{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","type":"deb","namespace":"debian","name":"xorg-server","version":"2:1.20.11-1+deb11u13","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"2:1.20.11-1+deb11u14","latest_non_vulnerable_version":"2:21.1.23-1","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/275715?format=json","vulnerability_id":"VCID-2uvb-wkwb-jbbf","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50258.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50258.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-50258","reference_id":"","reference_type":"","scores":[{"value":"0.00012","scoring_system":"epss","scoring_elements":"0.0179","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-50258"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-50258","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-50258"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138680","reference_id":"1138680","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138680"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138703","reference_id":"1138703","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138703"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485383","reference_id":"2485383","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485383"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2026-50258"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2uvb-wkwb-jbbf"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/275719?format=json","vulnerability_id":"VCID-5zrz-y3fm-4uet","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50262.json","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50262.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-50262","reference_id":"","reference_type":"","scores":[{"value":"0.00012","scoring_system":"epss","scoring_elements":"0.01905","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-50262"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-50262","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-50262"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138680","reference_id":"1138680","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138680"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138703","reference_id":"1138703","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138703"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485387","reference_id":"2485387","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485387"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2026-50262"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"5.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5zrz-y3fm-4uet"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/275721?format=json","vulnerability_id":"VCID-62xy-rm39-mqge","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50264.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50264.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-50264","reference_id":"","reference_type":"","scores":[{"value":"0.00012","scoring_system":"epss","scoring_elements":"0.0179","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-50264"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-50264","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-50264"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://lists.x.org/archives/xorg-announce/2026-June/003702.html","reference_id":"003702.html","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T12:53:55Z/"}],"url":"https://lists.x.org/archives/xorg-announce/2026-June/003702.html"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138680","reference_id":"1138680","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138680"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138703","reference_id":"1138703","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138703"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485389","reference_id":"2485389","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T12:53:55Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485389"},{"reference_url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/339c279514326134b0878fc23ce6e9520440ce7f","reference_id":"339c279514326134b0878fc23ce6e9520440ce7f","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T12:53:55Z/"}],"url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/339c279514326134b0878fc23ce6e9520440ce7f"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10","reference_id":"cpe:/o:redhat:enterprise_linux:10","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7","reference_id":"cpe:/o:redhat:enterprise_linux:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8","reference_id":"cpe:/o:redhat:enterprise_linux:8","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9","reference_id":"cpe:/o:redhat:enterprise_linux:9","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2026-50264","reference_id":"CVE-2026-50264","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T12:53:55Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2026-50264"},{"reference_url":"https://redhat.atlassian.net/browse/PSIRTSUPT-16950","reference_id":"PSIRTSUPT-16950","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T12:53:55Z/"}],"url":"https://redhat.atlassian.net/browse/PSIRTSUPT-16950"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2026-50264"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-62xy-rm39-mqge"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/62126?format=json","vulnerability_id":"VCID-8mr3-m631-ykff","summary":"xorg: xwayland: X.Org X server: Information exposure and denial of service via out-of-bounds memory access","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-34003.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-34003.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-34003","reference_id":"","reference_type":"","scores":[{"value":"5e-05","scoring_system":"epss","scoring_elements":"0.00228","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-34003"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-34003","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-34003"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2451113","reference_id":"2451113","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2451113"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb","reference_id":"cpe:/a:redhat:enterprise_linux:8::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:9::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb","reference_id":"cpe:/a:redhat:enterprise_linux:9::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:9.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb","reference_id":"cpe:/a:redhat:rhel_eus:9.4::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::crb","reference_id":"cpe:/a:redhat:rhel_eus:9.6::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_eus_long_life:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1","reference_id":"cpe:/o:redhat:enterprise_linux:10.1","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.2","reference_id":"cpe:/o:redhat:enterprise_linux:10.2","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.2"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux_eus:10.0","reference_id":"cpe:/o:redhat:enterprise_linux_eus:10.0","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux_eus:10.0"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6","reference_id":"cpe:/o:redhat:rhel_els:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7","reference_id":"cpe:/o:redhat:rhel_els:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2026-34003","reference_id":"CVE-2026-34003","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2026-34003"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:10739","reference_id":"RHSA-2026:10739","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:10739"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:11352","reference_id":"RHSA-2026:11352","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:11352"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:11369","reference_id":"RHSA-2026:11369","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:11369"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:11388","reference_id":"RHSA-2026:11388","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:11388"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:11656","reference_id":"RHSA-2026:11656","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:11656"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:11692","reference_id":"RHSA-2026:11692","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:11692"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:13414","reference_id":"RHSA-2026:13414","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:13414"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:19125","reference_id":"RHSA-2026:19125","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:19125"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:19342","reference_id":"RHSA-2026:19342","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:19342"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:19343","reference_id":"RHSA-2026:19343","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:19343"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:19344","reference_id":"RHSA-2026:19344","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:19344"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20547","reference_id":"RHSA-2026:20547","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20547"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20555","reference_id":"RHSA-2026:20555","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20555"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20557","reference_id":"RHSA-2026:20557","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20557"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20558","reference_id":"RHSA-2026:20558","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20558"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20560","reference_id":"RHSA-2026:20560","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20560"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20561","reference_id":"RHSA-2026:20561","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20561"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20562","reference_id":"RHSA-2026:20562","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20562"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20563","reference_id":"RHSA-2026:20563","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20563"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20575","reference_id":"RHSA-2026:20575","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20575"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20576","reference_id":"RHSA-2026:20576","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20576"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20590","reference_id":"RHSA-2026:20590","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20590"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21699","reference_id":"RHSA-2026:21699","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:21699"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21712","reference_id":"RHSA-2026:21712","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:21712"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21715","reference_id":"RHSA-2026:21715","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:21715"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21716","reference_id":"RHSA-2026:21716","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:21716"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21718","reference_id":"RHSA-2026:21718","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:21718"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21741","reference_id":"RHSA-2026:21741","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:21741"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21742","reference_id":"RHSA-2026:21742","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:21742"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22424","reference_id":"RHSA-2026:22424","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:22424"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22456","reference_id":"RHSA-2026:22456","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:22456"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:23254","reference_id":"RHSA-2026:23254","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:23254"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:23255","reference_id":"RHSA-2026:23255","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:23255"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:23496","reference_id":"RHSA-2026:23496","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T17:20:40Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:23496"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2026-34003"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8mr3-m631-ykff"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106702?format=json","vulnerability_id":"VCID-abhy-pfqz-efa2","summary":"In X.Org X server 20.11 through 21.1.16, when a client application uses easystroke for mouse gestures, the main thread modifies various data structures used by the input thread without acquiring a lock, aka a race condition. In particular, AttachDevice in dix/devices.c does not acquire an input lock.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-49737","reference_id":"","reference_type":"","scores":[{"value":"0.00095","scoring_system":"epss","scoring_elements":"0.2632","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00095","scoring_system":"epss","scoring_elements":"0.26423","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-49737"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-49737","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-49737"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1081338","reference_id":"1081338","reference_type":"","scores":[{"value":"7.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-17T16:07:10Z/"}],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1081338"},{"reference_url":"https://gitlab.freedesktop.org/xorg/xserver/-/issues/1260","reference_id":"1260","reference_type":"","scores":[{"value":"7.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-17T16:07:10Z/"}],"url":"https://gitlab.freedesktop.org/xorg/xserver/-/issues/1260"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?att=1;bug=1081338;filename=dix-Hold-input-lock-for-AttachDevice.patch;msg=5","reference_id":"bugreport.cgi?att=1;bug=1081338;filename=dix-Hold-input-lock-for-AttachDevice.patch;msg=5","reference_type":"","scores":[{"value":"7.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-17T16:07:10Z/"}],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?att=1;bug=1081338;filename=dix-Hold-input-lock-for-AttachDevice.patch;msg=5"},{"reference_url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/dc7cb45482cea6ccec22d117ca0b489500b4d0a0","reference_id":"dc7cb45482cea6ccec22d117ca0b489500b4d0a0","reference_type":"","scores":[{"value":"7.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-17T16:07:10Z/"}],"url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/dc7cb45482cea6ccec22d117ca0b489500b4d0a0"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136492?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2022-49737"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-abhy-pfqz-efa2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/275716?format=json","vulnerability_id":"VCID-csqc-7j51-x7bb","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50259.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50259.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-50259","reference_id":"","reference_type":"","scores":[{"value":"0.00012","scoring_system":"epss","scoring_elements":"0.0179","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-50259"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-50259","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-50259"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://lists.x.org/archives/xorg-announce/2026-June/003702.html","reference_id":"003702.html","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T13:00:20Z/"}],"url":"https://lists.x.org/archives/xorg-announce/2026-June/003702.html"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138680","reference_id":"1138680","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138680"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138703","reference_id":"1138703","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138703"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485384","reference_id":"2485384","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T13:00:20Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485384"},{"reference_url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/867b59b33bee669cb412f1314e47c52eacf6e00b","reference_id":"867b59b33bee669cb412f1314e47c52eacf6e00b","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T13:00:20Z/"}],"url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/867b59b33bee669cb412f1314e47c52eacf6e00b"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10","reference_id":"cpe:/o:redhat:enterprise_linux:10","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7","reference_id":"cpe:/o:redhat:enterprise_linux:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8","reference_id":"cpe:/o:redhat:enterprise_linux:8","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9","reference_id":"cpe:/o:redhat:enterprise_linux:9","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2026-50259","reference_id":"CVE-2026-50259","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T13:00:20Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2026-50259"},{"reference_url":"https://redhat.atlassian.net/browse/PSIRTSUPT-16950","reference_id":"PSIRTSUPT-16950","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T13:00:20Z/"}],"url":"https://redhat.atlassian.net/browse/PSIRTSUPT-16950"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2026-50259"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-csqc-7j51-x7bb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/275718?format=json","vulnerability_id":"VCID-epmv-hj44-2bhq","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50261.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50261.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-50261","reference_id":"","reference_type":"","scores":[{"value":"0.00012","scoring_system":"epss","scoring_elements":"0.0179","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-50261"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-50261","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-50261"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://lists.x.org/archives/xorg-announce/2026-June/003702.html","reference_id":"003702.html","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T12:38:42Z/"}],"url":"https://lists.x.org/archives/xorg-announce/2026-June/003702.html"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138680","reference_id":"1138680","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138680"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138703","reference_id":"1138703","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138703"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485386","reference_id":"2485386","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T12:38:42Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485386"},{"reference_url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/bdd7bf57af208b1ddf57d4683d67104443b44812","reference_id":"bdd7bf57af208b1ddf57d4683d67104443b44812","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T12:38:42Z/"}],"url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/bdd7bf57af208b1ddf57d4683d67104443b44812"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10","reference_id":"cpe:/o:redhat:enterprise_linux:10","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7","reference_id":"cpe:/o:redhat:enterprise_linux:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8","reference_id":"cpe:/o:redhat:enterprise_linux:8","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9","reference_id":"cpe:/o:redhat:enterprise_linux:9","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2026-50261","reference_id":"CVE-2026-50261","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T12:38:42Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2026-50261"},{"reference_url":"https://redhat.atlassian.net/browse/PSIRTSUPT-16950","reference_id":"PSIRTSUPT-16950","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T12:38:42Z/"}],"url":"https://redhat.atlassian.net/browse/PSIRTSUPT-16950"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2026-50261"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-epmv-hj44-2bhq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/62177?format=json","vulnerability_id":"VCID-mksc-f652-2qcd","summary":"xorg: xwayland: X.Org X server: Denial of Service via integer underflow in XKB compatibility map handling","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-33999.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-33999.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-33999","reference_id":"","reference_type":"","scores":[{"value":"5e-05","scoring_system":"epss","scoring_elements":"0.00218","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-33999"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-33999","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-33999"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2451106","reference_id":"2451106","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2451106"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb","reference_id":"cpe:/a:redhat:enterprise_linux:8::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:9::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb","reference_id":"cpe:/a:redhat:enterprise_linux:9::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:9.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb","reference_id":"cpe:/a:redhat:rhel_eus:9.4::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::crb","reference_id":"cpe:/a:redhat:rhel_eus:9.6::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_eus_long_life:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1","reference_id":"cpe:/o:redhat:enterprise_linux:10.1","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.2","reference_id":"cpe:/o:redhat:enterprise_linux:10.2","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.2"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux_eus:10.0","reference_id":"cpe:/o:redhat:enterprise_linux_eus:10.0","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux_eus:10.0"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6","reference_id":"cpe:/o:redhat:rhel_els:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7","reference_id":"cpe:/o:redhat:rhel_els:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2026-33999","reference_id":"CVE-2026-33999","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2026-33999"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:10739","reference_id":"RHSA-2026:10739","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:10739"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:11352","reference_id":"RHSA-2026:11352","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:11352"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:11369","reference_id":"RHSA-2026:11369","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:11369"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:11388","reference_id":"RHSA-2026:11388","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:11388"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:11656","reference_id":"RHSA-2026:11656","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:11656"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:11692","reference_id":"RHSA-2026:11692","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:11692"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:13414","reference_id":"RHSA-2026:13414","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:13414"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:19125","reference_id":"RHSA-2026:19125","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:19125"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:19342","reference_id":"RHSA-2026:19342","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:19342"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:19343","reference_id":"RHSA-2026:19343","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:19343"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:19344","reference_id":"RHSA-2026:19344","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:19344"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20547","reference_id":"RHSA-2026:20547","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20547"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20555","reference_id":"RHSA-2026:20555","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20555"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20557","reference_id":"RHSA-2026:20557","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20557"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20558","reference_id":"RHSA-2026:20558","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20558"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20560","reference_id":"RHSA-2026:20560","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20560"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20561","reference_id":"RHSA-2026:20561","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20561"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20562","reference_id":"RHSA-2026:20562","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20562"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20563","reference_id":"RHSA-2026:20563","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20563"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20575","reference_id":"RHSA-2026:20575","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20575"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20576","reference_id":"RHSA-2026:20576","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20576"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20590","reference_id":"RHSA-2026:20590","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20590"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21699","reference_id":"RHSA-2026:21699","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:21699"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21712","reference_id":"RHSA-2026:21712","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:21712"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21715","reference_id":"RHSA-2026:21715","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:21715"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21716","reference_id":"RHSA-2026:21716","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:21716"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21718","reference_id":"RHSA-2026:21718","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:21718"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21741","reference_id":"RHSA-2026:21741","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:21741"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21742","reference_id":"RHSA-2026:21742","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:21742"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22424","reference_id":"RHSA-2026:22424","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:22424"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22456","reference_id":"RHSA-2026:22456","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:22456"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:23254","reference_id":"RHSA-2026:23254","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:23254"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:23255","reference_id":"RHSA-2026:23255","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:23255"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:23496","reference_id":"RHSA-2026:23496","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-24T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:23496"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2026-33999"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mksc-f652-2qcd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/62158?format=json","vulnerability_id":"VCID-mux3-jggq-bqej","summary":"xorg: xwayland: X.Org X server: Use-after-free vulnerability leads to server crash and potential memory corruption","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-34001.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-34001.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-34001","reference_id":"","reference_type":"","scores":[{"value":"5e-05","scoring_system":"epss","scoring_elements":"0.00313","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-34001"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-34001","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-34001"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2451109","reference_id":"2451109","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2451109"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb","reference_id":"cpe:/a:redhat:enterprise_linux:8::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:9::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb","reference_id":"cpe:/a:redhat:enterprise_linux:9::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:9.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb","reference_id":"cpe:/a:redhat:rhel_eus:9.4::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::crb","reference_id":"cpe:/a:redhat:rhel_eus:9.6::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_eus_long_life:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1","reference_id":"cpe:/o:redhat:enterprise_linux:10.1","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.2","reference_id":"cpe:/o:redhat:enterprise_linux:10.2","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.2"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux_eus:10.0","reference_id":"cpe:/o:redhat:enterprise_linux_eus:10.0","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux_eus:10.0"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6","reference_id":"cpe:/o:redhat:rhel_els:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7","reference_id":"cpe:/o:redhat:rhel_els:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2026-34001","reference_id":"CVE-2026-34001","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2026-34001"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:10739","reference_id":"RHSA-2026:10739","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:10739"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:11352","reference_id":"RHSA-2026:11352","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:11352"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:11369","reference_id":"RHSA-2026:11369","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:11369"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:11388","reference_id":"RHSA-2026:11388","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:11388"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:11656","reference_id":"RHSA-2026:11656","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:11656"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:11692","reference_id":"RHSA-2026:11692","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:11692"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:13414","reference_id":"RHSA-2026:13414","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:13414"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:19125","reference_id":"RHSA-2026:19125","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:19125"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:19342","reference_id":"RHSA-2026:19342","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:19342"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:19343","reference_id":"RHSA-2026:19343","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:19343"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:19344","reference_id":"RHSA-2026:19344","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:19344"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20547","reference_id":"RHSA-2026:20547","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20547"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20555","reference_id":"RHSA-2026:20555","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20555"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20557","reference_id":"RHSA-2026:20557","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20557"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20558","reference_id":"RHSA-2026:20558","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20558"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20560","reference_id":"RHSA-2026:20560","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20560"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20561","reference_id":"RHSA-2026:20561","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20561"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20562","reference_id":"RHSA-2026:20562","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20562"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20563","reference_id":"RHSA-2026:20563","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20563"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20575","reference_id":"RHSA-2026:20575","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20575"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20576","reference_id":"RHSA-2026:20576","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20576"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20590","reference_id":"RHSA-2026:20590","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20590"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21699","reference_id":"RHSA-2026:21699","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:21699"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21712","reference_id":"RHSA-2026:21712","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:21712"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21715","reference_id":"RHSA-2026:21715","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:21715"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21716","reference_id":"RHSA-2026:21716","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:21716"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21718","reference_id":"RHSA-2026:21718","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:21718"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21741","reference_id":"RHSA-2026:21741","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:21741"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21742","reference_id":"RHSA-2026:21742","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:21742"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22424","reference_id":"RHSA-2026:22424","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:22424"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22456","reference_id":"RHSA-2026:22456","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:22456"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:23254","reference_id":"RHSA-2026:23254","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:23254"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:23255","reference_id":"RHSA-2026:23255","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:23255"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:23496","reference_id":"RHSA-2026:23496","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-23T16:19:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:23496"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2026-34001"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mux3-jggq-bqej"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/275714?format=json","vulnerability_id":"VCID-nynt-8cpp-27fe","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50257.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50257.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-50257","reference_id":"","reference_type":"","scores":[{"value":"0.00012","scoring_system":"epss","scoring_elements":"0.0179","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-50257"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-50257","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-50257"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138680","reference_id":"1138680","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138680"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138703","reference_id":"1138703","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138703"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485382","reference_id":"2485382","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485382"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2026-50257"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nynt-8cpp-27fe"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/61084?format=json","vulnerability_id":"VCID-ucf1-81as-eucj","summary":"xwayland: xorg: X.Org X server: Information disclosure and denial of service via out-of-bounds read in XKB geometry processing.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-34000.json","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-34000.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-34000","reference_id":"","reference_type":"","scores":[{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09587","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-34000"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-34000","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-34000"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2451107","reference_id":"2451107","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2451107"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:9::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:9.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb","reference_id":"cpe:/a:redhat:rhel_eus:9.4::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::crb","reference_id":"cpe:/a:redhat:rhel_eus:9.6::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_eus_long_life:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10","reference_id":"cpe:/o:redhat:enterprise_linux:10","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8","reference_id":"cpe:/o:redhat:enterprise_linux:8","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9","reference_id":"cpe:/o:redhat:enterprise_linux:9","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux_eus:10.0","reference_id":"cpe:/o:redhat:enterprise_linux_eus:10.0","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux_eus:10.0"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6","reference_id":"cpe:/o:redhat:rhel_els:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7","reference_id":"cpe:/o:redhat:rhel_els:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2026-34000","reference_id":"CVE-2026-34000","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2026-34000"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:19342","reference_id":"RHSA-2026:19342","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:19342"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20547","reference_id":"RHSA-2026:20547","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20547"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20555","reference_id":"RHSA-2026:20555","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20555"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20557","reference_id":"RHSA-2026:20557","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20557"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20558","reference_id":"RHSA-2026:20558","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20558"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20560","reference_id":"RHSA-2026:20560","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20560"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20561","reference_id":"RHSA-2026:20561","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20561"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20562","reference_id":"RHSA-2026:20562","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20562"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20563","reference_id":"RHSA-2026:20563","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20563"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20575","reference_id":"RHSA-2026:20575","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20575"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20576","reference_id":"RHSA-2026:20576","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20576"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20590","reference_id":"RHSA-2026:20590","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20590"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21699","reference_id":"RHSA-2026:21699","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:21699"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21712","reference_id":"RHSA-2026:21712","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:21712"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21715","reference_id":"RHSA-2026:21715","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:21715"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21716","reference_id":"RHSA-2026:21716","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:21716"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21718","reference_id":"RHSA-2026:21718","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:21718"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21741","reference_id":"RHSA-2026:21741","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:21741"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21742","reference_id":"RHSA-2026:21742","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:21742"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22424","reference_id":"RHSA-2026:22424","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:22424"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22456","reference_id":"RHSA-2026:22456","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:22456"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:23254","reference_id":"RHSA-2026:23254","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:23254"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:23255","reference_id":"RHSA-2026:23255","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:23255"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:23496","reference_id":"RHSA-2026:23496","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-05T18:51:27Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:23496"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2026-34000"],"risk_score":2.8,"exploitability":"0.5","weighted_severity":"5.5","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ucf1-81as-eucj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/275717?format=json","vulnerability_id":"VCID-wsp6-uyxx-53hf","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50260.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50260.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-50260","reference_id":"","reference_type":"","scores":[{"value":"0.00012","scoring_system":"epss","scoring_elements":"0.0179","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-50260"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-50260","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-50260"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://lists.x.org/archives/xorg-announce/2026-June/003702.html","reference_id":"003702.html","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T15:44:25Z/"}],"url":"https://lists.x.org/archives/xorg-announce/2026-June/003702.html"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138680","reference_id":"1138680","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138680"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138703","reference_id":"1138703","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138703"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485385","reference_id":"2485385","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T15:44:25Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485385"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10","reference_id":"cpe:/o:redhat:enterprise_linux:10","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7","reference_id":"cpe:/o:redhat:enterprise_linux:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8","reference_id":"cpe:/o:redhat:enterprise_linux:8","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9","reference_id":"cpe:/o:redhat:enterprise_linux:9","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2026-50260","reference_id":"CVE-2026-50260","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T15:44:25Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2026-50260"},{"reference_url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/f5abfb61994471023d8c6470428c8e30c411cc0b","reference_id":"f5abfb61994471023d8c6470428c8e30c411cc0b","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T15:44:25Z/"}],"url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/f5abfb61994471023d8c6470428c8e30c411cc0b"},{"reference_url":"https://redhat.atlassian.net/browse/PSIRTSUPT-16950","reference_id":"PSIRTSUPT-16950","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-06-05T15:44:25Z/"}],"url":"https://redhat.atlassian.net/browse/PSIRTSUPT-16950"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2026-50260"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wsp6-uyxx-53hf"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/100709?format=json","vulnerability_id":"VCID-xsha-wn9z-4fg2","summary":"xorg-x11-server: DoS in xquartz when editing the Application menu due to mutaing immutable arrays","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3553.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3553.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-3553","reference_id":"","reference_type":"","scores":[{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30261","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00118","scoring_system":"epss","scoring_elements":"0.30335","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-3553"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3553","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3553"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2140706","reference_id":"2140706","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2140706"},{"reference_url":"https://security.gentoo.org/glsa/202305-30","reference_id":"GLSA-202305-30","reference_type":"","scores":[{"value":"3.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T17:08:45Z/"}],"url":"https://security.gentoo.org/glsa/202305-30"},{"reference_url":"https://vuldb.com/?id.211053","reference_id":"?id.211053","reference_type":"","scores":[{"value":"3.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T17:08:45Z/"}],"url":"https://vuldb.com/?id.211053"},{"reference_url":"https://cgit.freedesktop.org/xorg/xserver/commit/?id=dfd057996b26420309c324ec844a5ba6dd07eda3","reference_id":"?id=dfd057996b26420309c324ec844a5ba6dd07eda3","reference_type":"","scores":[{"value":"3.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T17:08:45Z/"}],"url":"https://cgit.freedesktop.org/xorg/xserver/commit/?id=dfd057996b26420309c324ec844a5ba6dd07eda3"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136484?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.4-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.4-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2022-3553"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xsha-wn9z-4fg2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/61059?format=json","vulnerability_id":"VCID-ydth-wf4d-zugb","summary":"xorg: xwayland: X.Org X server: Information disclosure or Denial of Service via out-of-bounds read in XKB modifier map handling","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-34002.json","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-34002.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-34002","reference_id":"","reference_type":"","scores":[{"value":"0.00032","scoring_system":"epss","scoring_elements":"0.09587","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-34002"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-34002","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-34002"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2451112","reference_id":"2451112","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2451112"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:9.