_system": "epss", "scoring_elements": "0.80046", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168711", "reference_id": "1168711", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168711" }, { "reference_url": "https://security.gentoo.org/glsa/201504-06", "reference_id": "GLSA-201504-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201504-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1982", "reference_id": "RHSA-2014:1982", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1982" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1983", "reference_id": "RHSA-2014:1983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1983" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136451?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.2.901-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2014-8100" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ys3e-5jfb-dfez" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/90717?format=api", "vulnerability_id": "VCID-z2sj-4r7t-3ycm", "summary": "xorg-x11-server: Heap buffer overread/data leakage in ProcXIGetSelectedEvents", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31080.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31080.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271997", "reference_id": "2271997", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271997" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client", "reference_id": "cpe:/o:redhat:enterprise_linux:7::client", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode", "reference_id": "cpe:/o:redhat:enterprise_linux:7::computenode", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server", "reference_id": "cpe:/o:redhat:enterprise_linux:7::server", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation", "reference_id": "cpe:/o:redhat:enterprise_linux:7::workstation", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-31080", "reference_id": "CVE-2024-31080", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-31080" }, { "reference_url": "https://security.gentoo.org/glsa/202411-08", "reference_id": "GLSA-202411-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202411-08" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:1785", "reference_id": "RHSA-2024:1785", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:1785" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2036", "reference_id": "RHSA-2024:2036", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2036" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2037", "reference_id": "RHSA-2024:2037", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2037" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2038", "reference_id": "RHSA-2024:2038", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2038" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2039", "reference_id": "RHSA-2024:2039", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2039" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2040", "reference_id": "RHSA-2024:2040", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2040" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2041", "reference_id": "RHSA-2024:2041", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2042", "reference_id": "RHSA-2024:2042", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2042" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2080", "reference_id": "RHSA-2024:2080", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2080" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2616", "reference_id": "RHSA-2024:2616", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2616" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3258", "reference_id": "RHSA-2024:3258", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:3258" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3261", "reference_id": "RHSA-2024:3261", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:3261" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3343", "reference_id": "RHSA-2024:3343", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:3343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9093", "reference_id": "RHSA-2024:9093", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9093" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9122", "reference_id": "RHSA-2024:9122", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9122" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:12751" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136519?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u7?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u7%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136520?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.11-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.11-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-31080" ], "risk_score": 3.3, "exploitability": "0.5", "weighted_severity": "6.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z2sj-4r7t-3ycm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80512?format=api", "vulnerability_id": "VCID-z6tv-7fmc-13bw", "summary": "xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Integer Overflow in X Resize, Rotate and Reflect (RandR) Extension", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49180.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49180.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369", "reference_id": "1108369", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369981", "reference_id": "2369981", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369981" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10258", "reference_id": "RHSA-2025:10258", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10258" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10342", "reference_id": "RHSA-2025:10342", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10343", "reference_id": "RHSA-2025:10343", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10344", "reference_id": "RHSA-2025:10344", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10346", "reference_id": "RHSA-2025:10346", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10346" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10347", "reference_id": "RHSA-2025:10347", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10347" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10348", "reference_id": "RHSA-2025:10348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10349", "reference_id": "RHSA-2025:10349", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10349" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10350", "reference_id": "RHSA-2025:10350", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10350" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10351", "reference_id": "RHSA-2025:10351", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10351" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10352", "reference_id": "RHSA-2025:10352", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10355", "reference_id": "RHSA-2025:10355", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10355" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10356", "reference_id": "RHSA-2025:10356", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10356" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10360", "reference_id": "RHSA-2025:10360", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10360" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10370", "reference_id": "RHSA-2025:10370", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10370" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10374", "reference_id": "RHSA-2025:10374", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10374" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10375", "reference_id": "RHSA-2025:10375", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10375" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10376", "reference_id": "RHSA-2025:10376", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10376" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10377", "reference_id": "RHSA-2025:10377", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10377" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10378", "reference_id": "RHSA-2025:10378", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10378" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10381", "reference_id": "RHSA-2025:10381", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10381" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10410", "reference_id": "RHSA-2025:10410", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10410" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9303", "reference_id": "RHSA-2025:9303", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9303" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9304", "reference_id": "RHSA-2025:9304", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9304" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9305", "reference_id": "RHSA-2025:9305", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9305" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9306", "reference_id": "RHSA-2025:9306", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9306" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9392", "reference_id": "RHSA-2025:9392", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9964", "reference_id": "RHSA-2025:9964", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9964" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136533?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u16?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u16%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136532?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u10?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u10%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136535?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-49180" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z6tv-7fmc-13bw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80381?format=api", "vulnerability_id": "VCID-zb61-sksa-e3c5", "summary": "xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Out-of-Bounds Read in X Rendering Extension Animated Cursors", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49175.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49175.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369", "reference_id": "1108369", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369947", "reference_id": "2369947", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369947" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10258", "reference_id": "RHSA-2025:10258", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10258" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10342", "reference_id": "RHSA-2025:10342", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10343", "reference_id": "RHSA-2025:10343", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10344", "reference_id": "RHSA-2025:10344", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10346", "reference_id": "RHSA-2025:10346", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10346" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10347", "reference_id": "RHSA-2025:10347", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10347" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10348", "reference_id": "RHSA-2025:10348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10349", "reference_id": "RHSA-2025:10349", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10349" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10350", "reference_id": "RHSA-2025:10350", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10350" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10351", "reference_id": "RHSA-2025:10351", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10351" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10352", "reference_id": "RHSA-2025:10352", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10355", "reference_id": "RHSA-2025:10355", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10355" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10356", "reference_id": "RHSA-2025:10356", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10356" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10360", "reference_id": "RHSA-2025:10360", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10360" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10370", "reference_id": "RHSA-2025:10370", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10370" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10374", "reference_id": "RHSA-2025:10374", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10374" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10375", "reference_id": "RHSA-2025:10375", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10375" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10376", "reference_id": "RHSA-2025:10376", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10376" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10377", "reference_id": "RHSA-2025:10377", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10377" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10378", "reference_id": "RHSA-2025:10378", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10378" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10381", "reference_id": "RHSA-2025:10381", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10381" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10410", "reference_id": "RHSA-2025:10410", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10410" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9303", "reference_id": "RHSA-2025:9303", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9303" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9304", "reference_id": "RHSA-2025:9304", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9304" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9305", "reference_id": "RHSA-2025:9305", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9305" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9306", "reference_id": "RHSA-2025:9306", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9306" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9392", "reference_id": "RHSA-2025:9392", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9964", "reference_id": "RHSA-2025:9964", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9964" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136533?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u16?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u16%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136532?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u10?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u10%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136535?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-49175" ], "risk_score": 2.8, "exploitability": "0.5", "weighted_severity": "5.