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb","reference_id":"cpe:/a:redhat:rhel_eus:9.4::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::crb","reference_id":"cpe:/a:redhat:rhel_eus:9.6::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_eus_long_life:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10","reference_id":"cpe:/o:redhat:enterprise_linux:10","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8","reference_id":"cpe:/o:redhat:enterprise_linux:8","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9","reference_id":"cpe:/o:redhat:enterprise_linux:9","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux_eus:10.0","reference_id":"cpe:/o:redhat:enterprise_linux_eus:10.0","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux_eus:10.0"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6","reference_id":"cpe:/o:redhat:rhel_els:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7","reference_id":"cpe:/o:redhat:rhel_els:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2026-34002","reference_id":"CVE-2026-34002","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2026-34002"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20547","reference_id":"RHSA-2026:20547","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20547"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20555","reference_id":"RHSA-2026:20555","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20555"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20557","reference_id":"RHSA-2026:20557","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20557"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20558","reference_id":"RHSA-2026:20558","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20558"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20560","reference_id":"RHSA-2026:20560","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20560"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20561","reference_id":"RHSA-2026:20561","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20561"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20562","reference_id":"RHSA-2026:20562","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20562"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20563","reference_id":"RHSA-2026:20563","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20563"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20575","reference_id":"RHSA-2026:20575","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20575"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20576","reference_id":"RHSA-2026:20576","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20576"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:20590","reference_id":"RHSA-2026:20590","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:20590"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21699","reference_id":"RHSA-2026:21699","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:21699"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21712","reference_id":"RHSA-2026:21712","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:21712"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21715","reference_id":"RHSA-2026:21715","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:21715"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21716","reference_id":"RHSA-2026:21716","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:21716"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21718","reference_id":"RHSA-2026:21718","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:21718"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21741","reference_id":"RHSA-2026:21741","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:21741"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:21742","reference_id":"RHSA-2026:21742","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:21742"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22424","reference_id":"RHSA-2026:22424","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:22424"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:22456","reference_id":"RHSA-2026:22456","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:22456"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:23254","reference_id":"RHSA-2026:23254","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:23254"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:23255","reference_id":"RHSA-2026:23255","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:23255"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:23496","reference_id":"RHSA-2026:23496","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-05-06T14:27:00Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:23496"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2026-34002"],"risk_score":2.8,"exploitability":"0.5","weighted_severity":"5.5","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ydth-wf4d-zugb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/275720?format=json","vulnerability_id":"VCID-zdwz-bgk3-fqdj","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50263.json","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50263.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-50263","reference_id":"","reference_type":"","scores":[{"value":"0.00012","scoring_system":"epss","scoring_elements":"0.01905","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-50263"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-50263","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-50263"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138680","reference_id":"1138680","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138680"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138703","reference_id":"1138703","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138703"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485388","reference_id":"2485388","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485388"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2026-50263"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"5.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zdwz-bgk3-fqdj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/275713?format=json","vulnerability_id":"VCID-zsm3-vywn-pkej","summary":"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50256.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-50256.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-50256","reference_id":"","reference_type":"","scores":[{"value":"0.00012","scoring_system":"epss","scoring_elements":"0.0179","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-50256"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-50256","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-50256"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138680","reference_id":"1138680","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138680"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138703","reference_id":"1138703","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1138703"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485380","reference_id":"2485380","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485380"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2026-50256"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zsm3-vywn-pkej"}],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/91480?format=json","vulnerability_id":"VCID-1hen-4651-9fay","summary":"xorg-x11-server: heap buffer overflow in XISendDeviceHierarchyEvent","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21885.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21885.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-21885","reference_id":"","reference_type":"","scores":[{"value":"0.00239","scoring_system":"epss","scoring_elements":"0.47194","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-21885"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6816","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6816"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0408","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0408"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0409","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0409"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21885","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21885"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21886","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21886"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2256540","reference_id":"2256540","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2256540"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb","reference_id":"cpe:/a:redhat:enterprise_linux:8::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:9::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb","reference_id":"cpe:/a:redhat:enterprise_linux:9::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_eus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_eus:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.0::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client","reference_id":"cpe:/o:redhat:enterprise_linux:7::client","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode","reference_id":"cpe:/o:redhat:enterprise_linux:7::computenode","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server","reference_id":"cpe:/o:redhat:enterprise_linux:7::server","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation","reference_id":"cpe:/o:redhat:enterprise_linux:7::workstation","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6","reference_id":"cpe:/o:redhat:rhel_els:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2024-21885","reference_id":"CVE-2024-21885","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2024-21885"},{"reference_url":"https://security.gentoo.org/glsa/202401-30","reference_id":"GLSA-202401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202401-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0320","reference_id":"RHSA-2024:0320","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0320"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0557","reference_id":"RHSA-2024:0557","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0557"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0558","reference_id":"RHSA-2024:0558","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0558"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0597","reference_id":"RHSA-2024:0597","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0597"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0607","reference_id":"RHSA-2024:0607","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0607"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0614","reference_id":"RHSA-2024:0614","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0614"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0617","reference_id":"RHSA-2024:0617","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0617"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0621","reference_id":"RHSA-2024:0621","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0621"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0626","reference_id":"RHSA-2024:0626","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0626"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0629","reference_id":"RHSA-2024:0629","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0629"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2169","reference_id":"RHSA-2024:2169","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2169"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2170","reference_id":"RHSA-2024:2170","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2170"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2995","reference_id":"RHSA-2024:2995","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2995"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2996","reference_id":"RHSA-2024:2996","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2996"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:12751","reference_id":"RHSA-2025:12751","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:12751"},{"reference_url":"https://usn.ubuntu.com/6587-1/","reference_id":"USN-6587-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6587-1/"},{"reference_url":"https://usn.ubuntu.com/6587-2/","reference_id":"USN-6587-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6587-2/"},{"reference_url":"https://usn.ubuntu.com/6587-5/","reference_id":"USN-6587-5","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6587-5/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136512?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u11?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u11%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136511?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136513?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.11-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.11-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2024-21885"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1hen-4651-9fay"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/5018?format=json","vulnerability_id":"VCID-1xeu-h1q2-5bfh","summary":"arbitrary code execution","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4008.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4008.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-4008","reference_id":"","reference_type":"","scores":[{"value":"0.00074","scoring_system":"epss","scoring_elements":"0.2254","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00074","scoring_system":"epss","scoring_elements":"0.22624","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-4008"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2026059","reference_id":"2026059","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2026059"},{"reference_url":"https://security.archlinux.org/AVG-2636","reference_id":"AVG-2636","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2636"},{"reference_url":"https://security.archlinux.org/AVG-2640","reference_id":"AVG-2640","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2640"},{"reference_url":"https://security.gentoo.org/glsa/202305-30","reference_id":"GLSA-202305-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202305-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0003","reference_id":"RHSA-2022:0003","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0003"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1917","reference_id":"RHSA-2022:1917","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1917"},{"reference_url":"https://usn.ubuntu.com/5193-1/","reference_id":"USN-5193-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5193-1/"},{"reference_url":"https://usn.ubuntu.com/5193-2/","reference_id":"USN-5193-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5193-2/"},{"reference_url":"https://usn.ubuntu.com/5193-3/","reference_id":"USN-5193-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5193-3/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136483?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136482?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.13-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.13-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2021-4008"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1xeu-h1q2-5bfh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106645?format=json","vulnerability_id":"VCID-24mm-8spg-nqfq","summary":"Integer overflow in the fbShmPutImage function in the MIT-SHM extension in the X server 1.4 in X.Org X11R7.3 allows context-dependent attackers to read arbitrary process memory via crafted values for a Pixmap width and height.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1379.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1379.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-1379","reference_id":"","reference_type":"","scores":[{"value":"0.00996","scoring_system":"epss","scoring_elements":"0.77292","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00996","scoring_system":"epss","scoring_elements":"0.77322","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-1379"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1379","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1379"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=445414","reference_id":"445414","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=445414"},{"reference_url":"https://security.gentoo.org/glsa/200806-07","reference_id":"GLSA-200806-07","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200806-07"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0502","reference_id":"RHSA-2008:0502","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0502"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0503","reference_id":"RHSA-2008:0503","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0503"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0504","reference_id":"RHSA-2008:0504","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0504"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0512","reference_id":"RHSA-2008:0512","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0512"},{"reference_url":"https://usn.ubuntu.com/616-1/","reference_id":"USN-616-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/616-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136435?format=json","purl":"pkg:deb/debian/xorg-server@2:1.4.1~git20080517-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.1~git20080517-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2008-1379"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-24mm-8spg-nqfq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106675?format=json","vulnerability_id":"VCID-24mx-tgrf-nqa8","summary":"The SProcXFixesSelectSelectionInput function in the XFixes extension in X.Org X Window System (aka X11 or X) X11R6.8.0 and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length value.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8102.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8102.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8102","reference_id":"","reference_type":"","scores":[{"value":"0.01115","scoring_system":"epss","scoring_elements":"0.78527","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01115","scoring_system":"epss","scoring_elements":"0.78553","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8102"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168714","reference_id":"1168714","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168714"},{"reference_url":"https://security.gentoo.org/glsa/201504-06","reference_id":"GLSA-201504-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201504-06"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1982","reference_id":"RHSA-2014:1982","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1982"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1983","reference_id":"RHSA-2014:1983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1983"},{"reference_url":"https://usn.ubuntu.com/2436-1/","reference_id":"USN-2436-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2436-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136451?format=json","purl":"pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.2.901-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2014-8102"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-24mx-tgrf-nqa8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/5016?format=json","vulnerability_id":"VCID-2enj-ds99-9fde","summary":"arbitrary code execution","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4010.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4010.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-4010","reference_id":"","reference_type":"","scores":[{"value":"0.00177","scoring_system":"epss","scoring_elements":"0.38977","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00177","scoring_system":"epss","scoring_elements":"0.39066","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-4010"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2026073","reference_id":"2026073","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2026073"},{"reference_url":"https://security.archlinux.org/AVG-2636","reference_id":"AVG-2636","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2636"},{"reference_url":"https://security.archlinux.org/AVG-2640","reference_id":"AVG-2640","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2640"},{"reference_url":"https://security.gentoo.org/glsa/202305-30","reference_id":"GLSA-202305-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202305-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0003","reference_id":"RHSA-2022:0003","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0003"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1917","reference_id":"RHSA-2022:1917","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1917"},{"reference_url":"https://usn.ubuntu.com/5193-1/","reference_id":"USN-5193-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5193-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136483?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136482?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.13-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.13-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2021-4010"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2enj-ds99-9fde"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106643?format=json","vulnerability_id":"VCID-31f1-edc5-nfey","summary":"The (1) SProcRecordCreateContext and (2) SProcRecordRegisterClients functions in the Record extension and the (3) SProcSecurityGenerateAuthorization function in the Security extension in the X server 1.4 in X.Org X11R7.3 allow context-dependent attackers to execute arbitrary code via requests with crafted length values that specify an arbitrary number of bytes to be swapped on the heap, which triggers heap corruption.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1377.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1377.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-1377","reference_id":"","reference_type":"","scores":[{"value":"0.02373","scoring_system":"epss","scoring_elements":"0.85252","published_at":"2026-06-04T12:55:00Z"},{"value":"0.02373","scoring_system":"epss","scoring_elements":"0.85276","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-1377"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1377","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1377"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=445403","reference_id":"445403","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=445403"},{"reference_url":"https://security.gentoo.org/glsa/200806-07","reference_id":"GLSA-200806-07","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200806-07"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0502","reference_id":"RHSA-2008:0502","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0502"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0503","reference_id":"RHSA-2008:0503","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0503"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0504","reference_id":"RHSA-2008:0504","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0504"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0512","reference_id":"RHSA-2008:0512","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0512"},{"reference_url":"https://usn.ubuntu.com/616-1/","reference_id":"USN-616-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/616-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136435?format=json","purl":"pkg:deb/debian/xorg-server@2:1.4.1~git20080517-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.1~git20080517-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2008-1377"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-31f1-edc5-nfey"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106660?format=json","vulnerability_id":"VCID-3tqr-68kv-t3cp","summary":"Integer underflow in the xTrapezoidValid macro in render/picture.h in X.Org allows context-dependent attackers to cause a denial of service (crash) via a negative bottom value.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-6424.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-6424.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-6424","reference_id":"","reference_type":"","scores":[{"value":"0.0684","scoring_system":"epss","scoring_elements":"0.91508","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0684","scoring_system":"epss","scoring_elements":"0.91521","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-6424"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6424","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6424"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1037984","reference_id":"1037984","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1037984"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742922","reference_id":"742922","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742922"},{"reference_url":"https://security.gentoo.org/glsa/201701-64","reference_id":"GLSA-201701-64","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201701-64"},{"reference_url":"https://security.gentoo.org/glsa/201710-30","reference_id":"GLSA-201710-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201710-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1868","reference_id":"RHSA-2013:1868","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1868"},{"reference_url":"https://usn.ubuntu.com/2500-1/","reference_id":"USN-2500-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2500-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136450?format=json","purl":"pkg:deb/debian/xorg-server@2:1.14.2.901-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.14.2.901-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2013-6424"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3tqr-68kv-t3cp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/90719?format=json","vulnerability_id":"VCID-44pt-tgfg-k3hh","summary":"xorg-x11-server: Heap buffer overread/data leakage in ProcAppleDRICreatePixmap","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31082.json","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31082.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-31082","reference_id":"","reference_type":"","scores":[{"value":"0.00042","scoring_system":"epss","scoring_elements":"0.13035","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-31082"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31082","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31082"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://lists.x.org/archives/xorg-announce/2024-April/003497.html","reference_id":"003497.html","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-29T15:13:28Z/"}],"url":"https://lists.x.org/archives/xorg-announce/2024-April/003497.html"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2271999","reference_id":"2271999","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-29T15:13:28Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2271999"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10","reference_id":"cpe:/o:redhat:enterprise_linux:10","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7","reference_id":"cpe:/o:redhat:enterprise_linux:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8","reference_id":"cpe:/o:redhat:enterprise_linux:8","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9","reference_id":"cpe:/o:redhat:enterprise_linux:9","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2024-31082","reference_id":"CVE-2024-31082","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-29T15:13:28Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2024-31082"},{"reference_url":"https://security.gentoo.org/glsa/202411-08","reference_id":"GLSA-202411-08","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202411-08"},{"reference_url":"https://usn.ubuntu.com/6721-1/","reference_id":"USN-6721-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6721-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136519?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136520?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.11-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.11-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2024-31082"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-44pt-tgfg-k3hh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106670?format=json","vulnerability_id":"VCID-47qj-hd74-27h7","summary":"The XVideo extension in XFree86 4.0.0, X.Org X Window System (aka X11 or X) X11R6.7, and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) SProcXvQueryExtension, (2) SProcXvQueryAdaptors, (3) SProcXvQueryEncodings, (4) SProcXvGrabPort, (5) SProcXvUngrabPort, (6) SProcXvPutVideo, (7) SProcXvPutStill, (8) SProcXvGetVideo, (9) SProcXvGetStill, (10) SProcXvPutImage, (11) SProcXvShmPutImage, (12) SProcXvSelectVideoNotify, (13) SProcXvSelectPortNotify, (14) SProcXvStopVideo, (15) SProcXvSetPortAttribute, (16) SProcXvGetPortAttribute, (17) SProcXvQueryBestSize, (18) SProcXvQueryPortAttributes, (19) SProcXvQueryImageAttributes, or (20) SProcXvListImageFormats function.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8099.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8099.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8099","reference_id":"","reference_type":"","scores":[{"value":"0.01337","scoring_system":"epss","scoring_elements":"0.80329","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01337","scoring_system":"epss","scoring_elements":"0.80354","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8099"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168710","reference_id":"1168710","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168710"},{"reference_url":"https://security.gentoo.org/glsa/201504-06","reference_id":"GLSA-201504-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201504-06"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1982","reference_id":"RHSA-2014:1982","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1982"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1983","reference_id":"RHSA-2014:1983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1983"},{"reference_url":"https://usn.ubuntu.com/2436-1/","reference_id":"USN-2436-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2436-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136451?format=json","purl":"pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.2.901-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2014-8099"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-47qj-hd74-27h7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/90720?format=json","vulnerability_id":"VCID-4q3g-1az1-ybd6","summary":"xorg-x11-server: Use-after-free in ProcRenderAddGlyphs","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31083.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31083.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-31083","reference_id":"","reference_type":"","scores":[{"value":"0.00094","scoring_system":"epss","scoring_elements":"0.26345","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-31083"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31080","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31080"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31081","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31081"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31083","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31083"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2272000","reference_id":"2272000","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2272000"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb","reference_id":"cpe:/a:redhat:enterprise_linux:8::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:9::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb","reference_id":"cpe:/a:redhat:enterprise_linux:9::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_eus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_eus:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.0::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10","reference_id":"cpe:/o:redhat:enterprise_linux:10","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client","reference_id":"cpe:/o:redhat:enterprise_linux:7::client","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode","reference_id":"cpe:/o:redhat:enterprise_linux:7::computenode","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server","reference_id":"cpe:/o:redhat:enterprise_linux:7::server","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation","reference_id":"cpe:/o:redhat:enterprise_linux:7::workstation","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6","reference_id":"cpe:/o:redhat:rhel_els:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2024-31083","reference_id":"CVE-2024-31083","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2024-31083"},{"reference_url":"https://security.gentoo.org/glsa/202411-08","reference_id":"GLSA-202411-08","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202411-08"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:1785","reference_id":"RHSA-2024:1785","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:1785"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2036","reference_id":"RHSA-2024:2036","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2036"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2037","reference_id":"RHSA-2024:2037","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2037"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2038","reference_id":"RHSA-2024:2038","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2038"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2039","reference_id":"RHSA-2024:2039","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2039"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2040","reference_id":"RHSA-2024:2040","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2040"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2041","reference_id":"RHSA-2024:2041","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2041"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2042","reference_id":"RHSA-2024:2042","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2042"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2080","reference_id":"RHSA-2024:2080","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2080"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2616","reference_id":"RHSA-2024:2616","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2616"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3258","reference_id":"RHSA-2024:3258","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:3258"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3261","reference_id":"RHSA-2024:3261","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:3261"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3343","reference_id":"RHSA-2024:3343","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:3343"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9093","reference_id":"RHSA-2024:9093","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:9093"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9122","reference_id":"RHSA-2024:9122","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:9122"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:12751","reference_id":"RHSA-2025:12751","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:12751"},{"reference_url":"https://usn.ubuntu.com/6721-1/","reference_id":"USN-6721-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6721-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136519?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136520?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.11-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.11-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2024-31083"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4q3g-1az1-ybd6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106655?format=json","vulnerability_id":"VCID-563m-twrn-1kg7","summary":"xkeyboard-config before 2.5 in X.Org before 7.6 enables certain XKB debugging functions by default, which allows physically proximate attackers to bypass an X screen lock via keyboard combinations that break the input grab.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0064.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0064.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-0064","reference_id":"","reference_type":"","scores":[{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23834","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23929","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-0064"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0064","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0064"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=656410","reference_id":"656410","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=656410"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=783039","reference_id":"783039","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=783039"},{"reference_url":"https://security.gentoo.org/glsa/201201-16","reference_id":"GLSA-201201-16","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201201-16"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136443?format=json","purl":"pkg:deb/debian/xorg-server@2:1.11.3.901-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.11.3.901-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2012-0064"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-563m-twrn-1kg7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106630?format=json","vulnerability_id":"VCID-5adj-h8vd-fydm","summary":"Integer overflow in the ProcDbeSwapBuffers function in the DBE extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree86 X server, allows local users to execute arbitrary code via a crafted X protocol request that triggers memory corruption during processing of unspecified data structures.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-6103.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-6103.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2006-6103","reference_id":"","reference_type":"","scores":[{"value":"0.00045","scoring_system":"epss","scoring_elements":"0.1425","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00045","scoring_system":"epss","scoring_elements":"0.14321","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2006-6103"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6103","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6103"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1618240","reference_id":"1618240","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1618240"},{"reference_url":"https://security.gentoo.org/glsa/200701-25","reference_id":"GLSA-200701-25","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200701-25"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0002","reference_id":"RHSA-2007:0002","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0002"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0003","reference_id":"RHSA-2007:0003","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0003"},{"reference_url":"https://usn.ubuntu.com/403-1/","reference_id":"USN-403-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/403-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136419?format=json","purl":"pkg:deb/debian/xorg-server@2:1.1.1-15?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.1.1-15%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2006-6103"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5adj-h8vd-fydm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106652?format=json","vulnerability_id":"VCID-5h7m-8559-sqau","summary":"The ProcRenderAddGlyphs function in the Render extension (render/render.c) in X.Org xserver 1.7.7 and earlier allows local users to read arbitrary memory and possibly cause a denial of service (server crash) via unspecified vectors related to an \"input sanitization flaw.\"","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4819.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4819.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2010-4819","reference_id":"","reference_type":"","scores":[{"value":"0.00074","scoring_system":"epss","scoring_elements":"0.22526","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00074","scoring_system":"epss","scoring_elements":"0.2261","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2010-4819"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4819","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4819"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=740961","reference_id":"740961","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=740961"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1359","reference_id":"RHSA-2011:1359","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1359"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1360","reference_id":"RHSA-2011:1360","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1360"},{"reference_url":"https://usn.ubuntu.com/1232-1/","reference_id":"USN-1232-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1232-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136439?format=json","purl":"pkg:deb/debian/xorg-server@2:1.9.0.901-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.9.0.901-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2010-4819"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5h7m-8559-sqau"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/70727?format=json","vulnerability_id":"VCID-5nbt-cvgt-pkff","summary":"GNOME screensaver 2.20 in Ubuntu 7.10, when used with Compiz, does not properly reserve input focus, which allows attackers with physical access to take control of the session after entering an Alt-Tab sequence, a related issue to CVE-2007-3069.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-3920.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-3920.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-3920","reference_id":"","reference_type":"","scores":[{"value":"0.00051","scoring_system":"epss","scoring_elements":"0.16325","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00051","scoring_system":"epss","scoring_elements":"0.16407","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-3920"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3920","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3920"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=350271","reference_id":"350271","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=350271"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=449108","reference_id":"449108","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=449108"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0485","reference_id":"RHSA-2008:0485","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0485"},{"reference_url":"https://usn.ubuntu.com/537-1/","reference_id":"USN-537-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/537-1/"},{"reference_url":"https://usn.ubuntu.com/537-2/","reference_id":"USN-537-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/537-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136425?format=json","purl":"pkg:deb/debian/xorg-server@2:1.4.1~git20080118-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.1~git20080118-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2007-3920"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-5nbt-cvgt-pkff"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/91745?format=json","vulnerability_id":"VCID-67p9-ddez-7ka1","summary":"xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6377.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6377.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-6377","reference_id":"","reference_type":"","scores":[{"value":"0.0039","scoring_system":"epss","scoring_elements":"0.60406","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-6377"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6377","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6377"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6478","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6478"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2253291","reference_id":"2253291","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2253291"},{"reference_url":"https://security.gentoo.org/glsa/202401-30","reference_id":"GLSA-202401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202401-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7886","reference_id":"RHSA-2023:7886","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7886"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0006","reference_id":"RHSA-2024:0006","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0006"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0009","reference_id":"RHSA-2024:0009","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0009"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0010","reference_id":"RHSA-2024:0010","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0010"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0014","reference_id":"RHSA-2024:0014","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0014"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0015","reference_id":"RHSA-2024:0015","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0015"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0016","reference_id":"RHSA-2024:0016","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0016"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0017","reference_id":"RHSA-2024:0017","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0017"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0018","reference_id":"RHSA-2024:0018","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0018"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0020","reference_id":"RHSA-2024:0020","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0020"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2169","reference_id":"RHSA-2024:2169","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2169"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2170","reference_id":"RHSA-2024:2170","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2170"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2995","reference_id":"RHSA-2024:2995","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2995"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2996","reference_id":"RHSA-2024:2996","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2996"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:13998","reference_id":"RHSA-2025:13998","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:13998"},{"reference_url":"https://usn.ubuntu.com/6555-1/","reference_id":"USN-6555-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6555-1/"},{"reference_url":"https://usn.ubuntu.com/6555-2/","reference_id":"USN-6555-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6555-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136505?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u10%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136504?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136507?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.10-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.10-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2023-6377"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-67p9-ddez-7ka1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106637?format=json","vulnerability_id":"VCID-6814-39jv-pubh","summary":"X.Org Xserver before 1.4.1 allows local users to determine the existence of arbitrary files via a filename argument in the -sp option to the X program, which produces different error messages depending on whether the filename exists.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5958.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5958.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-5958","reference_id":"","reference_type":"","scores":[{"value":"0.03599","scoring_system":"epss","scoring_elements":"0.8798","published_at":"2026-06-04T12:55:00Z"},{"value":"0.03599","scoring_system":"epss","scoring_elements":"0.88001","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-5958"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5958","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5958"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=391841","reference_id":"391841","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=391841"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/5152.sh","reference_id":"CVE-2007-5958","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/5152.sh"},{"reference_url":"https://security.gentoo.org/glsa/200801-09","reference_id":"GLSA-200801-09","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200801-09"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0029","reference_id":"RHSA-2008:0029","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0029"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0030","reference_id":"RHSA-2008:0030","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0030"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0031","reference_id":"RHSA-2008:0031","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0031"},{"reference_url":"https://usn.ubuntu.com/571-1/","reference_id":"USN-571-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/571-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136428?format=json","purl":"pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2007-5958"],"risk_score":null,"exploitability":"2.0","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6814-39jv-pubh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/99562?format=json","vulnerability_id":"VCID-6bnp-kn76-4qdm","summary":"xorg-x11-server: XTestSwapFakeInput stack overflow","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46340.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46340.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-46340","reference_id":"","reference_type":"","scores":[{"value":"0.01237","scoring_system":"epss","scoring_elements":"0.79556","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01237","scoring_system":"epss","scoring_elements":"0.79582","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-46340"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4283","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4283"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46340","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46340"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46341","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46341"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46342","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46342"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46343","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46343"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46344","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46344"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071","reference_id":"1026071","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2151755","reference_id":"2151755","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2151755"},{"reference_url":"https://security.gentoo.org/glsa/202305-30","reference_id":"GLSA-202305-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202305-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0045","reference_id":"RHSA-2023:0045","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0045"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0046","reference_id":"RHSA-2023:0046","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0046"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2248","reference_id":"RHSA-2023:2248","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2248"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2249","reference_id":"RHSA-2023:2249","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2249"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2257","reference_id":"RHSA-2023:2257","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2257"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2805","reference_id":"RHSA-2023:2805","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2805"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2806","reference_id":"RHSA-2023:2806","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2806"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2830","reference_id":"RHSA-2023:2830","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2830"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:12751","reference_id":"RHSA-2025:12751","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:12751"},{"reference_url":"https://usn.ubuntu.com/5778-1/","reference_id":"USN-5778-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5778-1/"},{"reference_url":"https://usn.ubuntu.com/5778-2/","reference_id":"USN-5778-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5778-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136489?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136488?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2022-46340"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6bnp-kn76-4qdm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/92135?format=json","vulnerability_id":"VCID-6ezy-q9rx-rfdd","summary":"xorg-x11-server: Use-after-free bug in DestroyWindow","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5380.json","reference_id":"","reference_type":"","scores":[{"value":"4.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5380.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-5380","reference_id":"","reference_type":"","scores":[{"value":"0.00075","scoring_system":"epss","scoring_elements":"0.22774","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-5380"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5367","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5367"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5380","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5380"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2244736","reference_id":"2244736","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2244736"},{"reference_url":"https://security.gentoo.org/glsa/202401-30","reference_id":"GLSA-202401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202401-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7428","reference_id":"RHSA-2023:7428","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7428"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2169","reference_id":"RHSA-2024:2169","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2169"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2298","reference_id":"RHSA-2024:2298","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2298"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2995","reference_id":"RHSA-2024:2995","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2995"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3067","reference_id":"RHSA-2024:3067","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:3067"},{"reference_url":"https://usn.ubuntu.com/6453-1/","reference_id":"USN-6453-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6453-1/"},{"reference_url":"https://usn.ubuntu.com/6453-2/","reference_id":"USN-6453-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6453-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136500?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u8?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u8%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136499?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136502?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.9-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.9-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2023-5380"],"risk_score":2.1,"exploitability":"0.5","weighted_severity":"4.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6ezy-q9rx-rfdd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106653?format=json","vulnerability_id":"VCID-6sfc-pmbw-6ffg","summary":"The LockServer function in os/utils.c in X.Org xserver before 1.11.2 allows local users to determine the existence of arbitrary files via a symlink attack on a temporary lock file, which is handled differently if the file exists.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4028.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4028.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-4028","reference_id":"","reference_type":"","scores":[{"value":"0.001","scoring_system":"epss","scoring_elements":"0.27302","published_at":"2026-06-04T12:55:00Z"},{"value":"0.001","scoring_system":"epss","scoring_elements":"0.27372","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-4028"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4028","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4028"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=745755","reference_id":"745755","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=745755"},{"reference_url":"https://security.gentoo.org/glsa/201110-19","reference_id":"GLSA-201110-19","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201110-19"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0303","reference_id":"RHSA-2012:0303","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0303"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0939","reference_id":"RHSA-2012:0939","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0939"},{"reference_url":"https://usn.ubuntu.com/1232-1/","reference_id":"USN-1232-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1232-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136440?format=json","purl":"pkg:deb/debian/xorg-server@2:1.11.1.901-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.11.1.901-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2011-4028"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6sfc-pmbw-6ffg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/80411?format=json","vulnerability_id":"VCID-6t55-ed2e-2bcw","summary":"xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Integer Overflow in Big Requests Extension","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49176.json","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49176.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-49176","reference_id":"","reference_type":"","scores":[{"value":"0.00267","scoring_system":"epss","scoring_elements":"0.50414","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-49176"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49176","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49176"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/03731b326a80b582e48d939fe62cb1e2b10400d9","reference_id":"03731b326a80b582e48d939fe62cb1e2b10400d9","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/"}],"url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/03731b326a80b582e48d939fe62cb1e2b10400d9"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108073","reference_id":"1108073","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108073"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369","reference_id":"1108369","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2369954","reference_id":"2369954","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2369954"},{"reference_url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/4fc4d76b2c7aaed61ed2653f997783a3714c4fe1","reference_id":"4fc4d76b2c7aaed61ed2653f997783a3714c4fe1","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/"}],"url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/4fc4d76b2c7aaed61ed2653f997783a3714c4fe1"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb","reference_id":"cpe:/a:redhat:enterprise_linux:8::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:9::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb","reference_id":"cpe:/a:redhat:enterprise_linux:9::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:9.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb","reference_id":"cpe:/a:redhat:rhel_eus:9.4::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_eus_long_life:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_eus_long_life:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_eus_long_life:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0","reference_id":"cpe:/o:redhat:enterprise_linux:10.0","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:7.7::server","reference_id":"cpe:/o:redhat:rhel_aus:7.7::server","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:7.7::server"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6","reference_id":"cpe:/o:redhat:rhel_els:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7","reference_id":"cpe:/o:redhat:rhel_els:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2025-49176","reference_id":"CVE-2025-49176","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2025-49176"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10258","reference_id":"RHSA-2025:10258","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10258"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10342","reference_id":"RHSA-2025:10342","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10342"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10343","reference_id":"RHSA-2025:10343","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10343"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10344","reference_id":"RHSA-2025:10344","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10344"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10346","reference_id":"RHSA-2025:10346","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10346"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10347","reference_id":"RHSA-2025:10347","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10347"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10348","reference_id":"RHSA-2025:10348","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10348"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10349","reference_id":"RHSA-2025:10349","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10349"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10350","reference_id":"RHSA-2025:10350","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10350"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10351","reference_id":"RHSA-2025:10351","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10351"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10352","reference_id":"RHSA-2025:10352","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10352"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10355","reference_id":"RHSA-2025:10355","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10355"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10356","reference_id":"RHSA-2025:10356","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10356"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10360","reference_id":"RHSA-2025:10360","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10360"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10370","reference_id":"RHSA-2025:10370","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10370"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10374","reference_id":"RHSA-2025:10374","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10374"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10375","reference_id":"RHSA-2025:10375","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10375"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10376","reference_id":"RHSA-2025:10376","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10376"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10377","reference_id":"RHSA-2025:10377","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10377"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10378","reference_id":"RHSA-2025:10378","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10378"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10381","reference_id":"RHSA-2025:10381","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10381"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10410","reference_id":"RHSA-2025:10410","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10410"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9303","reference_id":"RHSA-2025:9303","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:9303"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9304","reference_id":"RHSA-2025:9304","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:9304"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9305","reference_id":"RHSA-2025:9305","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:9305"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9306","reference_id":"RHSA-2025:9306","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:9306"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9392","reference_id":"RHSA-2025:9392","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:9392"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9964","reference_id":"RHSA-2025:9964","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:9964"},{"reference_url":"https://www.x.org/wiki/Development/Security/","reference_id":"Security","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/"}],"url":"https://www.x.org/wiki/Development/Security/"},{"reference_url":"https://usn.ubuntu.com/7573-1/","reference_id":"USN-7573-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7573-1/"},{"reference_url":"https://usn.ubuntu.com/7573-2/","reference_id":"USN-7573-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7573-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136533?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u16?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u16%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136532?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u10%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136537?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2025-49176"],"risk_score":3.3,"exploitability":"0.5","weighted_severity":"6.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6t55-ed2e-2bcw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106699?format=json","vulnerability_id":"VCID-713b-xwq2-7ych","summary":"A flaw was found in xorg-x11-server before 1.20.10. A heap-buffer overflow in XkbSetDeviceInfo may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25712.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25712.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-25712","reference_id":"","reference_type":"","scores":[{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.32452","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.32524","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-25712"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14360","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14360"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25712","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25712"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1887276","reference_id":"1887276","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1887276"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976216","reference_id":"976216","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976216"},{"reference_url":"https://security.archlinux.org/ASA-202012-6","reference_id":"ASA-202012-6","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202012-6"},{"reference_url":"https://security.archlinux.org/AVG-1310","reference_id":"AVG-1310","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1310"},{"reference_url":"https://security.gentoo.org/glsa/202012-01","reference_id":"GLSA-202012-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202012-01"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5408","reference_id":"RHSA-2020:5408","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5408"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:1804","reference_id":"RHSA-2021:1804","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:1804"},{"reference_url":"https://usn.ubuntu.com/4656-1/","reference_id":"USN-4656-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4656-1/"},{"reference_url":"https://usn.ubuntu.com/4656-2/","reference_id":"USN-4656-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4656-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136480?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.10-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.10-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2020-25712"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-713b-xwq2-7ych"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106684?format=json","vulnerability_id":"VCID-74jd-1pbz-u7cu","summary":"xorg-x11-server before 1.19.5 was missing length validation in XFree86 DRI extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12182.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12182.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-12182","reference_id":"","reference_type":"","scores":[{"value":"0.00944","scoring_system":"epss","scoring_elements":"0.76655","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00944","scoring_system":"epss","scoring_elements":"0.76685","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-12182"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.6","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:H/Au:S/C:P/I:P/A:P"},{"value":"5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1509223","reference_id":"1509223","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1509223"},{"reference_url":"https://security.gentoo.org/glsa/201711-05","reference_id":"GLSA-201711-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201711-05"},{"reference_url":"https://usn.ubuntu.com/3456-1/","reference_id":"USN-3456-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3456-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136465?format=json","purl":"pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2017-12182"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-74jd-1pbz-u7cu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106639?format=json","vulnerability_id":"VCID-7hgn-umm1-9ydh","summary":"The ProcGetReservedColormapEntries function in the TOG-CUP extension in X.Org Xserver before 1.4.1 allows context-dependent attackers to read the contents of arbitrary memory locations via a request containing a 32-bit value that is improperly used as an array index.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6428.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6428.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-6428","reference_id":"","reference_type":"","scores":[{"value":"0.02514","scoring_system":"epss","scoring_elements":"0.85671","published_at":"2026-06-04T12:55:00Z"},{"value":"0.02514","scoring_system":"epss","scoring_elements":"0.85694","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-6428"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6428","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6428"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=413791","reference_id":"413791","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=413791"},{"reference_url":"https://security.gentoo.org/glsa/200801-09","reference_id":"GLSA-200801-09","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200801-09"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0029","reference_id":"RHSA-2008:0029","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0029"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0030","reference_id":"RHSA-2008:0030","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0030"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0031","reference_id":"RHSA-2008:0031","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0031"},{"reference_url":"https://usn.ubuntu.com/571-1/","reference_id":"USN-571-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/571-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136428?format=json","purl":"pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2007-6428"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7hgn-umm1-9ydh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/91489?format=json","vulnerability_id":"VCID-828y-hsz4-tqbe","summary":"xorg-x11-server: reattaching to different master device may lead to out-of-bounds memory access","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0229.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0229.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-0229","reference_id":"","reference_type":"","scores":[{"value":"0.00295","scoring_system":"epss","scoring_elements":"0.53143","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-0229"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6816","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6816"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0408","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0408"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0409","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0409"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21885","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21885"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21886","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21886"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2256690","reference_id":"2256690","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2256690"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb","reference_id":"cpe:/a:redhat:enterprise_linux:8::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:9::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb","reference_id":"cpe:/a:redhat:enterprise_linux:9::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_eus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_eus:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.0::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client","reference_id":"cpe:/o:redhat:enterprise_linux:7::client","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode","reference_id":"cpe:/o:redhat:enterprise_linux:7::computenode","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server","reference_id":"cpe:/o:redhat:enterprise_linux:7::server","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation","reference_id":"cpe:/o:redhat:enterprise_linux:7::workstation","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6","reference_id":"cpe:/o:redhat:rhel_els:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2024-0229","reference_id":"CVE-2024-0229","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2024-0229"},{"reference_url":"https://security.gentoo.org/glsa/202401-30","reference_id":"GLSA-202401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202401-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0320","reference_id":"RHSA-2024:0320","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0320"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0557","reference_id":"RHSA-2024:0557","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0557"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0558","reference_id":"RHSA-2024:0558","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0558"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0597","reference_id":"RHSA-2024:0597","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0597"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0607","reference_id":"RHSA-2024:0607","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0607"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0614","reference_id":"RHSA-2024:0614","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0614"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0617","reference_id":"RHSA-2024:0617","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0617"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0621","reference_id":"RHSA-2024:0621","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0621"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0626","reference_id":"RHSA-2024:0626","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0626"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0629","reference_id":"RHSA-2024:0629","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0629"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2169","reference_id":"RHSA-2024:2169","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2169"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2170","reference_id":"RHSA-2024:2170","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2170"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2995","reference_id":"RHSA-2024:2995","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2995"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2996","reference_id":"RHSA-2024:2996","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2996"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:12751","reference_id":"RHSA-2025:12751","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:12751"},{"reference_url":"https://usn.ubuntu.com/6587-1/","reference_id":"USN-6587-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6587-1/"},{"reference_url":"https://usn.ubuntu.com/6587-2/","reference_id":"USN-6587-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6587-2/"},{"reference_url":"https://usn.ubuntu.com/6587-5/","reference_id":"USN-6587-5","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6587-5/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136512?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u11?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u11%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136511?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136513?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.11-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.11-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2024-0229"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-828y-hsz4-tqbe"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/5017?format=json","vulnerability_id":"VCID-8bbs-eqdc-c7fh","summary":"arbitrary code execution","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4009.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4009.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-4009","reference_id":"","reference_type":"","scores":[{"value":"0.00091","scoring_system":"epss","scoring_elements":"0.25722","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00091","scoring_system":"epss","scoring_elements":"0.25824","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-4009"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2026072","reference_id":"2026072","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2026072"},{"reference_url":"https://security.archlinux.org/AVG-2636","reference_id":"AVG-2636","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2636"},{"reference_url":"https://security.archlinux.org/AVG-2640","reference_id":"AVG-2640","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2640"},{"reference_url":"https://security.gentoo.org/glsa/202305-30","reference_id":"GLSA-202305-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202305-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0003","reference_id":"RHSA-2022:0003","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0003"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1917","reference_id":"RHSA-2022:1917","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1917"},{"reference_url":"https://usn.ubuntu.com/5193-1/","reference_id":"USN-5193-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5193-1/"},{"reference_url":"https://usn.ubuntu.com/5193-2/","reference_id":"USN-5193-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5193-2/"},{"reference_url":"https://usn.ubuntu.com/5193-3/","reference_id":"USN-5193-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5193-3/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136483?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136482?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.13-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.13-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2021-4009"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8bbs-eqdc-c7fh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/73042?format=json","vulnerability_id":"VCID-8h6n-ntrj-q7g6","summary":"xorg: xwayland: Use-after-free in Xkb client resource removal","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-62230.json","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-62230.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-62230","reference_id":"","reference_type":"","scores":[{"value":"0.00014","scoring_system":"epss","scoring_elements":"0.02924","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-62230"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62230","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62230"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://lists.x.org/archives/xorg-announce/2025-October/003635.html","reference_id":"003635.html","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://lists.x.org/archives/xorg-announce/2025-October/003635.html"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2402653","reference_id":"2402653","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2402653"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb","reference_id":"cpe:/a:redhat:enterprise_linux:8::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:9::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb","reference_id":"cpe:/a:redhat:enterprise_linux:9::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:9.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb","reference_id":"cpe:/a:redhat:rhel_eus:9.4::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_eus_long_life:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0","reference_id":"cpe:/o:redhat:enterprise_linux:10.0","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1","reference_id":"cpe:/o:redhat:enterprise_linux:10.1","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6","reference_id":"cpe:/o:redhat:rhel_els:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7","reference_id":"cpe:/o:redhat:rhel_els:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2025-62230","reference_id":"CVE-2025-62230","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2025-62230"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:19432","reference_id":"RHSA-2025:19432","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:19432"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:19433","reference_id":"RHSA-2025:19433","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:19433"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:19434","reference_id":"RHSA-2025:19434","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:19434"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:19435","reference_id":"RHSA-2025:19435","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:19435"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:19489","reference_id":"RHSA-2025:19489","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:19489"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:19623","reference_id":"RHSA-2025:19623","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:19623"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:19909","reference_id":"RHSA-2025:19909","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:19909"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:20958","reference_id":"RHSA-2025:20958","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:20958"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:20960","reference_id":"RHSA-2025:20960","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:20960"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:20961","reference_id":"RHSA-2025:20961","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:20961"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:21035","reference_id":"RHSA-2025:21035","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:21035"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22040","reference_id":"RHSA-2025:22040","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22040"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22041","reference_id":"RHSA-2025:22041","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22041"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22051","reference_id":"RHSA-2025:22051","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22051"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22055","reference_id":"RHSA-2025:22055","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22055"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22056","reference_id":"RHSA-2025:22056","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22056"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22077","reference_id":"RHSA-2025:22077","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22077"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22096","reference_id":"RHSA-2025:22096","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22096"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22164","reference_id":"RHSA-2025:22164","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22164"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22167","reference_id":"RHSA-2025:22167","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22167"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22364","reference_id":"RHSA-2025:22364","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22364"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22365","reference_id":"RHSA-2025:22365","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22365"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22426","reference_id":"RHSA-2025:22426","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22426"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22427","reference_id":"RHSA-2025:22427","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22427"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22667","reference_id":"RHSA-2025:22667","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22667"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22729","reference_id":"RHSA-2025:22729","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22729"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22742","reference_id":"RHSA-2025:22742","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22742"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22753","reference_id":"RHSA-2025:22753","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22753"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0031","reference_id":"RHSA-2026:0031","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:0031"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0033","reference_id":"RHSA-2026:0033","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:0033"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0034","reference_id":"RHSA-2026:0034","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:0034"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0035","reference_id":"RHSA-2026:0035","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:0035"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0036","reference_id":"RHSA-2026:0036","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:0036"},{"reference_url":"https://usn.ubuntu.com/7846-1/","reference_id":"USN-7846-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7846-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136543?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u17?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u17%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136542?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u11?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u11%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136545?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136544?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.20-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.20-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2025-62230"],"risk_score":3.3,"exploitability":"0.5","weighted_severity":"6.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8h6n-ntrj-q7g6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106677?format=json","vulnerability_id":"VCID-8k3e-h7va-myfg","summary":"X.Org Server (aka xserver and xorg-server) 1.15.0 through 1.16.x before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) sproc_dri3_query_version, (2) sproc_dri3_open, (3) sproc_dri3_pixmap_from_buffer, (4) sproc_dri3_buffer_from_pixmap, (5) sproc_dri3_fence_from_fd, (6) sproc_dri3_fd_from_fence, (7) proc_present_query_capabilities, (8) sproc_present_query_version, (9) sproc_present_pixmap, (10) sproc_present_notify_msc, (11) sproc_present_select_input, or (12) sproc_present_query_capabilities function in the (a) DRI3 or (b) Present extension.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8103.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8103.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8103","reference_id":"","reference_type":"","scores":[{"value":"0.01787","scoring_system":"epss","scoring_elements":"0.83079","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01787","scoring_system":"epss","scoring_elements":"0.83106","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8103"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8103","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8103"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168716","reference_id":"1168716","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168716"},{"reference_url":"https://security.gentoo.org/glsa/201504-06","reference_id":"GLSA-201504-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201504-06"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1983","reference_id":"RHSA-2014:1983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1983"},{"reference_url":"https://usn.ubuntu.com/2436-1/","reference_id":"USN-2436-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2436-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136451?format=json","purl":"pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.2.901-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2014-8103"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8k3e-h7va-myfg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106668?format=json","vulnerability_id":"VCID-8unb-tn3a-abe3","summary":"The DBE extension in X.Org X Window System (aka X11 or X) X11R6.1 and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) ProcDbeSwapBuffers or (2) SProcDbeSwapBuffers function.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8097.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8097.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8097","reference_id":"","reference_type":"","scores":[{"value":"0.01297","scoring_system":"epss","scoring_elements":"0.80046","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01297","scoring_system":"epss","scoring_elements":"0.80071","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8097"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168705","reference_id":"1168705","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168705"},{"reference_url":"https://security.gentoo.org/glsa/201504-06","reference_id":"GLSA-201504-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201504-06"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1982","reference_id":"RHSA-2014:1982","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1982"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1983","reference_id":"RHSA-2014:1983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1983"},{"reference_url":"https://usn.ubuntu.com/2436-1/","reference_id":"USN-2436-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2436-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136451?format=json","purl":"pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.2.901-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2014-8097"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8unb-tn3a-abe3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106687?format=json","vulnerability_id":"VCID-939t-kz1h-k7d6","summary":"xorg-x11-server before 1.19.5 was missing length validation in X-Resource extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12186.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12186.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-12186","reference_id":"","reference_type":"","scores":[{"value":"0.0075","scoring_system":"epss","scoring_elements":"0.735","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0075","scoring_system":"epss","scoring_elements":"0.73536","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-12186"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.6","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:H/Au:S/C:P/I:P/A:P"},{"value":"5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1509216","reference_id":"1509216","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1509216"},{"reference_url":"https://usn.ubuntu.com/3456-1/","reference_id":"USN-3456-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3456-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136465?format=json","purl":"pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2017-12186"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-939t-kz1h-k7d6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/85250?format=json","vulnerability_id":"VCID-95dx-8w8k-4kfp","summary":"xorg: xwayland: Out-of-bounds write in CreatePointerBarrierClient()","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26598.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26598.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-26598","reference_id":"","reference_type":"","scores":[{"value":"0.00031","scoring_system":"epss","scoring_elements":"0.09376","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-26598"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26598","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26598"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906","reference_id":"1098906","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907","reference_id":"1098907","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2345254","reference_id":"2345254","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2345254"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:9::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb","reference_id":"cpe:/a:redhat:enterprise_linux:9::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_eus:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0","reference_id":"cpe:/o:redhat:enterprise_linux:10.0","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8","reference_id":"cpe:/o:redhat:enterprise_linux:8","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6","reference_id":"cpe:/o:redhat:rhel_els:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7","reference_id":"cpe:/o:redhat:rhel_els:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2025-26598","reference_id":"CVE-2025-26598","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2025-26598"},{"reference_url":"https://security.gentoo.org/glsa/202506-04","reference_id":"GLSA-202506-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202506-04"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2500","reference_id":"RHSA-2025:2500","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2500"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2502","reference_id":"RHSA-2025:2502","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2502"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2861","reference_id":"RHSA-2025:2861","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2861"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2862","reference_id":"RHSA-2025:2862","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2862"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2865","reference_id":"RHSA-2025:2865","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2865"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2866","reference_id":"RHSA-2025:2866","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2866"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2873","reference_id":"RHSA-2025:2873","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2873"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2874","reference_id":"RHSA-2025:2874","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2874"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2875","reference_id":"RHSA-2025:2875","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2875"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2879","reference_id":"RHSA-2025:2879","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2879"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2880","reference_id":"RHSA-2025:2880","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2880"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:3976","reference_id":"RHSA-2025:3976","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:3976"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:7163","reference_id":"RHSA-2025:7163","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:7163"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:7165","reference_id":"RHSA-2025:7165","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:7165"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:7458","reference_id":"RHSA-2025:7458","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:7458"},{"reference_url":"https://usn.ubuntu.com/7299-1/","reference_id":"USN-7299-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7299-1/"},{"reference_url":"https://usn.ubuntu.com/7299-2/","reference_id":"USN-7299-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7299-2/"},{"reference_url":"https://usn.ubuntu.com/7299-4/","reference_id":"USN-7299-4","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7299-4/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136526?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u15?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u15%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136525?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u9?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u9%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136527?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2025-26598"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-95dx-8w8k-4kfp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/85245?format=json","vulnerability_id":"VCID-96ga-avmd-kubh","summary":"xorg: xwayland: Use-after-free in PlayReleasedEvents()","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26600.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26600.