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zb61-sksa-e3c5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106669?format=api", "vulnerability_id": "VCID-zckq-n5gm-3qb9", "summary": "The GLX extension in XFree86 4.0, X.Org X Window System (aka X11 or X) X11R6.7, and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) __glXDisp_Render, (2) __glXDisp_RenderLarge, (3) __glXDispSwap_VendorPrivate, (4) __glXDispSwap_VendorPrivateWithReply, (5) set_client_info, (6) __glXDispSwap_SetClientInfoARB, (7) DoSwapInterval, (8) DoGetProgramString, (9) DoGetString, (10) __glXDispSwap_RenderMode, (11) __glXDisp_GetCompressedTexImage, (12) __glXDispSwap_GetCompressedTexImage, (13) __glXDisp_FeedbackBuffer, (14) __glXDispSwap_FeedbackBuffer, (15) __glXDisp_SelectBuffer, (16) __glXDispSwap_SelectBuffer, (17) __glXDisp_Flush, (18) __glXDispSwap_Flush, (19) __glXDisp_Finish, (20) __glXDispSwap_Finish, (21) __glXDisp_ReadPixels, (22) __glXDispSwap_ReadPixels, (23) __glXDisp_GetTexImage, (24) __glXDispSwap_GetTexImage, (25) __glXDisp_GetPolygonStipple, (26) __glXDispSwap_GetPolygonStipple, (27) __glXDisp_GetSeparableFilter, (28) __glXDisp_GetSeparableFilterEXT, (29) __glXDisp_GetConvolutionFilter, (30) __glXDisp_GetConvolutionFilterEXT, (31) __glXDisp_GetHistogram, (32) __glXDisp_GetHistogramEXT, (33) __glXDisp_GetMinmax, (34) __glXDisp_GetMinmaxEXT, (35) __glXDisp_GetColorTable, (36) __glXDisp_GetColorTableSGI, (37) GetSeparableFilter, (38) GetConvolutionFilter, (39) GetHistogram, (40) GetMinmax, or (41) GetColorTable function.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8098.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8098.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8098", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0101", "scoring_system": "epss", "scoring_elements": "0.77443", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8098" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168707", "reference_id": "1168707", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168707" }, { "reference_url": "https://security.gentoo.org/glsa/201504-06", "reference_id": "GLSA-201504-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201504-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1982", "reference_id": "RHSA-2014:1982", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1982" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1983", "reference_id": "RHSA-2014:1983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1983" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136451?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.2.901-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2014-8098" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zckq-n5gm-3qb9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106627?format=api", "vulnerability_id": "VCID-zen3-5wz9-jyff", "summary": "Buffer overflow in the X render (Xrender) extension in X.org X server 6.8.0 up to allows attackers to cause a denial of service (crash), as demonstrated by the (1) XRenderCompositeTriStrip and (2) XRenderCompositeTriFan requests in the rendertest from XCB xcb/xcb-demo, which leads to an incorrect memory allocation due to a typo in an expression that uses a \"&\" instead of a \"*\" operator. NOTE: the subject line of the original announcement used an incorrect CVE number for this issue.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-1526.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-1526.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2006-1526", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00443", "scoring_system": "epss", "scoring_elements": "0.63626", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2006-1526" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618042", "reference_id": "1618042", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618042" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=378464", "reference_id": "378464", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=378464" }, { "reference_url": "https://security.gentoo.org/glsa/200605-02", "reference_id": "GLSA-200605-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200605-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2006:0451", "reference_id": "RHSA-2006:0451", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2006:0451" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136415?format=api", "purl": "pkg:deb/debian/xorg-server@1:1.0.2-8?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@1:1.0.2-8%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2006-1526" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zen3-5wz9-jyff" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106663?format=api", "vulnerability_id": "VCID-zh42-3rck-93he", "summary": "Multiple integer overflows in the GLX extension in XFree86 4.0, X.Org X Window System (aka X11 or X) X11R6.7, and X.Org Server (aka xserver and xorg-server) before 1.16.3 allow remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted request to the (1) __glXDisp_ReadPixels, (2) __glXDispSwap_ReadPixels, (3) __glXDisp_GetTexImage, (4) __glXDispSwap_GetTexImage, (5) GetSeparableFilter, (6) GetConvolutionFilter, (7) GetHistogram, (8) GetMinmax, (9) GetColorTable, (10) __glXGetAnswerBuffer, (11) __GLX_GET_ANSWER_BUFFER, (12) __glXMap1dReqSize, (13) __glXMap1fReqSize, (14) Map2Size, (15) __glXMap2dReqSize, (16) __glXMap2fReqSize, (17) __glXImageSize, or (18) __glXSeparableFilter2DReqSize function, which triggers an out-of-bounds read or write.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8093.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8093.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8093", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01297", "scoring_system": "epss", "scoring_elements": "0.80046", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168688", "reference_id": "1168688", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168688" }, { "reference_url": "https://security.gentoo.org/glsa/201504-06", "reference_id": "GLSA-201504-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201504-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1982", "reference_id": "RHSA-2014:1982", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1982" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1983", "reference_id": "RHSA-2014:1983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1983" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136451?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.2.901-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2014-8093" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zh42-3rck-93he" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80439?format=api", "vulnerability_id": "VCID-zuaj-1yvr-sug9", "summary": "xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Data Leak in XFIXES Extension's XFixesSetClientDisconnectMode", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49177.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49177.json" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369", "reference_id": "1108369", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369955", "reference_id": "2369955", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369955" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10258", "reference_id": "RHSA-2025:10258", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10258" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9303", "reference_id": "RHSA-2025:9303", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9303" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9304", "reference_id": "RHSA-2025:9304", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9304" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136437?format=api", "purl": "pkg:deb/debian/xorg-server@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136409?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136532?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u10?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u10%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136407?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136535?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136413?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136410?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136412?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-49177" ], "risk_score": 2.8, "exploitability": "0.5", "weighted_severity": "5.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zuaj-1yvr-sug9" } ], "risk_score": "3.5", "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie" }