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-26600","reference_id":"","reference_type":"","scores":[{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.08686","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-26600"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26600","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26600"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906","reference_id":"1098906","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907","reference_id":"1098907","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2345252","reference_id":"2345252","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2345252"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:9::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb","reference_id":"cpe:/a:redhat:enterprise_linux:9::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_eus:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0","reference_id":"cpe:/o:redhat:enterprise_linux:10.0","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8","reference_id":"cpe:/o:redhat:enterprise_linux:8","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6","reference_id":"cpe:/o:redhat:rhel_els:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7","reference_id":"cpe:/o:redhat:rhel_els:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2025-26600","reference_id":"CVE-2025-26600","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2025-26600"},{"reference_url":"https://security.gentoo.org/glsa/202506-04","reference_id":"GLSA-202506-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202506-04"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2500","reference_id":"RHSA-2025:2500","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2500"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2502","reference_id":"RHSA-2025:2502","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2502"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2861","reference_id":"RHSA-2025:2861","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2861"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2862","reference_id":"RHSA-2025:2862","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2862"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2865","reference_id":"RHSA-2025:2865","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2865"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2866","reference_id":"RHSA-2025:2866","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2866"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2873","reference_id":"RHSA-2025:2873","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2873"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2874","reference_id":"RHSA-2025:2874","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2874"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2875","reference_id":"RHSA-2025:2875","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2875"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2879","reference_id":"RHSA-2025:2879","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2879"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2880","reference_id":"RHSA-2025:2880","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2880"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:3976","reference_id":"RHSA-2025:3976","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:3976"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:7163","reference_id":"RHSA-2025:7163","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:7163"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:7165","reference_id":"RHSA-2025:7165","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:7165"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:7458","reference_id":"RHSA-2025:7458","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:7458"},{"reference_url":"https://usn.ubuntu.com/7299-1/","reference_id":"USN-7299-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7299-1/"},{"reference_url":"https://usn.ubuntu.com/7299-2/","reference_id":"USN-7299-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7299-2/"},{"reference_url":"https://usn.ubuntu.com/7299-4/","reference_id":"USN-7299-4","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7299-4/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136526?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u15?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u15%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136525?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u9?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u9%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136527?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2025-26600"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-96ga-avmd-kubh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106656?format=json","vulnerability_id":"VCID-96zj-dxw7-jbf1","summary":"Format string vulnerability in the LogVHdrMessageVerb function in os/log.c in X.Org X11 1.11 allows attackers to cause a denial of service or possibly execute arbitrary code via format string specifiers in an input device name.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2118.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2118.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2012-2118","reference_id":"","reference_type":"","scores":[{"value":"0.02146","scoring_system":"epss","scoring_elements":"0.84544","published_at":"2026-06-04T12:55:00Z"},{"value":"0.02146","scoring_system":"epss","scoring_elements":"0.84568","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2012-2118"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2118","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2118"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=673148","reference_id":"673148","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=673148"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=814126","reference_id":"814126","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=814126"},{"reference_url":"https://security.gentoo.org/glsa/201207-04","reference_id":"GLSA-201207-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201207-04"},{"reference_url":"https://usn.ubuntu.com/1502-1/","reference_id":"USN-1502-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1502-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136444?format=json","purl":"pkg:deb/debian/xorg-server@2:1.12.1.902-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.12.1.902-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2012-2118"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-96zj-dxw7-jbf1"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6224?format=json","vulnerability_id":"VCID-97f6-pm5e-8qf3","summary":"privilege escalation","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14665.json","reference_id":"","reference_type":"","scores":[{"value":"6.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14665.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2018-14665","reference_id":"","reference_type":"","scores":[{"value":"0.16034","scoring_system":"epss","scoring_elements":"0.94902","published_at":"2026-06-04T12:55:00Z"},{"value":"0.16034","scoring_system":"epss","scoring_elements":"0.94911","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2018-14665"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14665","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14665"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.4","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1637761","reference_id":"1637761","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1637761"},{"reference_url":"https://security.archlinux.org/ASA-201810-15","reference_id":"ASA-201810-15","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201810-15"},{"reference_url":"https://security.archlinux.org/AVG-788","reference_id":"AVG-788","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-788"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/aix/local/45938.pl","reference_id":"CVE-2018-14665","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/aix/local/45938.pl"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/45832.py","reference_id":"CVE-2018-14665","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/45832.py"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/45697.txt","reference_id":"CVE-2018-14665","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/45697.txt"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/45908.rb","reference_id":"CVE-2018-14665","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/45908.rb"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/45922.sh","reference_id":"CVE-2018-14665","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/45922.sh"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/openbsd/local/45742.sh","reference_id":"CVE-2018-14665","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/openbsd/local/45742.sh"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/solaris/local/46142.sh","reference_id":"CVE-2018-14665","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/solaris/local/46142.sh"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/local/47701.rb","reference_id":"CVE-2018-14665","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/local/47701.rb"},{"reference_url":"https://raw.githubusercontent.com/rapid7/metasploit-framework/be6cfde92158d2c6716711046536c9f1ca44d958/modules/exploits/multi/local/xorg_x11_suid_server.rb","reference_id":"CVE-2018-14665","reference_type":"exploit","scores":[],"url":"https://raw.githubusercontent.com/rapid7/metasploit-framework/be6cfde92158d2c6716711046536c9f1ca44d958/modules/exploits/multi/local/xorg_x11_suid_server.rb"},{"reference_url":"https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/aix/local/xorg_x11_server.rb","reference_id":"CVE-2018-14665","reference_type":"exploit","scores":[],"url":"https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/aix/local/xorg_x11_server.rb"},{"reference_url":"https://twitter.com/hackerfantastic/status/1055517801224396800","reference_id":"CVE-2018-14665","reference_type":"exploit","scores":[],"url":"https://twitter.com/hackerfantastic/status/1055517801224396800"},{"reference_url":"https://security.gentoo.org/glsa/201810-09","reference_id":"GLSA-201810-09","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201810-09"},{"reference_url":"https://access.redhat.com/errata/RHSA-2018:3410","reference_id":"RHSA-2018:3410","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2018:3410"},{"reference_url":"https://usn.ubuntu.com/3802-1/","reference_id":"USN-3802-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3802-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136478?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.3-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.3-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2018-14665"],"risk_score":10.0,"exploitability":"2.0","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-97f6-pm5e-8qf3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106665?format=json","vulnerability_id":"VCID-9k4g-mc81-tffe","summary":"Integer overflow in the ProcDRI2GetBuffers function in the DRI2 extension in X.Org Server (aka xserver and xorg-server) 1.7.0 through 1.16.x before 1.16.3 allows remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted request, which triggers an out-of-bounds read or write.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8094.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8094.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8094","reference_id":"","reference_type":"","scores":[{"value":"0.01042","scoring_system":"epss","scoring_elements":"0.77789","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01042","scoring_system":"epss","scoring_elements":"0.77816","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168691","reference_id":"1168691","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168691"},{"reference_url":"https://security.gentoo.org/glsa/201504-06","reference_id":"GLSA-201504-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201504-06"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1983","reference_id":"RHSA-2014:1983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1983"},{"reference_url":"https://usn.ubuntu.com/2436-1/","reference_id":"USN-2436-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2436-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136451?format=json","purl":"pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.2.901-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2014-8094"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9k4g-mc81-tffe"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106672?format=json","vulnerability_id":"VCID-9kj6-9etk-uudg","summary":"The RandR extension in XFree86 4.2.0, X.Org X Window System (aka X11 or X) X11R6.7, and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) SProcRRQueryVersion, (2) SProcRRGetScreenInfo, (3) SProcRRSelectInput, or (4) SProcRRConfigureOutputProperty function.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8101.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8101.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8101","reference_id":"","reference_type":"","scores":[{"value":"0.01269","scoring_system":"epss","scoring_elements":"0.79818","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01269","scoring_system":"epss","scoring_elements":"0.79843","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8101"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168713","reference_id":"1168713","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168713"},{"reference_url":"https://security.gentoo.org/glsa/201504-06","reference_id":"GLSA-201504-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201504-06"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1982","reference_id":"RHSA-2014:1982","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1982"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1983","reference_id":"RHSA-2014:1983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1983"},{"reference_url":"https://usn.ubuntu.com/2436-1/","reference_id":"USN-2436-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2436-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136451?format=json","purl":"pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.2.901-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2014-8101"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9kj6-9etk-uudg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/80475?format=json","vulnerability_id":"VCID-9pnm-jep8-3bf9","summary":"xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Integer overflow in X Record extension","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49179.json","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49179.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-49179","reference_id":"","reference_type":"","scores":[{"value":"0.00184","scoring_system":"epss","scoring_elements":"0.40013","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-49179"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49179","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49179"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369","reference_id":"1108369","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2369978","reference_id":"2369978","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2369978"},{"reference_url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/2bde9ca49a8fd9a1e6697d5e7ef837870d66f5d4","reference_id":"2bde9ca49a8fd9a1e6697d5e7ef837870d66f5d4","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/"}],"url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/2bde9ca49a8fd9a1e6697d5e7ef837870d66f5d4"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb","reference_id":"cpe:/a:redhat:enterprise_linux:8::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:9::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb","reference_id":"cpe:/a:redhat:enterprise_linux:9::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:9.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb","reference_id":"cpe:/a:redhat:rhel_eus:9.4::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_eus_long_life:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_eus_long_life:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_eus_long_life:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0","reference_id":"cpe:/o:redhat:enterprise_linux:10.0","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:7.7::server","reference_id":"cpe:/o:redhat:rhel_aus:7.7::server","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:7.7::server"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6","reference_id":"cpe:/o:redhat:rhel_els:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7","reference_id":"cpe:/o:redhat:rhel_els:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2025-49179","reference_id":"CVE-2025-49179","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2025-49179"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10258","reference_id":"RHSA-2025:10258","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10258"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10342","reference_id":"RHSA-2025:10342","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10342"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10343","reference_id":"RHSA-2025:10343","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10343"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10344","reference_id":"RHSA-2025:10344","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10344"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10346","reference_id":"RHSA-2025:10346","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10346"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10347","reference_id":"RHSA-2025:10347","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10347"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10348","reference_id":"RHSA-2025:10348","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10348"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10349","reference_id":"RHSA-2025:10349","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10349"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10350","reference_id":"RHSA-2025:10350","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10350"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10351","reference_id":"RHSA-2025:10351","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10351"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10352","reference_id":"RHSA-2025:10352","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10352"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10355","reference_id":"RHSA-2025:10355","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10355"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10356","reference_id":"RHSA-2025:10356","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10356"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10360","reference_id":"RHSA-2025:10360","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10360"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10370","reference_id":"RHSA-2025:10370","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10370"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10374","reference_id":"RHSA-2025:10374","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10374"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10375","reference_id":"RHSA-2025:10375","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10375"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10376","reference_id":"RHSA-2025:10376","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10376"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10377","reference_id":"RHSA-2025:10377","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10377"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10378","reference_id":"RHSA-2025:10378","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10378"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10381","reference_id":"RHSA-2025:10381","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10381"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10410","reference_id":"RHSA-2025:10410","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10410"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9303","reference_id":"RHSA-2025:9303","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:9303"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9304","reference_id":"RHSA-2025:9304","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:9304"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9305","reference_id":"RHSA-2025:9305","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:9305"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9306","reference_id":"RHSA-2025:9306","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:9306"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9392","reference_id":"RHSA-2025:9392","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:9392"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9964","reference_id":"RHSA-2025:9964","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:9964"},{"reference_url":"https://www.x.org/wiki/Development/Security/","reference_id":"Security","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/"}],"url":"https://www.x.org/wiki/Development/Security/"},{"reference_url":"https://usn.ubuntu.com/7573-1/","reference_id":"USN-7573-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7573-1/"},{"reference_url":"https://usn.ubuntu.com/7573-2/","reference_id":"USN-7573-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7573-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136533?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u16?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u16%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136532?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u10%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136535?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2025-49179"],"risk_score":3.3,"exploitability":"0.5","weighted_severity":"6.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9pnm-jep8-3bf9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106698?format=json","vulnerability_id":"VCID-a2n5-8wwp-87hw","summary":"A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Integer underflow leading to heap-buffer overflow may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14362.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14362.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14362","reference_id":"","reference_type":"","scores":[{"value":"0.00232","scoring_system":"epss","scoring_elements":"0.46046","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00232","scoring_system":"epss","scoring_elements":"0.46114","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14362"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14345","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14345"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14346","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14346"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14347","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14347"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14361","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14361"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14362","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14362"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1869144","reference_id":"1869144","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1869144"},{"reference_url":"https://security.gentoo.org/glsa/202012-01","reference_id":"GLSA-202012-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202012-01"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4910","reference_id":"RHSA-2020:4910","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4910"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4953","reference_id":"RHSA-2020:4953","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4953"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:1804","reference_id":"RHSA-2021:1804","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:1804"},{"reference_url":"https://usn.ubuntu.com/4488-1/","reference_id":"USN-4488-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4488-1/"},{"reference_url":"https://usn.ubuntu.com/4488-2/","reference_id":"USN-4488-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4488-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136479?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.9-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.9-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2020-14362"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-a2n5-8wwp-87hw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/77824?format=json","vulnerability_id":"VCID-azs1-b52k-qqgw","summary":"X.Org and XFree86, including libX11, xdm, xf86dga, xinit, xload, xtrans, and xterm, does not check the return values for setuid and seteuid calls when attempting to drop privileges, which might allow local users to gain privileges by causing those calls to fail, such as by exceeding a ulimit.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-4447.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-4447.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2006-4447","reference_id":"","reference_type":"","scores":[{"value":"0.00132","scoring_system":"epss","scoring_elements":"0.32324","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00132","scoring_system":"epss","scoring_elements":"0.32396","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2006-4447"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4447","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4447"},{"reference_url":"https://security.gentoo.org/glsa/200608-25","reference_id":"GLSA-200608-25","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200608-25"},{"reference_url":"https://security.gentoo.org/glsa/200704-22","reference_id":"GLSA-200704-22","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200704-22"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136417?format=json","purl":"pkg:deb/debian/xorg-server@1:1.0.2-9?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@1:1.0.2-9%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2006-4447"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-azs1-b52k-qqgw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106626?format=json","vulnerability_id":"VCID-bj7e-pnpm-nqfw","summary":"X.Org server (xorg-server) 1.0.0 and later, X11R6.9.0, and X11R7.0 inadvertently treats the address of the geteuid function as if it is the return value of a call to geteuid, which allows local users to bypass intended restrictions and (1) execute arbitrary code via the -modulepath command line option or (2) overwrite arbitrary files via -logfile.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2006-0745","reference_id":"","reference_type":"","scores":[{"value":"0.00177","scoring_system":"epss","scoring_elements":"0.38946","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00177","scoring_system":"epss","scoring_elements":"0.39034","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2006-0745"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0745","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0745"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=378465","reference_id":"378465","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=378465"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/1596.txt","reference_id":"OSVDB-24000;CVE-2006-0745","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/1596.txt"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136408?format=json","purl":"pkg:deb/debian/xorg-server@1:1.0.2-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@1:1.0.2-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2006-0745"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bj7e-pnpm-nqfw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106666?format=json","vulnerability_id":"VCID-bny6-pyf6-k3ht","summary":"The XInput extension in X.Org X Window System (aka X11 or X) X11R4 and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) SProcXChangeDeviceControl, (2) ProcXChangeDeviceControl, (3) ProcXChangeFeedbackControl, (4) ProcXSendExtensionEvent, (5) SProcXIAllowEvents, (6) SProcXIChangeCursor, (7) ProcXIChangeHierarchy, (8) SProcXIGetClientPointer, (9) SProcXIGrabDevice, (10) SProcXIUngrabDevice, (11) ProcXIUngrabDevice, (12) SProcXIPassiveGrabDevice, (13) ProcXIPassiveGrabDevice, (14) SProcXIPassiveUngrabDevice, (15) ProcXIPassiveUngrabDevice, (16) SProcXListDeviceProperties, (17) SProcXDeleteDeviceProperty, (18) SProcXIListProperties, (19) SProcXIDeleteProperty, (20) SProcXIGetProperty, (21) SProcXIQueryDevice, (22) SProcXIQueryPointer, (23) SProcXISelectEvents, (24) SProcXISetClientPointer, (25) SProcXISetFocus, (26) SProcXIGetFocus, or (27) SProcXIWarpPointer function.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8095.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8095.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8095","reference_id":"","reference_type":"","scores":[{"value":"0.01115","scoring_system":"epss","scoring_elements":"0.78527","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01115","scoring_system":"epss","scoring_elements":"0.78553","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8095"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168694","reference_id":"1168694","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168694"},{"reference_url":"https://security.gentoo.org/glsa/201504-06","reference_id":"GLSA-201504-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201504-06"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1982","reference_id":"RHSA-2014:1982","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1982"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1983","reference_id":"RHSA-2014:1983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1983"},{"reference_url":"https://usn.ubuntu.com/2436-1/","reference_id":"USN-2436-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2436-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136451?format=json","purl":"pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.2.901-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2014-8095"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bny6-pyf6-k3ht"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/100698?format=json","vulnerability_id":"VCID-bxtg-a4vf-8fau","summary":"xorg-x11-server: memory leak in ProcXkbGetKbdByName() in xkb/xkb.c","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3551.json","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3551.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-3551","reference_id":"","reference_type":"","scores":[{"value":"0.0063","scoring_system":"epss","scoring_elements":"0.7068","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0063","scoring_system":"epss","scoring_elements":"0.70723","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-3551"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3550","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3550"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3551","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3551"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2140701","reference_id":"2140701","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2140701"},{"reference_url":"https://security.gentoo.org/glsa/202305-30","reference_id":"GLSA-202305-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202305-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:8491","reference_id":"RHSA-2022:8491","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:8491"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2248","reference_id":"RHSA-2023:2248","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2248"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2249","reference_id":"RHSA-2023:2249","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2249"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2805","reference_id":"RHSA-2023:2805","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2805"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2806","reference_id":"RHSA-2023:2806","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2806"},{"reference_url":"https://usn.ubuntu.com/5740-1/","reference_id":"USN-5740-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5740-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136487?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136486?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.4-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.4-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2022-3551"],"risk_score":3.0,"exploitability":"0.5","weighted_severity":"5.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bxtg-a4vf-8fau"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/91494?format=json","vulnerability_id":"VCID-czx3-mdx4-hbey","summary":"xorg-x11-server: SELinux unlabeled GLX PBuffer","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0408.json","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0408.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-0408","reference_id":"","reference_type":"","scores":[{"value":"0.00017","scoring_system":"epss","scoring_elements":"0.04484","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-0408"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6816","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6816"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0408","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0408"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0409","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0409"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21885","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21885"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21886","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21886"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2257689","reference_id":"2257689","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T17:14:07Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2257689"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb","reference_id":"cpe:/a:redhat:enterprise_linux:8::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:9::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb","reference_id":"cpe:/a:redhat:enterprise_linux:9::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7","reference_id":"cpe:/o:redhat:enterprise_linux:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client","reference_id":"cpe:/o:redhat:enterprise_linux:7::client","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode","reference_id":"cpe:/o:redhat:enterprise_linux:7::computenode","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server","reference_id":"cpe:/o:redhat:enterprise_linux:7::server","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation","reference_id":"cpe:/o:redhat:enterprise_linux:7::workstation","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8","reference_id":"cpe:/o:redhat:enterprise_linux:8","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9","reference_id":"cpe:/o:redhat:enterprise_linux:9","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2024-0408","reference_id":"CVE-2024-0408","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T17:14:07Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2024-0408"},{"reference_url":"https://security.gentoo.org/glsa/202401-30","reference_id":"GLSA-202401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202401-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0320","reference_id":"RHSA-2024:0320","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T17:14:07Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0320"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2169","reference_id":"RHSA-2024:2169","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T17:14:07Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2169"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2170","reference_id":"RHSA-2024:2170","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T17:14:07Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2170"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2995","reference_id":"RHSA-2024:2995","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T17:14:07Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2995"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2996","reference_id":"RHSA-2024:2996","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T17:14:07Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2996"},{"reference_url":"https://usn.ubuntu.com/6587-1/","reference_id":"USN-6587-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6587-1/"},{"reference_url":"https://usn.ubuntu.com/6587-2/","reference_id":"USN-6587-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6587-2/"},{"reference_url":"https://usn.ubuntu.com/6587-5/","reference_id":"USN-6587-5","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6587-5/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136512?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u11?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u11%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136511?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136513?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.11-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.11-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2024-0408"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"5.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-czx3-mdx4-hbey"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106635?format=json","vulnerability_id":"VCID-d78c-241h-7yh6","summary":"Array index error in the XFree86-Misc extension in X.Org Xserver before 1.4.1 allows context-dependent attackers to execute arbitrary code via a PassMessage request containing a large array index.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5760.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5760.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-5760","reference_id":"","reference_type":"","scores":[{"value":"0.04445","scoring_system":"epss","scoring_elements":"0.89242","published_at":"2026-06-04T12:55:00Z"},{"value":"0.04445","scoring_system":"epss","scoring_elements":"0.8926","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-5760"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5760","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5760"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=414031","reference_id":"414031","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=414031"},{"reference_url":"https://security.gentoo.org/glsa/200801-09","reference_id":"GLSA-200801-09","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200801-09"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0030","reference_id":"RHSA-2008:0030","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0030"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0031","reference_id":"RHSA-2008:0031","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0031"},{"reference_url":"https://usn.ubuntu.com/571-1/","reference_id":"USN-571-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/571-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136428?format=json","purl":"pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2007-5760"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-d78c-241h-7yh6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106680?format=json","vulnerability_id":"VCID-d837-arrp-cyhx","summary":"The ProcPutImage function in dix/dispatch.c in X.Org Server (aka xserver and xorg-server) before 1.16.4 allows attackers to cause a denial of service (divide-by-zero and crash) via a zero-height PutImage request.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3418.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3418.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2015-3418","reference_id":"","reference_type":"","scores":[{"value":"0.00497","scoring_system":"epss","scoring_elements":"0.66197","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00497","scoring_system":"epss","scoring_elements":"0.66248","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2015-3418"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3418","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3418"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1216020","reference_id":"1216020","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1216020"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=774308","reference_id":"774308","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=774308"},{"reference_url":"https://security.gentoo.org/glsa/201701-64","reference_id":"GLSA-201701-64","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201701-64"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136456?format=json","purl":"pkg:deb/debian/xorg-server@2:1.16.4-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2015-3418"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-d837-arrp-cyhx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/99593?format=json","vulnerability_id":"VCID-d9am-npf2-jkfm","summary":"xorg-x11-server: XkbGetKbdByName use-after-free","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-4283.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-4283.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-4283","reference_id":"","reference_type":"","scores":[{"value":"0.002","scoring_system":"epss","scoring_elements":"0.41992","published_at":"2026-06-05T12:55:00Z"},{"value":"0.002","scoring_system":"epss","scoring_elements":"0.41916","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-4283"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4283","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4283"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46340","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46340"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46341","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46341"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46342","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46342"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46343","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46343"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46344","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46344"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071","reference_id":"1026071","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2151761","reference_id":"2151761","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-14T15:16:33Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2151761"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2/","reference_id":"5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-14T15:16:33Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2/"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2022-4283","reference_id":"CVE-2022-4283","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-14T15:16:33Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2022-4283"},{"reference_url":"https://www.debian.org/security/2022/dsa-5304","reference_id":"dsa-5304","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-14T15:16:33Z/"}],"url":"https://www.debian.org/security/2022/dsa-5304"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G/","reference_id":"DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-14T15:16:33Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G/"},{"reference_url":"https://security.gentoo.org/glsa/202305-30","reference_id":"GLSA-202305-30","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-14T15:16:33Z/"}],"url":"https://security.gentoo.org/glsa/202305-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0045","reference_id":"RHSA-2023:0045","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0045"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0046","reference_id":"RHSA-2023:0046","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0046"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2248","reference_id":"RHSA-2023:2248","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2248"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2249","reference_id":"RHSA-2023:2249","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2249"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2257","reference_id":"RHSA-2023:2257","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2257"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2805","reference_id":"RHSA-2023:2805","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2805"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2806","reference_id":"RHSA-2023:2806","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2806"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2830","reference_id":"RHSA-2023:2830","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2830"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:12751","reference_id":"RHSA-2025:12751","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:12751"},{"reference_url":"https://usn.ubuntu.com/5778-1/","reference_id":"USN-5778-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5778-1/"},{"reference_url":"https://usn.ubuntu.com/5778-2/","reference_id":"USN-5778-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5778-2/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z67QC4C3I2FI2WRFIUPEHKC36J362MLA/","reference_id":"Z67QC4C3I2FI2WRFIUPEHKC36J362MLA","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-14T15:16:33Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z67QC4C3I2FI2WRFIUPEHKC36J362MLA/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136489?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136488?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2022-4283"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-d9am-npf2-jkfm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106661?format=json","vulnerability_id":"VCID-dbns-h674-n7gm","summary":"X.Org X Window System (aka X11 and X) X11R5 and X.Org Server (aka xserver and xorg-server) before 1.16.3, when using SUN-DES-1 (Secure RPC) authentication credentials, does not check the return value of a malloc call, which allows remote attackers to cause a denial of service (NULL pointer dereference and server crash) via a crafted connection request.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8091.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8091.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8091","reference_id":"","reference_type":"","scores":[{"value":"0.04839","scoring_system":"epss","scoring_elements":"0.89707","published_at":"2026-06-04T12:55:00Z"},{"value":"0.04839","scoring_system":"epss","scoring_elements":"0.89724","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8091"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168680","reference_id":"1168680","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168680"},{"reference_url":"https://security.gentoo.org/glsa/201504-06","reference_id":"GLSA-201504-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201504-06"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1982","reference_id":"RHSA-2014:1982","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1982"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1983","reference_id":"RHSA-2014:1983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1983"},{"reference_url":"https://usn.ubuntu.com/2436-1/","reference_id":"USN-2436-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2436-1/"},{"reference_url":"https://usn.ubuntu.com/2438-1/","reference_id":"USN-2438-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2438-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136451?format=json","purl":"pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.2.901-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2014-8091"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-dbns-h674-n7gm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106679?format=json","vulnerability_id":"VCID-dnsa-z3ck-53dc","summary":"The authentication setup in XWayland 1.16.x and 1.17.x before 1.17.2 starts the server in non-authenticating mode, which allows local users to read from or send information to arbitrary X11 clients via vectors involving a UNIX socket.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3164.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3164.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2015-3164","reference_id":"","reference_type":"","scores":[{"value":"0.00065","scoring_system":"epss","scoring_elements":"0.2041","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00065","scoring_system":"epss","scoring_elements":"0.20483","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2015-3164"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3164","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3164"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1219548","reference_id":"1219548","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1219548"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=788410","reference_id":"788410","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=788410"},{"reference_url":"https://security.gentoo.org/glsa/201701-64","reference_id":"GLSA-201701-64","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201701-64"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136459?format=json","purl":"pkg:deb/debian/xorg-server@2:1.17.2-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.17.2-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2015-3164"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-dnsa-z3ck-53dc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106650?format=json","vulnerability_id":"VCID-ef9m-a6nn-j3d2","summary":"The fbComposite function in fbpict.c in the Render extension in the X server in X.Org X11R7.1 allows remote authenticated users to cause a denial of service (memory corruption and daemon crash) or possibly execute arbitrary code via a crafted request, related to an incorrect macro definition.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1166.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1166.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2010-1166","reference_id":"","reference_type":"","scores":[{"value":"0.03655","scoring_system":"epss","scoring_elements":"0.88078","published_at":"2026-06-04T12:55:00Z"},{"value":"0.03655","scoring_system":"epss","scoring_elements":"0.88098","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2010-1166"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=582601","reference_id":"582601","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=582601"},{"reference_url":"https://access.redhat.com/errata/RHSA-2010:0382","reference_id":"RHSA-2010:0382","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2010:0382"},{"reference_url":"https://usn.ubuntu.com/939-1/","reference_id":"USN-939-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/939-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136437?format=json","purl":"pkg:deb/debian/xorg-server@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2010-1166"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ef9m-a6nn-j3d2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106681?format=json","vulnerability_id":"VCID-egcx-kc7z-skfq","summary":"xorg-x11-server before 1.19.5 was vulnerable to integer overflow in (S)ProcXIBarrierReleasePointer functions allowing malicious X client to cause X server to crash or possibly execute arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12179.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12179.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-12179","reference_id":"","reference_type":"","scores":[{"value":"0.00838","scoring_system":"epss","scoring_elements":"0.75042","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00838","scoring_system":"epss","scoring_elements":"0.75071","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-12179"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.6","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:H/Au:S/C:P/I:P/A:P"},{"value":"5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1509220","reference_id":"1509220","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1509220"},{"reference_url":"https://security.gentoo.org/glsa/201711-05","reference_id":"GLSA-201711-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201711-05"},{"reference_url":"https://usn.ubuntu.com/3456-1/","reference_id":"USN-3456-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3456-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136465?format=json","purl":"pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2017-12179"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-egcx-kc7z-skfq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106693?format=json","vulnerability_id":"VCID-ej11-bqxf-7qas","summary":"A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Out-Of-Bounds access in XkbSetNames function may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14345.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14345.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14345","reference_id":"","reference_type":"","scores":[{"value":"0.00101","scoring_system":"epss","scoring_elements":"0.27491","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00101","scoring_system":"epss","scoring_elements":"0.27557","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14345"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14345","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14345"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14346","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14346"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14347","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14347"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14361","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14361"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14362","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14362"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1862241","reference_id":"1862241","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1862241"},{"reference_url":"https://security.gentoo.org/glsa/202012-01","reference_id":"GLSA-202012-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202012-01"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4910","reference_id":"RHSA-2020:4910","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4910"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4953","reference_id":"RHSA-2020:4953","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4953"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:1804","reference_id":"RHSA-2021:1804","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:1804"},{"reference_url":"https://usn.ubuntu.com/4488-2/","reference_id":"USN-4488-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4488-2/"},{"reference_url":"https://usn.ubuntu.com/4490-1/","reference_id":"USN-4490-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4490-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136479?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.9-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.9-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2020-14345"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ej11-bqxf-7qas"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4866?format=json","vulnerability_id":"VCID-f67a-ybc4-x3c2","summary":"privilege escalation","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2319.json","reference_id":"","reference_type":"","scores":[{"value":"7.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2319.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-2319","reference_id":"","reference_type":"","scores":[{"value":"0.00037","scoring_system":"epss","scoring_elements":"0.11235","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00037","scoring_system":"epss","scoring_elements":"0.11323","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-2319"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2319","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2319"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2320","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2320"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014903","reference_id":"1014903","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014903"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2106671","reference_id":"2106671","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2106671"},{"reference_url":"https://security.archlinux.org/AVG-2770","reference_id":"AVG-2770","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2770"},{"reference_url":"https://security.gentoo.org/glsa/202210-30","reference_id":"GLSA-202210-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202210-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:5905","reference_id":"RHSA-2022:5905","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:5905"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7583","reference_id":"RHSA-2022:7583","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7583"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:8221","reference_id":"RHSA-2022:8221","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:8221"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:8222","reference_id":"RHSA-2022:8222","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:8222"},{"reference_url":"https://usn.ubuntu.com/5510-1/","reference_id":"USN-5510-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5510-1/"},{"reference_url":"https://usn.ubuntu.com/5510-2/","reference_id":"USN-5510-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5510-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136485?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136484?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.4-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.4-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2022-2319"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-f67a-ybc4-x3c2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106648?format=json","vulnerability_id":"VCID-f9yc-23gb-qyhy","summary":"Multiple integer overflows in the Render extension in the X server 1.4 in X.Org X11R7.3 allow context-dependent attackers to execute arbitrary code via a (1) SProcRenderCreateLinearGradient, (2) SProcRenderCreateRadialGradient, or (3) SProcRenderCreateConicalGradient request with an invalid field specifying the number of bytes to swap in the request data, which triggers heap memory corruption.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2362.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2362.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-2362","reference_id":"","reference_type":"","scores":[{"value":"0.02076","scoring_system":"epss","scoring_elements":"0.84279","published_at":"2026-06-04T12:55:00Z"},{"value":"0.02076","scoring_system":"epss","scoring_elements":"0.84302","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-2362"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2362","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2362"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=448785","reference_id":"448785","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=448785"},{"reference_url":"https://security.gentoo.org/glsa/200806-07","reference_id":"GLSA-200806-07","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200806-07"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0504","reference_id":"RHSA-2008:0504","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0504"},{"reference_url":"https://usn.ubuntu.com/616-1/","reference_id":"USN-616-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/616-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136435?format=json","purl":"pkg:deb/debian/xorg-server@2:1.4.1~git20080517-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.1~git20080517-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2008-2362"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-f9yc-23gb-qyhy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106662?format=json","vulnerability_id":"VCID-fdrh-s6h2-buhk","summary":"Multiple integer overflows in X.Org X Window System (aka X11 or X) X11R1 and X.Org Server (aka xserver and xorg-server) before 1.16.3 allow remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted request to the (1) ProcPutImage, (2) GetHosts, (3) RegionSizeof, or (4) REQUEST_FIXED_SIZE function, which triggers an out-of-bounds read or write.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8092.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8092.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8092","reference_id":"","reference_type":"","scores":[{"value":"0.01293","scoring_system":"epss","scoring_elements":"0.80018","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01293","scoring_system":"epss","scoring_elements":"0.80044","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168684","reference_id":"1168684","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168684"},{"reference_url":"https://security.gentoo.org/glsa/201504-06","reference_id":"GLSA-201504-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201504-06"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1982","reference_id":"RHSA-2014:1982","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1982"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1983","reference_id":"RHSA-2014:1983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1983"},{"reference_url":"https://usn.ubuntu.com/2436-1/","reference_id":"USN-2436-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2436-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136451?format=json","purl":"pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.2.901-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2014-8092"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fdrh-s6h2-buhk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106696?format=json","vulnerability_id":"VCID-fm63-7bke-rbe2","summary":"A flaw was found in the X.Org Server before version 1.20.10. An out-of-bounds access in the XkbSetMap function may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14360.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14360.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14360","reference_id":"","reference_type":"","scores":[{"value":"0.00135","scoring_system":"epss","scoring_elements":"0.3308","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00135","scoring_system":"epss","scoring_elements":"0.33182","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14360"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14360","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14360"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25712","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25712"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1869139","reference_id":"1869139","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1869139"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976216","reference_id":"976216","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976216"},{"reference_url":"https://security.archlinux.org/ASA-202012-6","reference_id":"ASA-202012-6","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-202012-6"},{"reference_url":"https://security.archlinux.org/AVG-1310","reference_id":"AVG-1310","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1310"},{"reference_url":"https://security.gentoo.org/glsa/202012-01","reference_id":"GLSA-202012-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202012-01"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5408","reference_id":"RHSA-2020:5408","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5408"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:1804","reference_id":"RHSA-2021:1804","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:1804"},{"reference_url":"https://usn.ubuntu.com/4656-1/","reference_id":"USN-4656-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4656-1/"},{"reference_url":"https://usn.ubuntu.com/4656-2/","reference_id":"USN-4656-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4656-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136480?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.10-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.10-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2020-14360"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fm63-7bke-rbe2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/91496?format=json","vulnerability_id":"VCID-fr1v-dcuh-jbhs","summary":"xorg-x11-server: SELinux context corruption","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0409.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0409.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-0409","reference_id":"","reference_type":"","scores":[{"value":"0.00015","scoring_system":"epss","scoring_elements":"0.03245","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-0409"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6816","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6816"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0408","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0408"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0409","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0409"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21885","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21885"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21886","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21886"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2257690","reference_id":"2257690","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T16:47:29Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2257690"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb","reference_id":"cpe:/a:redhat:enterprise_linux:8::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:9::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb","reference_id":"cpe:/a:redhat:enterprise_linux:9::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7","reference_id":"cpe:/o:redhat:enterprise_linux:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client","reference_id":"cpe:/o:redhat:enterprise_linux:7::client","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode","reference_id":"cpe:/o:redhat:enterprise_linux:7::computenode","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server","reference_id":"cpe:/o:redhat:enterprise_linux:7::server","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation","reference_id":"cpe:/o:redhat:enterprise_linux:7::workstation","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8","reference_id":"cpe:/o:redhat:enterprise_linux:8","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9","reference_id":"cpe:/o:redhat:enterprise_linux:9","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2024-0409","reference_id":"CVE-2024-0409","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T16:47:29Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2024-0409"},{"reference_url":"https://security.gentoo.org/glsa/202401-30","reference_id":"GLSA-202401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202401-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0320","reference_id":"RHSA-2024:0320","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T16:47:29Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0320"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2169","reference_id":"RHSA-2024:2169","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T16:47:29Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2169"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2170","reference_id":"RHSA-2024:2170","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T16:47:29Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2170"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2995","reference_id":"RHSA-2024:2995","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T16:47:29Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2995"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2996","reference_id":"RHSA-2024:2996","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T16:47:29Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2996"},{"reference_url":"https://usn.ubuntu.com/6587-1/","reference_id":"USN-6587-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6587-1/"},{"reference_url":"https://usn.ubuntu.com/6587-2/","reference_id":"USN-6587-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6587-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136512?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u11?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u11%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136511?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136513?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.11-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.11-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2024-0409"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fr1v-dcuh-jbhs"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106657?format=json","vulnerability_id":"VCID-ftyy-61hx-wkff","summary":"X.org X server 1.13.3 and earlier, when not run as root, allows local users to cause a denial of service (crash) or possibly gain privileges via vectors involving cached xkb files.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1056.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1056.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-1056","reference_id":"","reference_type":"","scores":[{"value":"0.00054","scoring_system":"epss","scoring_elements":"0.17066","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00054","scoring_system":"epss","scoring_elements":"0.17143","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-1056"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1052324","reference_id":"1052324","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1052324"},{"reference_url":"https://security.gentoo.org/glsa/201405-07","reference_id":"GLSA-201405-07","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201405-07"},{"reference_url":"https://usn.ubuntu.com/1990-1/","reference_id":"USN-1990-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1990-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136437?format=json","purl":"pkg:deb/debian/xorg-server@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2013-1056"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ftyy-61hx-wkff"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106700?format=json","vulnerability_id":"VCID-g9ce-3gn2-ekbh","summary":"A flaw was found in xorg-x11-server in versions before 1.20.11. An integer underflow can occur in xserver which can lead to a local privilege escalation. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3472.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3472.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3472","reference_id":"","reference_type":"","scores":[{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23822","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00081","scoring_system":"epss","scoring_elements":"0.23917","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3472"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3472","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3472"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1944167","reference_id":"1944167","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1944167"},{"reference_url":"https://security.archlinux.org/AVG-1811","reference_id":"AVG-1811","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1811"},{"reference_url":"https://security.archlinux.org/AVG-1812","reference_id":"AVG-1812","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1812"},{"reference_url":"https://security.gentoo.org/glsa/202104-02","reference_id":"GLSA-202104-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202104-02"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:2033","reference_id":"RHSA-2021:2033","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:2033"},{"reference_url":"https://usn.ubuntu.com/4905-1/","reference_id":"USN-4905-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4905-1/"},{"reference_url":"https://usn.ubuntu.com/4905-2/","reference_id":"USN-4905-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4905-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136481?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2021-3472"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-g9ce-3gn2-ekbh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/80443?format=json","vulnerability_id":"VCID-gq7x-petb-hfau","summary":"xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Unprocessed Client Request Due to Bytes to Ignore","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49178.json","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49178.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-49178","reference_id":"","reference_type":"","scores":[{"value":"0.00229","scoring_system":"epss","scoring_elements":"0.45861","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-49178"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49178","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49178"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369","reference_id":"1108369","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2369977","reference_id":"2369977","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2369977"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb","reference_id":"cpe:/a:redhat:enterprise_linux:8::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:9::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb","reference_id":"cpe:/a:redhat:enterprise_linux:9::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:9.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb","reference_id":"cpe:/a:redhat:rhel_eus:9.4::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_eus_long_life:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_eus_long_life:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_eus_long_life:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0","reference_id":"cpe:/o:redhat:enterprise_linux:10.0","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:7.7::server","reference_id":"cpe:/o:redhat:rhel_aus:7.7::server","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:7.7::server"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6","reference_id":"cpe:/o:redhat:rhel_els:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7","reference_id":"cpe:/o:redhat:rhel_els:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2025-49178","reference_id":"CVE-2025-49178","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2025-49178"},{"reference_url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/d55c54cecb5e83eaa2d56bed5cc4461f9ba318c2","reference_id":"d55c54cecb5e83eaa2d56bed5cc4461f9ba318c2","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/"}],"url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/d55c54cecb5e83eaa2d56bed5cc4461f9ba318c2"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10258","reference_id":"RHSA-2025:10258","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10258"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10342","reference_id":"RHSA-2025:10342","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10342"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10343","reference_id":"RHSA-2025:10343","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10343"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10344","reference_id":"RHSA-2025:10344","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10344"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10346","reference_id":"RHSA-2025:10346","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10346"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10347","reference_id":"RHSA-2025:10347","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10347"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10348","reference_id":"RHSA-2025:10348","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10348"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10349","reference_id":"RHSA-2025:10349","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10349"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10350","reference_id":"RHSA-2025:10350","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10350"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10351","reference_id":"RHSA-2025:10351","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10351"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10352","reference_id":"RHSA-2025:10352","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10352"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10355","reference_id":"RHSA-2025:10355","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10355"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10356","reference_id":"RHSA-2025:10356","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10356"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10360","reference_id":"RHSA-2025:10360","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10360"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10370","reference_id":"RHSA-2025:10370","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10370"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10374","reference_id":"RHSA-2025:10374","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10374"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10375","reference_id":"RHSA-2025:10375","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10375"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10376","reference_id":"RHSA-2025:10376","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10376"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10377","reference_id":"RHSA-2025:10377","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10377"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10378","reference_id":"RHSA-2025:10378","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10378"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10381","reference_id":"RHSA-2025:10381","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10381"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10410","reference_id":"RHSA-2025:10410","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10410"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9303","reference_id":"RHSA-2025:9303","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:9303"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9304","reference_id":"RHSA-2025:9304","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:9304"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9305","reference_id":"RHSA-2025:9305","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:9305"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9306","reference_id":"RHSA-2025:9306","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:9306"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9392","reference_id":"RHSA-2025:9392","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:9392"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9964","reference_id":"RHSA-2025:9964","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:9964"},{"reference_url":"https://www.x.org/wiki/Development/Security/","reference_id":"Security","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/"}],"url":"https://www.x.org/wiki/Development/Security/"},{"reference_url":"https://usn.ubuntu.com/7573-1/","reference_id":"USN-7573-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7573-1/"},{"reference_url":"https://usn.ubuntu.com/7573-2/","reference_id":"USN-7573-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7573-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136533?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u16?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u16%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136532?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u10%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136535?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2025-49178"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"5.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gq7x-petb-hfau"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106647?format=json","vulnerability_id":"VCID-h6us-hyjy-7ye4","summary":"Integer overflow in the ProcRenderCreateCursor function in the Render extension in the X server 1.4 in X.Org X11R7.3 allows context-dependent attackers to cause a denial of service (daemon crash) via unspecified request fields that are used to calculate a glyph buffer size, which triggers a dereference of unmapped memory.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2361.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2361.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-2361","reference_id":"","reference_type":"","scores":[{"value":"0.01482","scoring_system":"epss","scoring_elements":"0.81336","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01482","scoring_system":"epss","scoring_elements":"0.81364","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-2361"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2361","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2361"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=448784","reference_id":"448784","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=448784"},{"reference_url":"https://security.gentoo.org/glsa/200806-07","reference_id":"GLSA-200806-07","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200806-07"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0502","reference_id":"RHSA-2008:0502","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0502"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0503","reference_id":"RHSA-2008:0503","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0503"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0504","reference_id":"RHSA-2008:0504","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0504"},{"reference_url":"https://usn.ubuntu.com/616-1/","reference_id":"USN-616-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/616-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136435?format=json","purl":"pkg:deb/debian/xorg-server@2:1.4.1~git20080517-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.1~git20080517-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2008-2361"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-h6us-hyjy-7ye4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106646?format=json","vulnerability_id":"VCID-hnhq-2yq6-87cn","summary":"Integer overflow in the AllocateGlyph function in the Render extension in the X server 1.4 in X.Org X11R7.3 allows context-dependent attackers to execute arbitrary code via unspecified request fields that are used to calculate a heap buffer size, which triggers a heap-based buffer overflow.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2360.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2360.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-2360","reference_id":"","reference_type":"","scores":[{"value":"0.0192","scoring_system":"epss","scoring_elements":"0.83681","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0192","scoring_system":"epss","scoring_elements":"0.83705","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-2360"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2360","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2360"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=448783","reference_id":"448783","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=448783"},{"reference_url":"https://security.gentoo.org/glsa/200806-07","reference_id":"GLSA-200806-07","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200806-07"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0502","reference_id":"RHSA-2008:0502","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0502"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0503","reference_id":"RHSA-2008:0503","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0503"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0504","reference_id":"RHSA-2008:0504","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0504"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0512","reference_id":"RHSA-2008:0512","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0512"},{"reference_url":"https://usn.ubuntu.com/616-1/","reference_id":"USN-616-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/616-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136435?format=json","purl":"pkg:deb/debian/xorg-server@2:1.4.1~git20080517-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.1~git20080517-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2008-2360"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hnhq-2yq6-87cn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106695?format=json","vulnerability_id":"VCID-hzef-8edc-hyev","summary":"A flaw was found in the way xserver memory was not properly initialized. This could leak parts of server memory to the X client. In cases where Xorg server runs with elevated privileges, this could result in possible ASLR bypass. Xorg-server before version 1.20.9 is vulnerable.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14347.json","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14347.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14347","reference_id":"","reference_type":"","scores":[{"value":"0.00098","scoring_system":"epss","scoring_elements":"0.26971","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00098","scoring_system":"epss","scoring_elements":"0.27068","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14347"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14345","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14345"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14346","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14346"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14347","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14347"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14361","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14361"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14362","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14362"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1862258","reference_id":"1862258","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1862258"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=968986","reference_id":"968986","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=968986"},{"reference_url":"https://security.archlinux.org/AVG-1211","reference_id":"AVG-1211","reference_type":"","scores":[{"value":"Low","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-1211"},{"reference_url":"https://security.gentoo.org/glsa/202012-01","reference_id":"GLSA-202012-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202012-01"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:5408","reference_id":"RHSA-2020:5408","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:5408"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:1804","reference_id":"RHSA-2021:1804","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:1804"},{"reference_url":"https://usn.ubuntu.com/4488-1/","reference_id":"USN-4488-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4488-1/"},{"reference_url":"https://usn.ubuntu.com/4488-2/","reference_id":"USN-4488-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4488-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136479?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.9-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.9-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2020-14347"],"risk_score":2.5,"exploitability":"0.5","weighted_severity":"5.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hzef-8edc-hyev"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106692?format=json","vulnerability_id":"VCID-j463-aw53-kuc4","summary":"It was found that xorg-x11-server before 1.19.0 including uses memcmp() to check the received MIT cookie against a series of valid cookies. If the cookie is correct, it is allowed to attach to the Xorg session. Since most memcmp() implementations return after an invalid byte is seen, this causes a time difference between a valid and invalid byte, which could allow an efficient brute force attack.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-2624.json","reference_id":"","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-2624.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-2624","reference_id":"","reference_type":"","scores":[{"value":"0.00046","scoring_system":"epss","scoring_elements":"0.14713","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00046","scoring_system":"epss","scoring_elements":"0.14786","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-2624"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2624","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2624"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4","scoring_system":"cvssv2","scoring_elements":"AV:L/AC:H/Au:N/C:C/I:N/A:N"},{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1424984","reference_id":"1424984","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1424984"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=856398","reference_id":"856398","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=856398"},{"reference_url":"https://security.gentoo.org/glsa/201704-03","reference_id":"GLSA-201704-03","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201704-03"},{"reference_url":"https://security.gentoo.org/glsa/201710-30","reference_id":"GLSA-201710-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201710-30"},{"reference_url":"https://usn.ubuntu.com/3362-1/","reference_id":"USN-3362-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3362-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136477?format=json","purl":"pkg:deb/debian/xorg-server@2:1.19.2-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2017-2624"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-j463-aw53-kuc4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106651?format=json","vulnerability_id":"VCID-j55v-3y8e-2kf3","summary":"The GLX extension in X.Org xserver 1.7.7 allows remote authenticated users to cause a denial of service (server crash) and possibly execute arbitrary code via (1) a crafted request that triggers a client swap in glx/glxcmdsswap.c; or (2) a crafted length or (3) a negative value in the screen field in a request to glx/glxcmds.c.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4818.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4818.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2010-4818","reference_id":"","reference_type":"","scores":[{"value":"0.02846","scoring_system":"epss","scoring_elements":"0.8649","published_at":"2026-06-04T12:55:00Z"},{"value":"0.02846","scoring_system":"epss","scoring_elements":"0.86513","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2010-4818"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4818","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4818"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=740954","reference_id":"740954","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=740954"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1359","reference_id":"RHSA-2011:1359","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1359"},{"reference_url":"https://access.redhat.com/errata/RHSA-2011:1360","reference_id":"RHSA-2011:1360","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2011:1360"},{"reference_url":"https://usn.ubuntu.com/1232-1/","reference_id":"USN-1232-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1232-1/"},{"reference_url":"https://usn.ubuntu.com/1232-3/","reference_id":"USN-1232-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1232-3/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136438?format=json","purl":"pkg:deb/debian/xorg-server@2:1.9.99.902-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.9.99.902-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2010-4818"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-j55v-3y8e-2kf3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106697?format=json","vulnerability_id":"VCID-jrks-xpht-eycq","summary":"A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Integer underflow leading to heap-buffer overflow may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14361.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14361.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14361","reference_id":"","reference_type":"","scores":[{"value":"0.00232","scoring_system":"epss","scoring_elements":"0.46046","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00232","scoring_system":"epss","scoring_elements":"0.46114","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14361"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14345","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14345"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14346","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14346"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14347","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14347"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14361","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14361"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14362","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14362"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1869142","reference_id":"1869142","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1869142"},{"reference_url":"https://security.gentoo.org/glsa/202012-01","reference_id":"GLSA-202012-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202012-01"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4910","reference_id":"RHSA-2020:4910","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4910"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4953","reference_id":"RHSA-2020:4953","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4953"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:1804","reference_id":"RHSA-2021:1804","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:1804"},{"reference_url":"https://usn.ubuntu.com/4488-1/","reference_id":"USN-4488-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4488-1/"},{"reference_url":"https://usn.ubuntu.com/4488-2/","reference_id":"USN-4488-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4488-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136479?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.9-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.9-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2020-14361"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jrks-xpht-eycq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106667?format=json","vulnerability_id":"VCID-jt46-r94m-v7er","summary":"The SProcXCMiscGetXIDList function in the XC-MISC extension in X.Org X Window System (aka X11 or X) X11R6.0 and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8096.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8096.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8096","reference_id":"","reference_type":"","scores":[{"value":"0.01014","scoring_system":"epss","scoring_elements":"0.7749","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01014","scoring_system":"epss","scoring_elements":"0.77517","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8096"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168700","reference_id":"1168700","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168700"},{"reference_url":"https://security.gentoo.org/glsa/201504-06","reference_id":"GLSA-201504-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201504-06"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1982","reference_id":"RHSA-2014:1982","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1982"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1983","reference_id":"RHSA-2014:1983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1983"},{"reference_url":"https://usn.ubuntu.com/2436-1/","reference_id":"USN-2436-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2436-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136451?format=json","purl":"pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.2.901-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2014-8096"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jt46-r94m-v7er"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106678?format=json","vulnerability_id":"VCID-jx8z-exfq-sqcn","summary":"X.Org Server (aka xserver and xorg-server) before 1.16.3 and 1.17.x before 1.17.1 allows remote attackers to obtain sensitive information from process memory or cause a denial of service (crash) via a crafted string length value in a XkbSetGeometry request.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-0255.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-0255.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2015-0255","reference_id":"","reference_type":"","scores":[{"value":"0.06422","scoring_system":"epss","scoring_elements":"0.91213","published_at":"2026-06-04T12:55:00Z"},{"value":"0.06422","scoring_system":"epss","scoring_elements":"0.91226","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2015-0255"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0255","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0255"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1189062","reference_id":"1189062","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1189062"},{"reference_url":"https://security.gentoo.org/glsa/201504-06","reference_id":"GLSA-201504-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201504-06"},{"reference_url":"https://access.redhat.com/errata/RHSA-2015:0797","reference_id":"RHSA-2015:0797","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2015:0797"},{"reference_url":"https://usn.ubuntu.com/2500-1/","reference_id":"USN-2500-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2500-1/"},{"reference_url":"https://usn.ubuntu.com/USN-4772-1/","reference_id":"USN-USN-4772-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/USN-4772-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136456?format=json","purl":"pkg:deb/debian/xorg-server@2:1.16.4-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2015-0255"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jx8z-exfq-sqcn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106683?format=json","vulnerability_id":"VCID-jzxy-vgcy-nbbz","summary":"xorg-x11-server before 1.19.5 was missing length validation in XFree86 DGA extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12181.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12181.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-12181","reference_id":"","reference_type":"","scores":[{"value":"0.00838","scoring_system":"epss","scoring_elements":"0.75042","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00838","scoring_system":"epss","scoring_elements":"0.75071","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-12181"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.6","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:H/Au:S/C:P/I:P/A:P"},{"value":"5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1509222","reference_id":"1509222","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1509222"},{"reference_url":"https://security.gentoo.org/glsa/201711-05","reference_id":"GLSA-201711-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201711-05"},{"reference_url":"https://usn.ubuntu.com/3456-1/","reference_id":"USN-3456-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3456-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136465?format=json","purl":"pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2017-12181"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jzxy-vgcy-nbbz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106682?format=json","vulnerability_id":"VCID-k29g-v3tn-67bc","summary":"xorg-x11-server before 1.19.5 was missing length validation in XFree86 VidModeExtension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12180.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12180.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-12180","reference_id":"","reference_type":"","scores":[{"value":"0.00502","scoring_system":"epss","scoring_elements":"0.66407","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00502","scoring_system":"epss","scoring_elements":"0.66447","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-12180"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.6","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:H/Au:S/C:P/I:P/A:P"},{"value":"5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1509221","reference_id":"1509221","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1509221"},{"reference_url":"https://security.gentoo.org/glsa/201711-05","reference_id":"GLSA-201711-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201711-05"},{"reference_url":"https://usn.ubuntu.com/3456-1/","reference_id":"USN-3456-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3456-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136465?format=json","purl":"pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2017-12180"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-k29g-v3tn-67bc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106690?format=json","vulnerability_id":"VCID-k3mg-7ndc-sqe7","summary":"In X.Org Server (aka xserver and xorg-server) before 1.19.4, an attacker authenticated to an X server with the X shared memory extension enabled can cause aborts of the X server or replace shared memory segments of other X clients in the same session.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13721.json","reference_id":"","reference_type":"","scores":[{"value":"3.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13721.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-13721","reference_id":"","reference_type":"","scores":[{"value":"0.0008","scoring_system":"epss","scoring_elements":"0.23572","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0008","scoring_system":"epss","scoring_elements":"0.23655","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-13721"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.7","scoring_system":"cvssv2","scoring_elements":"AV:L/AC:L/Au:S/C:P/I:P/A:C"},{"value":"6.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1500387","reference_id":"1500387","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1500387"},{"reference_url":"https://security.archlinux.org/ASA-201710-10","reference_id":"ASA-201710-10","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201710-10"},{"reference_url":"https://security.archlinux.org/AVG-432","reference_id":"AVG-432","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-432"},{"reference_url":"https://security.gentoo.org/glsa/201710-30","reference_id":"GLSA-201710-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201710-30"},{"reference_url":"https://usn.ubuntu.com/3453-1/","reference_id":"USN-3453-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3453-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136476?format=json","purl":"pkg:deb/debian/xorg-server@2:1.19.4-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.4-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2017-13721"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-k3mg-7ndc-sqe7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106689?format=json","vulnerability_id":"VCID-kqe5-6n97-aufv","summary":"xorg-x11-server before 1.19.5 was missing length validation in RENDER extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12187.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12187.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-12187","reference_id":"","reference_type":"","scores":[{"value":"0.00843","scoring_system":"epss","scoring_elements":"0.75119","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00843","scoring_system":"epss","scoring_elements":"0.75148","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-12187"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.6","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:H/Au:S/C:P/I:P/A:P"},{"value":"5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1509217","reference_id":"1509217","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1509217"},{"reference_url":"https://usn.ubuntu.com/3456-1/","reference_id":"USN-3456-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3456-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136465?format=json","purl":"pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2017-12187"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kqe5-6n97-aufv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/99572?format=json","vulnerability_id":"VCID-ksb1-g8mu-nbhu","summary":"xorg-x11-server: XvdiSelectVideoNotify use-after-free","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46342.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46342.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-46342","reference_id":"","reference_type":"","scores":[{"value":"0.00132","scoring_system":"epss","scoring_elements":"0.32376","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00132","scoring_system":"epss","scoring_elements":"0.32304","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-46342"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4283","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4283"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46340","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46340"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46341","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46341"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46342","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46342"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46343","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46343"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46344","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46344"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071","reference_id":"1026071","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2151757","reference_id":"2151757","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:21:01Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2151757"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2/","reference_id":"5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:21:01Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2/"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2022-46342","reference_id":"CVE-2022-46342","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:21:01Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2022-46342"},{"reference_url":"https://www.debian.org/security/2022/dsa-5304","reference_id":"dsa-5304","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:21:01Z/"}],"url":"https://www.debian.org/security/2022/dsa-5304"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G/","reference_id":"DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:21:01Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G/"},{"reference_url":"https://security.gentoo.org/glsa/202305-30","reference_id":"GLSA-202305-30","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:21:01Z/"}],"url":"https://security.gentoo.org/glsa/202305-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0045","reference_id":"RHSA-2023:0045","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0045"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0046","reference_id":"RHSA-2023:0046","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0046"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2248","reference_id":"RHSA-2023:2248","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2248"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2249","reference_id":"RHSA-2023:2249","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2249"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2257","reference_id":"RHSA-2023:2257","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2257"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2805","reference_id":"RHSA-2023:2805","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2805"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2806","reference_id":"RHSA-2023:2806","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2806"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2830","reference_id":"RHSA-2023:2830","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2830"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:12751","reference_id":"RHSA-2025:12751","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:12751"},{"reference_url":"https://usn.ubuntu.com/5778-1/","reference_id":"USN-5778-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5778-1/"},{"reference_url":"https://usn.ubuntu.com/5778-2/","reference_id":"USN-5778-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5778-2/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z67QC4C3I2FI2WRFIUPEHKC36J362MLA/","reference_id":"Z67QC4C3I2FI2WRFIUPEHKC36J362MLA","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:21:01Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z67QC4C3I2FI2WRFIUPEHKC36J362MLA/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136489?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136488?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2022-46342"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ksb1-g8mu-nbhu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6499?format=json","vulnerability_id":"VCID-ksup-ynuw-3kf7","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10971.json","reference_id":"","reference_type":"","scores":[{"value":"4.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10971.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-10971","reference_id":"","reference_type":"","scores":[{"value":"0.02753","scoring_system":"epss","scoring_elements":"0.86277","published_at":"2026-06-04T12:55:00Z"},{"value":"0.02753","scoring_system":"epss","scoring_elements":"0.86299","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-10971"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10971","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10971"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10972","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10972"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1473204","reference_id":"1473204","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1473204"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867492","reference_id":"867492","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867492"},{"reference_url":"https://security.archlinux.org/ASA-201708-11","reference_id":"ASA-201708-11","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201708-11"},{"reference_url":"https://security.archlinux.org/AVG-341","reference_id":"AVG-341","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-341"},{"reference_url":"https://usn.ubuntu.com/3362-1/","reference_id":"USN-3362-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3362-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136464?format=json","purl":"pkg:deb/debian/xorg-server@2:1.19.3-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.3-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2017-10971"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ksup-ynuw-3kf7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/77885?format=json","vulnerability_id":"VCID-ktpn-yv97-nycv","summary":"Buffer overflow in (1) X.Org Xserver before 1.4.1, and (2) the libfont and libXfont libraries on some platforms including Sun Solaris, allows context-dependent attackers to execute arbitrary code via a PCF font with a large difference between the last col and first col values in the PCF_BDF_ENCODINGS table.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-0006.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-0006.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-0006","reference_id":"","reference_type":"","scores":[{"value":"0.23908","scoring_system":"epss","scoring_elements":"0.96127","published_at":"2026-06-04T12:55:00Z"},{"value":"0.23908","scoring_system":"epss","scoring_elements":"0.96132","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-0006"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0006","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0006"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=428044","reference_id":"428044","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=428044"},{"reference_url":"https://security.gentoo.org/glsa/200801-09","reference_id":"GLSA-200801-09","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200801-09"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0029","reference_id":"RHSA-2008:0029","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0029"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0030","reference_id":"RHSA-2008:0030","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0030"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0064","reference_id":"RHSA-2008:0064","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0064"},{"reference_url":"https://usn.ubuntu.com/571-1/","reference_id":"USN-571-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/571-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136428?format=json","purl":"pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2008-0006"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ktpn-yv97-nycv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106629?format=json","vulnerability_id":"VCID-kue6-ss77-fqah","summary":"Integer overflow in the ProcDbeGetVisualInfo function in the DBE extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree86 X server, allows local users to execute arbitrary code via a crafted X protocol request that triggers memory corruption during processing of unspecified data structures.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-6102.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-6102.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2006-6102","reference_id":"","reference_type":"","scores":[{"value":"0.06429","scoring_system":"epss","scoring_elements":"0.91219","published_at":"2026-06-04T12:55:00Z"},{"value":"0.06429","scoring_system":"epss","scoring_elements":"0.91231","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2006-6102"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6102","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6102"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1618239","reference_id":"1618239","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1618239"},{"reference_url":"https://security.gentoo.org/glsa/200701-25","reference_id":"GLSA-200701-25","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200701-25"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0002","reference_id":"RHSA-2007:0002","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0002"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0003","reference_id":"RHSA-2007:0003","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0003"},{"reference_url":"https://usn.ubuntu.com/403-1/","reference_id":"USN-403-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/403-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136419?format=json","purl":"pkg:deb/debian/xorg-server@2:1.1.1-15?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.1.1-15%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2006-6102"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-kue6-ss77-fqah"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/98937?format=json","vulnerability_id":"VCID-mbyt-8urr-yqff","summary":"xorg-x11-server: DeepCopyPointerClasses use-after-free leads to privilege elevation","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0494.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0494.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-0494","reference_id":"","reference_type":"","scores":[{"value":"0.00711","scoring_system":"epss","scoring_elements":"0.72638","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00711","scoring_system":"epss","scoring_elements":"0.72677","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-0494"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0494","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0494"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://lists.x.org/archives/xorg-announce/2023-February/003320.html","reference_id":"003320.html","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-24T17:41:52Z/"}],"url":"https://lists.x.org/archives/xorg-announce/2023-February/003320.html"},{"reference_url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/0ba6d8c37071131a49790243cdac55392ecf71ec","reference_id":"0ba6d8c37071131a49790243cdac55392ecf71ec","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-24T17:41:52Z/"}],"url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/0ba6d8c37071131a49790243cdac55392ecf71ec"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1030777","reference_id":"1030777","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1030777"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2165995","reference_id":"2165995","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-24T17:41:52Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2165995"},{"reference_url":"https://security.gentoo.org/glsa/202305-30","reference_id":"GLSA-202305-30","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-24T17:41:52Z/"}],"url":"https://security.gentoo.org/glsa/202305-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0622","reference_id":"RHSA-2023:0622","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0622"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0623","reference_id":"RHSA-2023:0623","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0623"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0662","reference_id":"RHSA-2023:0662","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0662"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0663","reference_id":"RHSA-2023:0663","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0663"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0664","reference_id":"RHSA-2023:0664","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0664"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0665","reference_id":"RHSA-2023:0665","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0665"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0671","reference_id":"RHSA-2023:0671","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0671"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0675","reference_id":"RHSA-2023:0675","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0675"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2248","reference_id":"RHSA-2023:2248","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2248"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2249","reference_id":"RHSA-2023:2249","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2249"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2805","reference_id":"RHSA-2023:2805","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2805"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2806","reference_id":"RHSA-2023:2806","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2806"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:12751","reference_id":"RHSA-2025:12751","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:12751"},{"reference_url":"https://usn.ubuntu.com/5778-2/","reference_id":"USN-5778-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5778-2/"},{"reference_url":"https://usn.ubuntu.com/5846-1/","reference_id":"USN-5846-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5846-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136495?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136493?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2023-0494"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mbyt-8urr-yqff"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106659?format=json","vulnerability_id":"VCID-meuv-tkww-rfeu","summary":"Use-after-free vulnerability in the doImageText function in dix/dixfonts.c in the xorg-server module before 1.14.4 in X.Org X11 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted ImageText request that triggers memory-allocation failure.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4396.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4396.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-4396","reference_id":"","reference_type":"","scores":[{"value":"0.01971","scoring_system":"epss","scoring_elements":"0.83862","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01971","scoring_system":"epss","scoring_elements":"0.83885","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-4396"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4396","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4396"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1014561","reference_id":"1014561","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1014561"},{"reference_url":"https://security.gentoo.org/glsa/201405-07","reference_id":"GLSA-201405-07","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201405-07"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1426","reference_id":"RHSA-2013:1426","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1426"},{"reference_url":"https://usn.ubuntu.com/1990-1/","reference_id":"USN-1990-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1990-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136448?format=json","purl":"pkg:deb/debian/xorg-server@2:1.14.3-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.14.3-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2013-4396"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-meuv-tkww-rfeu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/4865?format=json","vulnerability_id":"VCID-mxq1-dhbf-9ufb","summary":"privilege escalation","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2320.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2320.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-2320","reference_id":"","reference_type":"","scores":[{"value":"0.00062","scoring_system":"epss","scoring_elements":"0.19531","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00062","scoring_system":"epss","scoring_elements":"0.19607","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-2320"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2319","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2319"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2320","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2320"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014903","reference_id":"1014903","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014903"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2106683","reference_id":"2106683","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2106683"},{"reference_url":"https://security.archlinux.org/AVG-2770","reference_id":"AVG-2770","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2770"},{"reference_url":"https://security.gentoo.org/glsa/202210-30","reference_id":"GLSA-202210-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202210-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:5905","reference_id":"RHSA-2022:5905","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:5905"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:7583","reference_id":"RHSA-2022:7583","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:7583"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:8221","reference_id":"RHSA-2022:8221","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:8221"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:8222","reference_id":"RHSA-2022:8222","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:8222"},{"reference_url":"https://usn.ubuntu.com/5510-1/","reference_id":"USN-5510-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5510-1/"},{"reference_url":"https://usn.ubuntu.com/5510-2/","reference_id":"USN-5510-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5510-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136485?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136484?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.4-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.4-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2022-2320"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mxq1-dhbf-9ufb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/85262?format=json","vulnerability_id":"VCID-nce7-2t7k-vfdt","summary":"Xorg: xwayland: Buffer overflow in XkbVModMaskText()","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26595.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26595.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-26595","reference_id":"","reference_type":"","scores":[{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.08686","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-26595"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26595","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26595"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906","reference_id":"1098906","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907","reference_id":"1098907","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2345257","reference_id":"2345257","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2345257"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:9::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb","reference_id":"cpe:/a:redhat:enterprise_linux:9::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_eus:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0","reference_id":"cpe:/o:redhat:enterprise_linux:10.0","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8","reference_id":"cpe:/o:redhat:enterprise_linux:8","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6","reference_id":"cpe:/o:redhat:rhel_els:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7","reference_id":"cpe:/o:redhat:rhel_els:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2025-26595","reference_id":"CVE-2025-26595","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2025-26595"},{"reference_url":"https://security.gentoo.org/glsa/202506-04","reference_id":"GLSA-202506-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202506-04"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2500","reference_id":"RHSA-2025:2500","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2500"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2502","reference_id":"RHSA-2025:2502","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2502"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2861","reference_id":"RHSA-2025:2861","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2861"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2862","reference_id":"RHSA-2025:2862","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2862"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2865","reference_id":"RHSA-2025:2865","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2865"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2866","reference_id":"RHSA-2025:2866","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2866"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2873","reference_id":"RHSA-2025:2873","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2873"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2874","reference_id":"RHSA-2025:2874","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2874"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2875","reference_id":"RHSA-2025:2875","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2875"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2879","reference_id":"RHSA-2025:2879","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2879"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2880","reference_id":"RHSA-2025:2880","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2880"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:3976","reference_id":"RHSA-2025:3976","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:3976"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:7163","reference_id":"RHSA-2025:7163","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:7163"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:7165","reference_id":"RHSA-2025:7165","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:7165"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:7458","reference_id":"RHSA-2025:7458","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:7458"},{"reference_url":"https://usn.ubuntu.com/7299-1/","reference_id":"USN-7299-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7299-1/"},{"reference_url":"https://usn.ubuntu.com/7299-2/","reference_id":"USN-7299-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7299-2/"},{"reference_url":"https://usn.ubuntu.com/7299-4/","reference_id":"USN-7299-4","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7299-4/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136526?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u15?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u15%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136525?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u9?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u9%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136527?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2025-26595"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nce7-2t7k-vfdt"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/99580?format=json","vulnerability_id":"VCID-nghe-4hvm-juhp","summary":"xorg-x11-server: XIChangeProperty out-of-bounds access","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46344.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46344.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-46344","reference_id":"","reference_type":"","scores":[{"value":"0.00867","scoring_system":"epss","scoring_elements":"0.75505","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00867","scoring_system":"epss","scoring_elements":"0.75533","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-46344"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4283","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4283"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46340","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46340"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46341","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46341"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46342","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46342"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46343","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46343"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46344","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46344"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071","reference_id":"1026071","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2151760","reference_id":"2151760","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2151760"},{"reference_url":"https://security.gentoo.org/glsa/202305-30","reference_id":"GLSA-202305-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202305-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0045","reference_id":"RHSA-2023:0045","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0045"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0046","reference_id":"RHSA-2023:0046","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0046"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2248","reference_id":"RHSA-2023:2248","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2248"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2249","reference_id":"RHSA-2023:2249","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2249"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2257","reference_id":"RHSA-2023:2257","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2257"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2805","reference_id":"RHSA-2023:2805","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2805"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2806","reference_id":"RHSA-2023:2806","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2806"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2830","reference_id":"RHSA-2023:2830","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2830"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:12751","reference_id":"RHSA-2025:12751","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:12751"},{"reference_url":"https://usn.ubuntu.com/5778-1/","reference_id":"USN-5778-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5778-1/"},{"reference_url":"https://usn.ubuntu.com/5778-2/","reference_id":"USN-5778-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5778-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136489?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136488?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2022-46344"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nghe-4hvm-juhp"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106686?format=json","vulnerability_id":"VCID-nrev-k192-pfe8","summary":"xorg-x11-server before 1.19.5 was missing length validation in MIT-SCREEN-SAVER extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12185.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12185.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-12185","reference_id":"","reference_type":"","scores":[{"value":"0.00838","scoring_system":"epss","scoring_elements":"0.75042","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00838","scoring_system":"epss","scoring_elements":"0.75071","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-12185"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.6","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:H/Au:S/C:P/I:P/A:P"},{"value":"5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1509215","reference_id":"1509215","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1509215"},{"reference_url":"https://usn.ubuntu.com/3456-1/","reference_id":"USN-3456-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3456-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136465?format=json","purl":"pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2017-12185"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nrev-k192-pfe8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106654?format=json","vulnerability_id":"VCID-p2yg-z8e2-j7f5","summary":"The LockServer function in os/utils.c in X.Org xserver before 1.11.2 allows local users to change the permissions of arbitrary files to 444, read those files, and possibly cause a denial of service (removed execution permission) via a symlink attack on a temporary lock file.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4029.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4029.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2011-4029","reference_id":"","reference_type":"","scores":[{"value":"0.00866","scoring_system":"epss","scoring_elements":"0.75486","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00866","scoring_system":"epss","scoring_elements":"0.75515","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2011-4029"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4029","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4029"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=745024","reference_id":"745024","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=745024"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/18040.c","reference_id":"CVE-2011-4613;OSVDB-84058;CVE-2011-4029;OSVDB-76669","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/18040.c"},{"reference_url":"https://security.gentoo.org/glsa/201110-19","reference_id":"GLSA-201110-19","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201110-19"},{"reference_url":"https://access.redhat.com/errata/RHSA-2012:0939","reference_id":"RHSA-2012:0939","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2012:0939"},{"reference_url":"https://usn.ubuntu.com/1232-1/","reference_id":"USN-1232-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1232-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136440?format=json","purl":"pkg:deb/debian/xorg-server@2:1.11.1.901-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.11.1.901-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2011-4029"],"risk_score":null,"exploitability":"2.0","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-p2yg-z8e2-j7f5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106691?format=json","vulnerability_id":"VCID-py27-f7s4-ybbq","summary":"In X.Org Server (aka xserver and xorg-server) before 1.19.4, a local attacker authenticated to the X server could overflow a global buffer, causing crashes of the X server or potentially other problems by injecting large or malformed XKB related atoms and accessing them via xkbcomp.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13723.json","reference_id":"","reference_type":"","scores":[{"value":"4.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13723.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-13723","reference_id":"","reference_type":"","scores":[{"value":"0.00127","scoring_system":"epss","scoring_elements":"0.31525","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00127","scoring_system":"epss","scoring_elements":"0.31593","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-13723"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv2","scoring_elements":"AV:L/AC:M/Au:S/C:N/I:N/A:C"},{"value":"4.7","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1500388","reference_id":"1500388","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1500388"},{"reference_url":"https://security.archlinux.org/ASA-201710-10","reference_id":"ASA-201710-10","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201710-10"},{"reference_url":"https://security.archlinux.org/AVG-432","reference_id":"AVG-432","reference_type":"","scores":[{"value":"Medium","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-432"},{"reference_url":"https://security.gentoo.org/glsa/201710-30","reference_id":"GLSA-201710-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201710-30"},{"reference_url":"https://usn.ubuntu.com/3453-1/","reference_id":"USN-3453-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3453-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136476?format=json","purl":"pkg:deb/debian/xorg-server@2:1.19.4-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.4-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2017-13723"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-py27-f7s4-ybbq"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6498?format=json","vulnerability_id":"VCID-qmf7-231x-cyaa","summary":"multiple issues","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10972.json","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10972.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-10972","reference_id":"","reference_type":"","scores":[{"value":"0.00345","scoring_system":"epss","scoring_elements":"0.5734","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00345","scoring_system":"epss","scoring_elements":"0.57393","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-10972"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10971","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10971"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10972","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10972"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1473205","reference_id":"1473205","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1473205"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867492","reference_id":"867492","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867492"},{"reference_url":"https://security.archlinux.org/ASA-201708-11","reference_id":"ASA-201708-11","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201708-11"},{"reference_url":"https://security.archlinux.org/AVG-341","reference_id":"AVG-341","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-341"},{"reference_url":"https://usn.ubuntu.com/3362-1/","reference_id":"USN-3362-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3362-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136464?format=json","purl":"pkg:deb/debian/xorg-server@2:1.19.3-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.3-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2017-10972"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qmf7-231x-cyaa"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/5015?format=json","vulnerability_id":"VCID-qmrm-2e5f-h3an","summary":"arbitrary code execution","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4011.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4011.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-4011","reference_id":"","reference_type":"","scores":[{"value":"0.00041","scoring_system":"epss","scoring_elements":"0.12659","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00041","scoring_system":"epss","scoring_elements":"0.12744","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-4011"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2026074","reference_id":"2026074","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2026074"},{"reference_url":"https://security.archlinux.org/AVG-2636","reference_id":"AVG-2636","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2636"},{"reference_url":"https://security.archlinux.org/AVG-2640","reference_id":"AVG-2640","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-2640"},{"reference_url":"https://security.gentoo.org/glsa/202305-30","reference_id":"GLSA-202305-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202305-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:0003","reference_id":"RHSA-2022:0003","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:0003"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:1917","reference_id":"RHSA-2022:1917","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:1917"},{"reference_url":"https://usn.ubuntu.com/5193-1/","reference_id":"USN-5193-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5193-1/"},{"reference_url":"https://usn.ubuntu.com/5193-2/","reference_id":"USN-5193-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5193-2/"},{"reference_url":"https://usn.ubuntu.com/5193-3/","reference_id":"USN-5193-3","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5193-3/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136483?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136482?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.13-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.13-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2021-4011"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qmrm-2e5f-h3an"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106633?format=json","vulnerability_id":"VCID-qs4d-hm8w-jfcm","summary":"The X render (Xrender) extension in X.org X Window System 7.0, 7.1, and 7.2, with Xserver 1.3.0 and earlier, allows remote authenticated users to cause a denial of service (daemon crash) via crafted values to the (1) XRenderCompositeTrapezoids and (2) XRenderAddTraps functions, which trigger a divide-by-zero error.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2437.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2437.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-2437","reference_id":"","reference_type":"","scores":[{"value":"0.03757","scoring_system":"epss","scoring_elements":"0.88237","published_at":"2026-06-04T12:55:00Z"},{"value":"0.03757","scoring_system":"epss","scoring_elements":"0.88256","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-2437"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2437","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2437"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=422936","reference_id":"422936","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=422936"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/29939.txt","reference_id":"CVE-2007-2437;OSVDB-34905","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/29939.txt"},{"reference_url":"https://www.securityfocus.com/bid/23741/info","reference_id":"CVE-2007-2437;OSVDB-34905","reference_type":"exploit","scores":[],"url":"https://www.securityfocus.com/bid/23741/info"},{"reference_url":"https://security.gentoo.org/glsa/201301-01","reference_id":"GLSA-201301-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201301-01"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136424?format=json","purl":"pkg:deb/debian/xorg-server@2:1.3.0.0.dfsg-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.3.0.0.dfsg-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2007-2437"],"risk_score":null,"exploitability":"2.0","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qs4d-hm8w-jfcm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106634?format=json","vulnerability_id":"VCID-qy7b-jt1s-dbfz","summary":"Buffer overflow in the compNewPixmap function in compalloc.c in the Composite extension for the X.org X11 server before 1.4 allows local users to execute arbitrary code by copying data from a large pixel depth pixmap into a smaller pixel depth pixmap.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-4730.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-4730.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-4730","reference_id":"","reference_type":"","scores":[{"value":"0.00097","scoring_system":"epss","scoring_elements":"0.26653","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00097","scoring_system":"epss","scoring_elements":"0.26756","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-4730"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4730","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4730"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=285991","reference_id":"285991","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=285991"},{"reference_url":"https://security.gentoo.org/glsa/200710-16","reference_id":"GLSA-200710-16","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200710-16"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0898","reference_id":"RHSA-2007:0898","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0898"},{"reference_url":"https://usn.ubuntu.com/514-1/","reference_id":"USN-514-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/514-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136427?format=json","purl":"pkg:deb/debian/xorg-server@2:1.4-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2007-4730"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qy7b-jt1s-dbfz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/73075?format=json","vulnerability_id":"VCID-r8bp-sg6q-sqgj","summary":"xorg: xmayland: Value overflow in XkbSetCompatMap()","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-62231.json","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-62231.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-62231","reference_id":"","reference_type":"","scores":[{"value":"0.00014","scoring_system":"epss","scoring_elements":"0.02924","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-62231"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62231","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62231"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://lists.x.org/archives/xorg-announce/2025-October/003635.html","reference_id":"003635.html","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://lists.x.org/archives/xorg-announce/2025-October/003635.html"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2402660","reference_id":"2402660","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2402660"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb","reference_id":"cpe:/a:redhat:enterprise_linux:8::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:9::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb","reference_id":"cpe:/a:redhat:enterprise_linux:9::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:9.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb","reference_id":"cpe:/a:redhat:rhel_eus:9.4::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_eus_long_life:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0","reference_id":"cpe:/o:redhat:enterprise_linux:10.0","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1","reference_id":"cpe:/o:redhat:enterprise_linux:10.1","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6","reference_id":"cpe:/o:redhat:rhel_els:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7","reference_id":"cpe:/o:redhat:rhel_els:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2025-62231","reference_id":"CVE-2025-62231","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2025-62231"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:19432","reference_id":"RHSA-2025:19432","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:19432"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:19433","reference_id":"RHSA-2025:19433","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:19433"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:19434","reference_id":"RHSA-2025:19434","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:19434"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:19435","reference_id":"RHSA-2025:19435","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:19435"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:19489","reference_id":"RHSA-2025:19489","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:19489"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:19623","reference_id":"RHSA-2025:19623","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:19623"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:19909","reference_id":"RHSA-2025:19909","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:19909"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:20958","reference_id":"RHSA-2025:20958","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:20958"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:20960","reference_id":"RHSA-2025:20960","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:20960"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:20961","reference_id":"RHSA-2025:20961","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:20961"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:21035","reference_id":"RHSA-2025:21035","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:21035"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22040","reference_id":"RHSA-2025:22040","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22040"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22041","reference_id":"RHSA-2025:22041","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22041"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22051","reference_id":"RHSA-2025:22051","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22051"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22055","reference_id":"RHSA-2025:22055","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22055"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22056","reference_id":"RHSA-2025:22056","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22056"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22077","reference_id":"RHSA-2025:22077","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22077"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22096","reference_id":"RHSA-2025:22096","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22096"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22164","reference_id":"RHSA-2025:22164","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22164"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22167","reference_id":"RHSA-2025:22167","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22167"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22364","reference_id":"RHSA-2025:22364","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22364"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22365","reference_id":"RHSA-2025:22365","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22365"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22426","reference_id":"RHSA-2025:22426","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22426"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22427","reference_id":"RHSA-2025:22427","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22427"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22667","reference_id":"RHSA-2025:22667","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22667"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22729","reference_id":"RHSA-2025:22729","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22729"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22742","reference_id":"RHSA-2025:22742","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22742"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22753","reference_id":"RHSA-2025:22753","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22753"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0031","reference_id":"RHSA-2026:0031","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:0031"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0033","reference_id":"RHSA-2026:0033","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:0033"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0034","reference_id":"RHSA-2026:0034","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:0034"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0035","reference_id":"RHSA-2026:0035","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:0035"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0036","reference_id":"RHSA-2026:0036","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:0036"},{"reference_url":"https://usn.ubuntu.com/7846-1/","reference_id":"USN-7846-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7846-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136543?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u17?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u17%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136542?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u11?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u11%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136545?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136544?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.20-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.20-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2025-62231"],"risk_score":3.3,"exploitability":"0.5","weighted_severity":"6.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-r8bp-sg6q-sqgj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106642?format=json","vulnerability_id":"VCID-raeg-4zw3-xbe4","summary":"Multiple integer overflows in X.Org Xserver before 1.4.1 allow context-dependent attackers to execute arbitrary code via (1) a GetVisualInfo request containing a 32-bit value that is improperly used to calculate an amount of memory for allocation by the EVI extension, or (2) a request containing values related to pixmap size that are improperly used in management of shared memory by the MIT-SHM extension.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6429.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6429.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-6429","reference_id":"","reference_type":"","scores":[{"value":"0.0227","scoring_system":"epss","scoring_elements":"0.84944","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0227","scoring_system":"epss","scoring_elements":"0.84968","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-6429"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6429","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6429"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=413721","reference_id":"413721","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=413721"},{"reference_url":"https://security.gentoo.org/glsa/200801-09","reference_id":"GLSA-200801-09","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200801-09"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0029","reference_id":"RHSA-2008:0029","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0029"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0030","reference_id":"RHSA-2008:0030","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0030"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0031","reference_id":"RHSA-2008:0031","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0031"},{"reference_url":"https://usn.ubuntu.com/571-1/","reference_id":"USN-571-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/571-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136428?format=json","purl":"pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2007-6429"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-raeg-4zw3-xbe4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106628?format=json","vulnerability_id":"VCID-rbgq-gsfu-7uga","summary":"Integer overflow in the ProcRenderAddGlyphs function in the Render extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree86 X server, allows local users to execute arbitrary code via a crafted X protocol request that triggers memory corruption during processing of glyph management data structures.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-6101.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-6101.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2006-6101","reference_id":"","reference_type":"","scores":[{"value":"0.00045","scoring_system":"epss","scoring_elements":"0.14103","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00045","scoring_system":"epss","scoring_elements":"0.14176","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2006-6101"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6101","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6101"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1618238","reference_id":"1618238","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1618238"},{"reference_url":"https://security.gentoo.org/glsa/200701-25","reference_id":"GLSA-200701-25","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200701-25"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0002","reference_id":"RHSA-2007:0002","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0002"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0003","reference_id":"RHSA-2007:0003","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0003"},{"reference_url":"https://usn.ubuntu.com/403-1/","reference_id":"USN-403-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/403-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136419?format=json","purl":"pkg:deb/debian/xorg-server@2:1.1.1-15?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.1.1-15%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2006-6101"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rbgq-gsfu-7uga"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/85235?format=json","vulnerability_id":"VCID-rq9m-9qtm-m3bv","summary":"X.Org: Xwayland: Use-after-free of the root cursor","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26594.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26594.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-26594","reference_id":"","reference_type":"","scores":[{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.08686","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-26594"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26594","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26594"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906","reference_id":"1098906","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907","reference_id":"1098907","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2345248","reference_id":"2345248","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2345248"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:9::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb","reference_id":"cpe:/a:redhat:enterprise_linux:9::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_eus:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0","reference_id":"cpe:/o:redhat:enterprise_linux:10.0","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8","reference_id":"cpe:/o:redhat:enterprise_linux:8","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6","reference_id":"cpe:/o:redhat:rhel_els:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7","reference_id":"cpe:/o:redhat:rhel_els:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2025-26594","reference_id":"CVE-2025-26594","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2025-26594"},{"reference_url":"https://security.gentoo.org/glsa/202506-04","reference_id":"GLSA-202506-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202506-04"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2500","reference_id":"RHSA-2025:2500","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2500"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2502","reference_id":"RHSA-2025:2502","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2502"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2861","reference_id":"RHSA-2025:2861","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2861"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2862","reference_id":"RHSA-2025:2862","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2862"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2865","reference_id":"RHSA-2025:2865","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2865"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2866","reference_id":"RHSA-2025:2866","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2866"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2873","reference_id":"RHSA-2025:2873","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2873"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2874","reference_id":"RHSA-2025:2874","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2874"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2875","reference_id":"RHSA-2025:2875","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2875"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2879","reference_id":"RHSA-2025:2879","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2879"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2880","reference_id":"RHSA-2025:2880","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2880"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:3976","reference_id":"RHSA-2025:3976","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:3976"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:7163","reference_id":"RHSA-2025:7163","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:7163"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:7165","reference_id":"RHSA-2025:7165","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:7165"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:7458","reference_id":"RHSA-2025:7458","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:7458"},{"reference_url":"https://usn.ubuntu.com/7299-1/","reference_id":"USN-7299-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7299-1/"},{"reference_url":"https://usn.ubuntu.com/7299-2/","reference_id":"USN-7299-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7299-2/"},{"reference_url":"https://usn.ubuntu.com/7299-4/","reference_id":"USN-7299-4","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7299-4/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136526?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u15?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u15%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136525?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u9?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u9%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136527?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2025-26594"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rq9m-9qtm-m3bv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106694?format=json","vulnerability_id":"VCID-rqjp-d3mr-ykdx","summary":"A flaw was found in xorg-x11-server before 1.20.9. An integer underflow in the X input extension protocol decoding in the X server may lead to arbitrary access of memory contents. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14346.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14346.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14346","reference_id":"","reference_type":"","scores":[{"value":"0.00154","scoring_system":"epss","scoring_elements":"0.35814","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00154","scoring_system":"epss","scoring_elements":"0.3591","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2020-14346"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14345","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14345"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14346","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14346"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14347","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14347"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14361","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14361"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14362","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14362"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1862246","reference_id":"1862246","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1862246"},{"reference_url":"https://security.gentoo.org/glsa/202012-01","reference_id":"GLSA-202012-01","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202012-01"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4910","reference_id":"RHSA-2020:4910","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4910"},{"reference_url":"https://access.redhat.com/errata/RHSA-2020:4953","reference_id":"RHSA-2020:4953","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2020:4953"},{"reference_url":"https://access.redhat.com/errata/RHSA-2021:1804","reference_id":"RHSA-2021:1804","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2021:1804"},{"reference_url":"https://usn.ubuntu.com/4488-1/","reference_id":"USN-4488-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4488-1/"},{"reference_url":"https://usn.ubuntu.com/4488-2/","reference_id":"USN-4488-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/4488-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136479?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.9-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.9-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2020-14346"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rqjp-d3mr-ykdx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106632?format=json","vulnerability_id":"VCID-rwrz-8ej4-87dx","summary":"Integer overflow in ALLOCATE_LOCAL in the ProcXCMiscGetXIDList function in the XC-MISC extension in the X.Org X11 server (xserver) 7.1-1.1.0, and other versions before 20070403, allows remote authenticated users to execute arbitrary code via a large expression, which results in memory corruption.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-1003.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-1003.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-1003","reference_id":"","reference_type":"","scores":[{"value":"0.08011","scoring_system":"epss","scoring_elements":"0.92249","published_at":"2026-06-04T12:55:00Z"},{"value":"0.08011","scoring_system":"epss","scoring_elements":"0.92262","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-1003"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1003","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1003"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=235263","reference_id":"235263","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=235263"},{"reference_url":"https://security.gentoo.org/glsa/200705-10","reference_id":"GLSA-200705-10","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200705-10"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0125","reference_id":"RHSA-2007:0125","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0125"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0126","reference_id":"RHSA-2007:0126","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0126"},{"reference_url":"https://access.redhat.com/errata/RHSA-2007:0127","reference_id":"RHSA-2007:0127","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2007:0127"},{"reference_url":"https://usn.ubuntu.com/448-1/","reference_id":"USN-448-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/448-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136423?format=json","purl":"pkg:deb/debian/xorg-server@2:1.1.1-21?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.1.1-21%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2007-1003"],"risk_score":0.1,"exploitability":"0.5","weighted_severity":"0.1","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-rwrz-8ej4-87dx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/87721?format=json","vulnerability_id":"VCID-sbxv-5gr6-8be3","summary":"xorg-x11-server: tigervnc: heap-based buffer overflow privilege escalation vulnerability","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-9632.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-9632.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-9632","reference_id":"","reference_type":"","scores":[{"value":"0.00057","scoring_system":"epss","scoring_elements":"0.18125","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-9632"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-9632","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-9632"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1086244","reference_id":"1086244","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1086244"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1086245","reference_id":"1086245","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1086245"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2317233","reference_id":"2317233","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2317233"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb","reference_id":"cpe:/a:redhat:enterprise_linux:8::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:9::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb","reference_id":"cpe:/a:redhat:enterprise_linux:9::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_eus:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0","reference_id":"cpe:/o:redhat:enterprise_linux:10.0","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7","reference_id":"cpe:/o:redhat:enterprise_linux:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6","reference_id":"cpe:/o:redhat:rhel_els:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7","reference_id":"cpe:/o:redhat:rhel_els:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2024-9632","reference_id":"CVE-2024-9632","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2024-9632"},{"reference_url":"https://security.gentoo.org/glsa/202411-08","reference_id":"GLSA-202411-08","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202411-08"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:10090","reference_id":"RHSA-2024:10090","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:10090"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8798","reference_id":"RHSA-2024:8798","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:8798"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9540","reference_id":"RHSA-2024:9540","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:9540"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9579","reference_id":"RHSA-2024:9579","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:9579"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9601","reference_id":"RHSA-2024:9601","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:9601"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9690","reference_id":"RHSA-2024:9690","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:9690"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9816","reference_id":"RHSA-2024:9816","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:9816"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9818","reference_id":"RHSA-2024:9818","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:9818"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9819","reference_id":"RHSA-2024:9819","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:9819"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9820","reference_id":"RHSA-2024:9820","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:9820"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9901","reference_id":"RHSA-2024:9901","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:9901"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:12751","reference_id":"RHSA-2025:12751","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:12751"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:7163","reference_id":"RHSA-2025:7163","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:7163"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:7165","reference_id":"RHSA-2025:7165","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:7165"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:7458","reference_id":"RHSA-2025:7458","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:7458"},{"reference_url":"https://usn.ubuntu.com/7085-1/","reference_id":"USN-7085-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7085-1/"},{"reference_url":"https://usn.ubuntu.com/7085-2/","reference_id":"USN-7085-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7085-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136522?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u14?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u14%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136521?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u8?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u8%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136523?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.13-3.1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.13-3.1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2024-9632"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-sbxv-5gr6-8be3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106685?format=json","vulnerability_id":"VCID-skxw-tvv4-rbdr","summary":"xorg-x11-server before 1.19.5 was missing length validation in XINERAMA extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12184.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12184.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-12184","reference_id":"","reference_type":"","scores":[{"value":"0.00838","scoring_system":"epss","scoring_elements":"0.75042","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00838","scoring_system":"epss","scoring_elements":"0.75071","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-12184"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.6","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:H/Au:S/C:P/I:P/A:P"},{"value":"5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1509225","reference_id":"1509225","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1509225"},{"reference_url":"https://usn.ubuntu.com/3456-1/","reference_id":"USN-3456-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3456-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136465?format=json","purl":"pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2017-12184"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-skxw-tvv4-rbdr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6451?format=json","vulnerability_id":"VCID-ss7u-mzyq-47cg","summary":"arbitrary code execution","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12178.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12178.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-12178","reference_id":"","reference_type":"","scores":[{"value":"0.00502","scoring_system":"epss","scoring_elements":"0.66407","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00502","scoring_system":"epss","scoring_elements":"0.66447","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-12178"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.6","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:H/Au:S/C:P/I:P/A:P"},{"value":"5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1509219","reference_id":"1509219","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1509219"},{"reference_url":"https://security.archlinux.org/ASA-201710-29","reference_id":"ASA-201710-29","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201710-29"},{"reference_url":"https://security.archlinux.org/AVG-443","reference_id":"AVG-443","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-443"},{"reference_url":"https://security.gentoo.org/glsa/201711-05","reference_id":"GLSA-201711-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201711-05"},{"reference_url":"https://usn.ubuntu.com/3456-1/","reference_id":"USN-3456-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3456-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136465?format=json","purl":"pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2017-12178"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ss7u-mzyq-47cg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/99570?format=json","vulnerability_id":"VCID-swtg-qd41-pqgw","summary":"xorg-x11-server: XIPassiveUngrab out-of-bounds access","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46341.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46341.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-46341","reference_id":"","reference_type":"","scores":[{"value":"0.01059","scoring_system":"epss","scoring_elements":"0.78001","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01059","scoring_system":"epss","scoring_elements":"0.77974","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-46341"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4283","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4283"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46340","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46340"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46341","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46341"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46342","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46342"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46343","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46343"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46344","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46344"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071","reference_id":"1026071","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2151756","reference_id":"2151756","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:53:14Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2151756"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2/","reference_id":"5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:53:14Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2/"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2022-46341","reference_id":"CVE-2022-46341","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:53:14Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2022-46341"},{"reference_url":"https://www.debian.org/security/2022/dsa-5304","reference_id":"dsa-5304","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:53:14Z/"}],"url":"https://www.debian.org/security/2022/dsa-5304"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G/","reference_id":"DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:53:14Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G/"},{"reference_url":"https://security.gentoo.org/glsa/202305-30","reference_id":"GLSA-202305-30","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:53:14Z/"}],"url":"https://security.gentoo.org/glsa/202305-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0045","reference_id":"RHSA-2023:0045","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0045"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0046","reference_id":"RHSA-2023:0046","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0046"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2248","reference_id":"RHSA-2023:2248","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2248"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2249","reference_id":"RHSA-2023:2249","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2249"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2257","reference_id":"RHSA-2023:2257","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2257"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2805","reference_id":"RHSA-2023:2805","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2805"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2806","reference_id":"RHSA-2023:2806","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2806"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2830","reference_id":"RHSA-2023:2830","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2830"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:12751","reference_id":"RHSA-2025:12751","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:12751"},{"reference_url":"https://usn.ubuntu.com/5778-1/","reference_id":"USN-5778-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5778-1/"},{"reference_url":"https://usn.ubuntu.com/5778-2/","reference_id":"USN-5778-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5778-2/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z67QC4C3I2FI2WRFIUPEHKC36J362MLA/","reference_id":"Z67QC4C3I2FI2WRFIUPEHKC36J362MLA","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:53:14Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z67QC4C3I2FI2WRFIUPEHKC36J362MLA/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136489?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136488?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2022-46341"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-swtg-qd41-pqgw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/91751?format=json","vulnerability_id":"VCID-t19y-2rhp-23cx","summary":"xorg-x11-server: out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6478.json","reference_id":"","reference_type":"","scores":[{"value":"7.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6478.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-6478","reference_id":"","reference_type":"","scores":[{"value":"0.01113","scoring_system":"epss","scoring_elements":"0.78535","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-6478"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6377","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6377"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6478","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6478"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2253298","reference_id":"2253298","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2253298"},{"reference_url":"https://security.gentoo.org/glsa/202401-30","reference_id":"GLSA-202401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202401-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7886","reference_id":"RHSA-2023:7886","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7886"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0006","reference_id":"RHSA-2024:0006","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0006"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0009","reference_id":"RHSA-2024:0009","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0009"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0010","reference_id":"RHSA-2024:0010","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0010"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0014","reference_id":"RHSA-2024:0014","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0014"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0015","reference_id":"RHSA-2024:0015","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0015"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0016","reference_id":"RHSA-2024:0016","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0016"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0017","reference_id":"RHSA-2024:0017","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0017"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0018","reference_id":"RHSA-2024:0018","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0018"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0020","reference_id":"RHSA-2024:0020","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0020"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2169","reference_id":"RHSA-2024:2169","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2169"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2170","reference_id":"RHSA-2024:2170","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2170"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2995","reference_id":"RHSA-2024:2995","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2995"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2996","reference_id":"RHSA-2024:2996","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2996"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:12751","reference_id":"RHSA-2025:12751","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:12751"},{"reference_url":"https://usn.ubuntu.com/6555-1/","reference_id":"USN-6555-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6555-1/"},{"reference_url":"https://usn.ubuntu.com/6555-2/","reference_id":"USN-6555-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6555-2/"},{"reference_url":"https://usn.ubuntu.com/6587-5/","reference_id":"USN-6587-5","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6587-5/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136510?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u9?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u9%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136509?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136507?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.10-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.10-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2023-6478"],"risk_score":3.4,"exploitability":"0.5","weighted_severity":"6.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-t19y-2rhp-23cx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/100693?format=json","vulnerability_id":"VCID-t4ta-czp7-pye5","summary":"xorg-x11-server: buffer overflow in _GetCountedString() in xkb/xkb.c","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3550.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3550.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-3550","reference_id":"","reference_type":"","scores":[{"value":"0.00346","scoring_system":"epss","scoring_elements":"0.57477","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00346","scoring_system":"epss","scoring_elements":"0.5753","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-3550"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3550","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3550"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3551","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3551"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2140698","reference_id":"2140698","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2140698"},{"reference_url":"https://security.gentoo.org/glsa/202305-30","reference_id":"GLSA-202305-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202305-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2022:8491","reference_id":"RHSA-2022:8491","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2022:8491"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2248","reference_id":"RHSA-2023:2248","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2248"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2249","reference_id":"RHSA-2023:2249","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2249"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2805","reference_id":"RHSA-2023:2805","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2805"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2806","reference_id":"RHSA-2023:2806","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2806"},{"reference_url":"https://usn.ubuntu.com/5740-1/","reference_id":"USN-5740-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5740-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136487?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136486?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.4-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.4-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2022-3550"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-t4ta-czp7-pye5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/90718?format=json","vulnerability_id":"VCID-t6z8-cefj-jqa2","summary":"xorg-x11-server: Heap buffer overread/data leakage in ProcXIPassiveGrabDevice","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31081.json","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31081.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-31081","reference_id":"","reference_type":"","scores":[{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.31047","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-31081"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31080","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31080"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31081","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31081"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31083","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31083"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2271998","reference_id":"2271998","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2271998"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb","reference_id":"cpe:/a:redhat:enterprise_linux:8::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:9::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb","reference_id":"cpe:/a:redhat:enterprise_linux:9::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_eus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_eus:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.0::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10","reference_id":"cpe:/o:redhat:enterprise_linux:10","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client","reference_id":"cpe:/o:redhat:enterprise_linux:7::client","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode","reference_id":"cpe:/o:redhat:enterprise_linux:7::computenode","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server","reference_id":"cpe:/o:redhat:enterprise_linux:7::server","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation","reference_id":"cpe:/o:redhat:enterprise_linux:7::workstation","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6","reference_id":"cpe:/o:redhat:rhel_els:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2024-31081","reference_id":"CVE-2024-31081","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2024-31081"},{"reference_url":"https://security.gentoo.org/glsa/202411-08","reference_id":"GLSA-202411-08","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202411-08"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:1785","reference_id":"RHSA-2024:1785","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:1785"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2036","reference_id":"RHSA-2024:2036","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2036"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2037","reference_id":"RHSA-2024:2037","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2037"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2038","reference_id":"RHSA-2024:2038","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2038"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2039","reference_id":"RHSA-2024:2039","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2039"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2040","reference_id":"RHSA-2024:2040","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2040"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2041","reference_id":"RHSA-2024:2041","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2041"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2042","reference_id":"RHSA-2024:2042","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2042"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2080","reference_id":"RHSA-2024:2080","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2080"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2616","reference_id":"RHSA-2024:2616","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2616"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3258","reference_id":"RHSA-2024:3258","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:3258"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3261","reference_id":"RHSA-2024:3261","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:3261"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3343","reference_id":"RHSA-2024:3343","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:3343"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9093","reference_id":"RHSA-2024:9093","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:9093"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9122","reference_id":"RHSA-2024:9122","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:9122"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:12751","reference_id":"RHSA-2025:12751","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:12751"},{"reference_url":"https://usn.ubuntu.com/6721-1/","reference_id":"USN-6721-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6721-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136519?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136520?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.11-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.11-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2024-31081"],"risk_score":3.3,"exploitability":"0.5","weighted_severity":"6.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-t6z8-cefj-jqa2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6450?format=json","vulnerability_id":"VCID-tuku-xgqr-dfdc","summary":"arbitrary code execution","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12183.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12183.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-12183","reference_id":"","reference_type":"","scores":[{"value":"0.00502","scoring_system":"epss","scoring_elements":"0.66407","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00502","scoring_system":"epss","scoring_elements":"0.66447","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-12183"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.6","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:H/Au:S/C:P/I:P/A:P"},{"value":"5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1509224","reference_id":"1509224","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1509224"},{"reference_url":"https://security.archlinux.org/ASA-201710-29","reference_id":"ASA-201710-29","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201710-29"},{"reference_url":"https://security.archlinux.org/AVG-443","reference_id":"AVG-443","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-443"},{"reference_url":"https://security.gentoo.org/glsa/201711-05","reference_id":"GLSA-201711-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201711-05"},{"reference_url":"https://usn.ubuntu.com/3456-1/","reference_id":"USN-3456-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3456-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136465?format=json","purl":"pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2017-12183"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-tuku-xgqr-dfdc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/91481?format=json","vulnerability_id":"VCID-tzs1-bp73-zycb","summary":"xorg-x11-server: heap buffer overflow in DisableDevice","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21886.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21886.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-21886","reference_id":"","reference_type":"","scores":[{"value":"0.00239","scoring_system":"epss","scoring_elements":"0.47194","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-21886"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6816","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6816"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0408","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0408"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0409","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0409"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21885","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21885"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21886","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21886"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2256542","reference_id":"2256542","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2256542"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb","reference_id":"cpe:/a:redhat:enterprise_linux:8::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:9::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb","reference_id":"cpe:/a:redhat:enterprise_linux:9::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_eus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_eus:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.0::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client","reference_id":"cpe:/o:redhat:enterprise_linux:7::client","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode","reference_id":"cpe:/o:redhat:enterprise_linux:7::computenode","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server","reference_id":"cpe:/o:redhat:enterprise_linux:7::server","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation","reference_id":"cpe:/o:redhat:enterprise_linux:7::workstation","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6","reference_id":"cpe:/o:redhat:rhel_els:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2024-21886","reference_id":"CVE-2024-21886","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2024-21886"},{"reference_url":"https://security.gentoo.org/glsa/202401-30","reference_id":"GLSA-202401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202401-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0320","reference_id":"RHSA-2024:0320","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0320"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0557","reference_id":"RHSA-2024:0557","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0557"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0558","reference_id":"RHSA-2024:0558","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0558"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0597","reference_id":"RHSA-2024:0597","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0597"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0607","reference_id":"RHSA-2024:0607","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0607"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0614","reference_id":"RHSA-2024:0614","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0614"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0617","reference_id":"RHSA-2024:0617","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0617"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0621","reference_id":"RHSA-2024:0621","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0621"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0626","reference_id":"RHSA-2024:0626","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0626"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0629","reference_id":"RHSA-2024:0629","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0629"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2169","reference_id":"RHSA-2024:2169","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2169"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2170","reference_id":"RHSA-2024:2170","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2170"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2995","reference_id":"RHSA-2024:2995","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2995"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2996","reference_id":"RHSA-2024:2996","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2996"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:12751","reference_id":"RHSA-2025:12751","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:12751"},{"reference_url":"https://usn.ubuntu.com/6587-1/","reference_id":"USN-6587-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6587-1/"},{"reference_url":"https://usn.ubuntu.com/6587-2/","reference_id":"USN-6587-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6587-2/"},{"reference_url":"https://usn.ubuntu.com/6587-5/","reference_id":"USN-6587-5","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6587-5/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136512?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u11?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u11%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136511?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136513?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.11-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.11-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2024-21886"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-tzs1-bp73-zycb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6453?format=json","vulnerability_id":"VCID-umsv-cu6y-r7dy","summary":"arbitrary code execution","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12176.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12176.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-12176","reference_id":"","reference_type":"","scores":[{"value":"0.0095","scoring_system":"epss","scoring_elements":"0.7672","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0095","scoring_system":"epss","scoring_elements":"0.76753","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-12176"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.6","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:H/Au:S/C:P/I:P/A:P"},{"value":"5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1509214","reference_id":"1509214","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1509214"},{"reference_url":"https://security.archlinux.org/ASA-201710-29","reference_id":"ASA-201710-29","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201710-29"},{"reference_url":"https://security.archlinux.org/AVG-443","reference_id":"AVG-443","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-443"},{"reference_url":"https://security.gentoo.org/glsa/201711-05","reference_id":"GLSA-201711-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201711-05"},{"reference_url":"https://usn.ubuntu.com/3456-1/","reference_id":"USN-3456-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3456-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136465?format=json","purl":"pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2017-12176"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-umsv-cu6y-r7dy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/6452?format=json","vulnerability_id":"VCID-vdf6-wkbk-37hb","summary":"arbitrary code execution","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12177.json","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12177.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2017-12177","reference_id":"","reference_type":"","scores":[{"value":"0.00944","scoring_system":"epss","scoring_elements":"0.76655","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00944","scoring_system":"epss","scoring_elements":"0.76685","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2017-12177"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.6","scoring_system":"cvssv2","scoring_elements":"AV:N/AC:H/Au:S/C:P/I:P/A:P"},{"value":"5.6","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1509218","reference_id":"1509218","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1509218"},{"reference_url":"https://security.archlinux.org/ASA-201710-29","reference_id":"ASA-201710-29","reference_type":"","scores":[],"url":"https://security.archlinux.org/ASA-201710-29"},{"reference_url":"https://security.archlinux.org/AVG-443","reference_id":"AVG-443","reference_type":"","scores":[{"value":"High","scoring_system":"archlinux","scoring_elements":""}],"url":"https://security.archlinux.org/AVG-443"},{"reference_url":"https://security.gentoo.org/glsa/201711-05","reference_id":"GLSA-201711-05","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201711-05"},{"reference_url":"https://usn.ubuntu.com/3456-1/","reference_id":"USN-3456-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/3456-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136465?format=json","purl":"pkg:deb/debian/xorg-server@2:1.19.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2017-12177"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vdf6-wkbk-37hb"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/73009?format=json","vulnerability_id":"VCID-vs7d-ydc7-w7ec","summary":"xorg: xmayland: Use-after-free in XPresentNotify structure creation","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-62229.json","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-62229.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-62229","reference_id":"","reference_type":"","scores":[{"value":"0.00016","scoring_system":"epss","scoring_elements":"0.03906","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-62229"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62229","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62229"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://lists.x.org/archives/xorg-announce/2025-October/003635.html","reference_id":"003635.html","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/"}],"url":"https://lists.x.org/archives/xorg-announce/2025-October/003635.html"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2402649","reference_id":"2402649","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2402649"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb","reference_id":"cpe:/a:redhat:enterprise_linux:8::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:9::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb","reference_id":"cpe:/a:redhat:enterprise_linux:9::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:9.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb","reference_id":"cpe:/a:redhat:rhel_eus:9.4::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_eus_long_life:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0","reference_id":"cpe:/o:redhat:enterprise_linux:10.0","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1","reference_id":"cpe:/o:redhat:enterprise_linux:10.1","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6","reference_id":"cpe:/o:redhat:rhel_els:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7","reference_id":"cpe:/o:redhat:rhel_els:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2025-62229","reference_id":"CVE-2025-62229","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2025-62229"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:19432","reference_id":"RHSA-2025:19432","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:19432"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:19433","reference_id":"RHSA-2025:19433","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:19433"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:19434","reference_id":"RHSA-2025:19434","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:19434"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:19435","reference_id":"RHSA-2025:19435","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:19435"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:19489","reference_id":"RHSA-2025:19489","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:19489"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:19623","reference_id":"RHSA-2025:19623","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:19623"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:19909","reference_id":"RHSA-2025:19909","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:19909"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:20958","reference_id":"RHSA-2025:20958","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:20958"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:20960","reference_id":"RHSA-2025:20960","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:20960"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:20961","reference_id":"RHSA-2025:20961","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:20961"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:21035","reference_id":"RHSA-2025:21035","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:21035"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22040","reference_id":"RHSA-2025:22040","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22040"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22041","reference_id":"RHSA-2025:22041","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22041"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22051","reference_id":"RHSA-2025:22051","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22051"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22055","reference_id":"RHSA-2025:22055","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22055"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22056","reference_id":"RHSA-2025:22056","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22056"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22077","reference_id":"RHSA-2025:22077","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22077"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22096","reference_id":"RHSA-2025:22096","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22096"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22164","reference_id":"RHSA-2025:22164","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22164"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22167","reference_id":"RHSA-2025:22167","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22167"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22364","reference_id":"RHSA-2025:22364","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22364"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22365","reference_id":"RHSA-2025:22365","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22365"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22426","reference_id":"RHSA-2025:22426","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22426"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22427","reference_id":"RHSA-2025:22427","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22427"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22667","reference_id":"RHSA-2025:22667","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22667"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22729","reference_id":"RHSA-2025:22729","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22729"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22742","reference_id":"RHSA-2025:22742","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22742"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:22753","reference_id":"RHSA-2025:22753","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:22753"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0031","reference_id":"RHSA-2026:0031","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:0031"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0033","reference_id":"RHSA-2026:0033","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:0033"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0034","reference_id":"RHSA-2026:0034","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:0034"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0035","reference_id":"RHSA-2026:0035","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:0035"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:0036","reference_id":"RHSA-2026:0036","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:0036"},{"reference_url":"https://usn.ubuntu.com/7846-1/","reference_id":"USN-7846-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7846-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136543?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u17?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u17%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136542?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u11?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u11%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136545?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136544?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.20-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.20-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2025-62229"],"risk_score":3.3,"exploitability":"0.5","weighted_severity":"6.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vs7d-ydc7-w7ec"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106658?format=json","vulnerability_id":"VCID-vscc-4qb3-3fgd","summary":"X.Org X server before 1.13.4 and 1.4.x before 1.14.1 does not properly restrict access to input events when adding a new hot-plug device, which might allow physically proximate attackers to obtain sensitive information, as demonstrated by reading passwords from a tty.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1940.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1940.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-1940","reference_id":"","reference_type":"","scores":[{"value":"0.00079","scoring_system":"epss","scoring_elements":"0.2342","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00079","scoring_system":"epss","scoring_elements":"0.23502","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-1940"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1940","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1940"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=950438","reference_id":"950438","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=950438"},{"reference_url":"https://security.gentoo.org/glsa/201405-07","reference_id":"GLSA-201405-07","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201405-07"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1620","reference_id":"RHSA-2013:1620","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1620"},{"reference_url":"https://usn.ubuntu.com/1803-1/","reference_id":"USN-1803-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1803-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136446?format=json","purl":"pkg:deb/debian/xorg-server@2:1.12.4-6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.12.4-6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2013-1940"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vscc-4qb3-3fgd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106638?format=json","vulnerability_id":"VCID-vv5c-txda-hkfd","summary":"The XInput extension in X.Org Xserver before 1.4.1 allows context-dependent attackers to execute arbitrary code via requests related to byte swapping and heap corruption within multiple functions, a different vulnerability than CVE-2007-4990.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6427.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6427.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-6427","reference_id":"","reference_type":"","scores":[{"value":"0.0424","scoring_system":"epss","scoring_elements":"0.8897","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0424","scoring_system":"epss","scoring_elements":"0.88987","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-6427"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6427","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6427"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=413811","reference_id":"413811","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=413811"},{"reference_url":"https://security.gentoo.org/glsa/200801-09","reference_id":"GLSA-200801-09","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200801-09"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0029","reference_id":"RHSA-2008:0029","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0029"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0030","reference_id":"RHSA-2008:0030","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0030"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0031","reference_id":"RHSA-2008:0031","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0031"},{"reference_url":"https://usn.ubuntu.com/571-1/","reference_id":"USN-571-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/571-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136428?format=json","purl":"pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.1~git20080105-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2007-6427"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vv5c-txda-hkfd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/97615?format=json","vulnerability_id":"VCID-w48c-6a3x-7qhd","summary":"xorg-x11-server: X.Org Server Overlay Window Use-After-Free Local Privilege Escalation Vulnerability","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-1393.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-1393.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-1393","reference_id":"","reference_type":"","scores":[{"value":"0.00093","scoring_system":"epss","scoring_elements":"0.26029","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00093","scoring_system":"epss","scoring_elements":"0.26132","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-1393"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1393","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1393"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://www.openwall.com/lists/oss-security/2023/03/29/1","reference_id":"1","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-14T15:42:21Z/"}],"url":"https://www.openwall.com/lists/oss-security/2023/03/29/1"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2180288","reference_id":"2180288","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2180288"},{"reference_url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/26ef545b3502f61ca722a7a3373507e88ef64110","reference_id":"26ef545b3502f61ca722a7a3373507e88ef64110","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-14T15:42:21Z/"}],"url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/26ef545b3502f61ca722a7a3373507e88ef64110"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BPNQYHUI63DB5FHK6EOI3Z4C6YQZGZKI/","reference_id":"BPNQYHUI63DB5FHK6EOI3Z4C6YQZGZKI","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-14T15:42:21Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BPNQYHUI63DB5FHK6EOI3Z4C6YQZGZKI/"},{"reference_url":"https://security.gentoo.org/glsa/202305-30","reference_id":"GLSA-202305-30","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-14T15:42:21Z/"}],"url":"https://security.gentoo.org/glsa/202305-30"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/H3EVO3OQV6T4BSABWZ2TU3PY5TJTEQZ2/","reference_id":"H3EVO3OQV6T4BSABWZ2TU3PY5TJTEQZ2","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-14T15:42:21Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/H3EVO3OQV6T4BSABWZ2TU3PY5TJTEQZ2/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MEHSYYFGBN3G4RS2HJXKQ5NBMOAZ5F2F/","reference_id":"MEHSYYFGBN3G4RS2HJXKQ5NBMOAZ5F2F","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-14T15:42:21Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MEHSYYFGBN3G4RS2HJXKQ5NBMOAZ5F2F/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NOYATGGPMT3COC7ELAJW5TG2PVS3AFR2/","reference_id":"NOYATGGPMT3COC7ELAJW5TG2PVS3AFR2","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-14T15:42:21Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NOYATGGPMT3COC7ELAJW5TG2PVS3AFR2/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PSAAGI5V77FQXIT5PP4URP6BYQVCK5U5/","reference_id":"PSAAGI5V77FQXIT5PP4URP6BYQVCK5U5","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-14T15:42:21Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PSAAGI5V77FQXIT5PP4URP6BYQVCK5U5/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QHJMSMK7G4GPLMKIGKXIOL2RTKU5VFWE/","reference_id":"QHJMSMK7G4GPLMKIGKXIOL2RTKU5VFWE","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-14T15:42:21Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QHJMSMK7G4GPLMKIGKXIOL2RTKU5VFWE/"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:1548","reference_id":"RHSA-2023:1548","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:1548"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:1549","reference_id":"RHSA-2023:1549","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:1549"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:1551","reference_id":"RHSA-2023:1551","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:1551"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:1592","reference_id":"RHSA-2023:1592","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:1592"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:1594","reference_id":"RHSA-2023:1594","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:1594"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:1598","reference_id":"RHSA-2023:1598","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:1598"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:1599","reference_id":"RHSA-2023:1599","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:1599"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:1600","reference_id":"RHSA-2023:1600","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:1600"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6340","reference_id":"RHSA-2023:6340","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6340"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6341","reference_id":"RHSA-2023:6341","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6341"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6916","reference_id":"RHSA-2023:6916","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6916"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6917","reference_id":"RHSA-2023:6917","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6917"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:12751","reference_id":"RHSA-2025:12751","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:12751"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SW2NRC3V53PIBXFPFBVWCOM2MDDILWQS/","reference_id":"SW2NRC3V53PIBXFPFBVWCOM2MDDILWQS","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-14T15:42:21Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SW2NRC3V53PIBXFPFBVWCOM2MDDILWQS/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SWFUDSBSABRHQOX6TIQ5O3SNPFTPFQQP/","reference_id":"SWFUDSBSABRHQOX6TIQ5O3SNPFTPFQQP","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-14T15:42:21Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SWFUDSBSABRHQOX6TIQ5O3SNPFTPFQQP/"},{"reference_url":"https://usn.ubuntu.com/5986-1/","reference_id":"USN-5986-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5986-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136498?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136496?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2023-1393"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-w48c-6a3x-7qhd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/85253?format=json","vulnerability_id":"VCID-waxn-nrqv-k7ca","summary":"xorg: xwayland: Buffer overflow in XkbChangeTypesOfKey()","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26597.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26597.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-26597","reference_id":"","reference_type":"","scores":[{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.08686","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-26597"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26597","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26597"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906","reference_id":"1098906","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907","reference_id":"1098907","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2345255","reference_id":"2345255","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2345255"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:9::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb","reference_id":"cpe:/a:redhat:enterprise_linux:9::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_eus:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0","reference_id":"cpe:/o:redhat:enterprise_linux:10.0","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8","reference_id":"cpe:/o:redhat:enterprise_linux:8","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6","reference_id":"cpe:/o:redhat:rhel_els:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7","reference_id":"cpe:/o:redhat:rhel_els:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2025-26597","reference_id":"CVE-2025-26597","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2025-26597"},{"reference_url":"https://security.gentoo.org/glsa/202506-04","reference_id":"GLSA-202506-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202506-04"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2500","reference_id":"RHSA-2025:2500","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2500"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2502","reference_id":"RHSA-2025:2502","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2502"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2861","reference_id":"RHSA-2025:2861","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2861"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2862","reference_id":"RHSA-2025:2862","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2862"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2865","reference_id":"RHSA-2025:2865","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2865"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2866","reference_id":"RHSA-2025:2866","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2866"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2873","reference_id":"RHSA-2025:2873","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2873"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2874","reference_id":"RHSA-2025:2874","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2874"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2875","reference_id":"RHSA-2025:2875","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2875"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2879","reference_id":"RHSA-2025:2879","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2879"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2880","reference_id":"RHSA-2025:2880","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2880"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:3976","reference_id":"RHSA-2025:3976","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:3976"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:7163","reference_id":"RHSA-2025:7163","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:7163"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:7165","reference_id":"RHSA-2025:7165","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:7165"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:7458","reference_id":"RHSA-2025:7458","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:7458"},{"reference_url":"https://usn.ubuntu.com/7299-1/","reference_id":"USN-7299-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7299-1/"},{"reference_url":"https://usn.ubuntu.com/7299-2/","reference_id":"USN-7299-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7299-2/"},{"reference_url":"https://usn.ubuntu.com/7299-4/","reference_id":"USN-7299-4","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7299-4/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136526?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u15?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u15%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136525?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u9?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u9%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136527?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2025-26597"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-waxn-nrqv-k7ca"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106649?format=json","vulnerability_id":"VCID-wgpc-s7x8-77at","summary":"xvfb-run 1.6.1 in Debian GNU/Linux, Ubuntu, Fedora 10, and possibly other operating systems place the magic cookie (MCOOKIE) on the command line, which allows local users to gain privileges by listing the process and its arguments.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1573.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1573.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-1573","reference_id":"","reference_type":"","scores":[{"value":"0.00071","scoring_system":"epss","scoring_elements":"0.21736","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00071","scoring_system":"epss","scoring_elements":"0.21817","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-1573"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1573","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1573"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=499234","reference_id":"499234","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=499234"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=526678","reference_id":"526678","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=526678"},{"reference_url":"https://usn.ubuntu.com/939-1/","reference_id":"USN-939-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/939-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136436?format=json","purl":"pkg:deb/debian/xorg-server@2:1.6.1.901-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.6.1.901-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2009-1573"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wgpc-s7x8-77at"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/99575?format=json","vulnerability_id":"VCID-wrkb-mwhv-wqcc","summary":"xorg-x11-server: ScreenSaverSetAttributes use-after-free","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46343.json","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46343.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-46343","reference_id":"","reference_type":"","scores":[{"value":"0.01059","scoring_system":"epss","scoring_elements":"0.77974","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01059","scoring_system":"epss","scoring_elements":"0.78001","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-46343"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4283","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4283"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46340","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46340"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46341","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46341"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46342","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46342"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46343","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46343"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46344","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46344"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071","reference_id":"1026071","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2151758","reference_id":"2151758","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:13:50Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2151758"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2/","reference_id":"5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:13:50Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2/"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2022-46343","reference_id":"CVE-2022-46343","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:13:50Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2022-46343"},{"reference_url":"https://www.debian.org/security/2022/dsa-5304","reference_id":"dsa-5304","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:13:50Z/"}],"url":"https://www.debian.org/security/2022/dsa-5304"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G/","reference_id":"DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:13:50Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G/"},{"reference_url":"https://security.gentoo.org/glsa/202305-30","reference_id":"GLSA-202305-30","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:13:50Z/"}],"url":"https://security.gentoo.org/glsa/202305-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0045","reference_id":"RHSA-2023:0045","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0045"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:0046","reference_id":"RHSA-2023:0046","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:0046"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2248","reference_id":"RHSA-2023:2248","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2248"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2249","reference_id":"RHSA-2023:2249","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2249"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2257","reference_id":"RHSA-2023:2257","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2257"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2805","reference_id":"RHSA-2023:2805","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2805"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2806","reference_id":"RHSA-2023:2806","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2806"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:2830","reference_id":"RHSA-2023:2830","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:2830"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:12751","reference_id":"RHSA-2025:12751","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:12751"},{"reference_url":"https://usn.ubuntu.com/5778-1/","reference_id":"USN-5778-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5778-1/"},{"reference_url":"https://usn.ubuntu.com/5778-2/","reference_id":"USN-5778-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/5778-2/"},{"reference_url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z67QC4C3I2FI2WRFIUPEHKC36J362MLA/","reference_id":"Z67QC4C3I2FI2WRFIUPEHKC36J362MLA","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:13:50Z/"}],"url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z67QC4C3I2FI2WRFIUPEHKC36J362MLA/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136489?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136488?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.5-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.5-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2022-46343"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"7.9","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wrkb-mwhv-wqcc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/91497?format=json","vulnerability_id":"VCID-wv2b-584d-uyc2","summary":"xorg-x11-server: Heap buffer overflow in DeviceFocusEvent and ProcXIQueryPointer","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6816.json","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6816.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-6816","reference_id":"","reference_type":"","scores":[{"value":"0.03015","scoring_system":"epss","scoring_elements":"0.86878","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-6816"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6816","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6816"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0408","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0408"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0409","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0409"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21885","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21885"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21886","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21886"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"8.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2257691","reference_id":"2257691","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2257691"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb","reference_id":"cpe:/a:redhat:enterprise_linux:8::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:9::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb","reference_id":"cpe:/a:redhat:enterprise_linux:9::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_eus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_eus:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.0::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client","reference_id":"cpe:/o:redhat:enterprise_linux:7::client","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode","reference_id":"cpe:/o:redhat:enterprise_linux:7::computenode","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server","reference_id":"cpe:/o:redhat:enterprise_linux:7::server","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation","reference_id":"cpe:/o:redhat:enterprise_linux:7::workstation","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6","reference_id":"cpe:/o:redhat:rhel_els:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2023-6816","reference_id":"CVE-2023-6816","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2023-6816"},{"reference_url":"https://security.gentoo.org/glsa/202401-30","reference_id":"GLSA-202401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202401-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0320","reference_id":"RHSA-2024:0320","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0320"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0557","reference_id":"RHSA-2024:0557","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0557"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0558","reference_id":"RHSA-2024:0558","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0558"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0597","reference_id":"RHSA-2024:0597","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0597"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0607","reference_id":"RHSA-2024:0607","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0607"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0614","reference_id":"RHSA-2024:0614","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0614"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0617","reference_id":"RHSA-2024:0617","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0617"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0621","reference_id":"RHSA-2024:0621","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0621"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0626","reference_id":"RHSA-2024:0626","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0626"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0629","reference_id":"RHSA-2024:0629","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:0629"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2169","reference_id":"RHSA-2024:2169","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2169"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2170","reference_id":"RHSA-2024:2170","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2170"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2995","reference_id":"RHSA-2024:2995","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2995"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2996","reference_id":"RHSA-2024:2996","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2996"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:12751","reference_id":"RHSA-2025:12751","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:12751"},{"reference_url":"https://usn.ubuntu.com/6587-1/","reference_id":"USN-6587-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6587-1/"},{"reference_url":"https://usn.ubuntu.com/6587-2/","reference_id":"USN-6587-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6587-2/"},{"reference_url":"https://usn.ubuntu.com/6587-5/","reference_id":"USN-6587-5","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6587-5/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136512?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u11?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u11%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136511?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136513?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.11-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.11-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2023-6816"],"risk_score":4.4,"exploitability":"0.5","weighted_severity":"8.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wv2b-584d-uyc2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/92130?format=json","vulnerability_id":"VCID-xg2s-qrvs-ybca","summary":"xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5367.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5367.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-5367","reference_id":"","reference_type":"","scores":[{"value":"0.00064","scoring_system":"epss","scoring_elements":"0.20181","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-5367"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5367","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5367"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5380","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5380"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2243091","reference_id":"2243091","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2243091"},{"reference_url":"https://security.gentoo.org/glsa/202401-30","reference_id":"GLSA-202401-30","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202401-30"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6802","reference_id":"RHSA-2023:6802","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6802"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:6808","reference_id":"RHSA-2023:6808","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:6808"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7373","reference_id":"RHSA-2023:7373","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7373"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7388","reference_id":"RHSA-2023:7388","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7388"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7405","reference_id":"RHSA-2023:7405","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7405"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7428","reference_id":"RHSA-2023:7428","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7428"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7436","reference_id":"RHSA-2023:7436","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7436"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7526","reference_id":"RHSA-2023:7526","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7526"},{"reference_url":"https://access.redhat.com/errata/RHSA-2023:7533","reference_id":"RHSA-2023:7533","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2023:7533"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0010","reference_id":"RHSA-2024:0010","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0010"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:0128","reference_id":"RHSA-2024:0128","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:0128"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2169","reference_id":"RHSA-2024:2169","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2169"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2170","reference_id":"RHSA-2024:2170","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2170"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2995","reference_id":"RHSA-2024:2995","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2995"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2996","reference_id":"RHSA-2024:2996","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2024:2996"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:12751","reference_id":"RHSA-2025:12751","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2025:12751"},{"reference_url":"https://usn.ubuntu.com/6453-1/","reference_id":"USN-6453-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6453-1/"},{"reference_url":"https://usn.ubuntu.com/6453-2/","reference_id":"USN-6453-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6453-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136500?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u8?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u8%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136499?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136502?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.9-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.9-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2023-5367"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xg2s-qrvs-ybca"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/85258?format=json","vulnerability_id":"VCID-xq35-8sqg-9fcf","summary":"xorg: xwayland: Heap overflow in XkbWriteKeySyms()","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26596.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26596.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-26596","reference_id":"","reference_type":"","scores":[{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.08686","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-26596"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26596","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26596"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906","reference_id":"1098906","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907","reference_id":"1098907","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2345256","reference_id":"2345256","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2345256"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:9::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb","reference_id":"cpe:/a:redhat:enterprise_linux:9::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_eus:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0","reference_id":"cpe:/o:redhat:enterprise_linux:10.0","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8","reference_id":"cpe:/o:redhat:enterprise_linux:8","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6","reference_id":"cpe:/o:redhat:rhel_els:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7","reference_id":"cpe:/o:redhat:rhel_els:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2025-26596","reference_id":"CVE-2025-26596","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2025-26596"},{"reference_url":"https://security.gentoo.org/glsa/202506-04","reference_id":"GLSA-202506-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202506-04"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2500","reference_id":"RHSA-2025:2500","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2500"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2502","reference_id":"RHSA-2025:2502","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2502"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2861","reference_id":"RHSA-2025:2861","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2861"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2862","reference_id":"RHSA-2025:2862","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2862"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2865","reference_id":"RHSA-2025:2865","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2865"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2866","reference_id":"RHSA-2025:2866","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2866"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2873","reference_id":"RHSA-2025:2873","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2873"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2874","reference_id":"RHSA-2025:2874","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2874"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2875","reference_id":"RHSA-2025:2875","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2875"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2879","reference_id":"RHSA-2025:2879","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2879"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2880","reference_id":"RHSA-2025:2880","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2880"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:3976","reference_id":"RHSA-2025:3976","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:3976"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:7163","reference_id":"RHSA-2025:7163","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:7163"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:7165","reference_id":"RHSA-2025:7165","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:7165"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:7458","reference_id":"RHSA-2025:7458","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:7458"},{"reference_url":"https://usn.ubuntu.com/7299-1/","reference_id":"USN-7299-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7299-1/"},{"reference_url":"https://usn.ubuntu.com/7299-2/","reference_id":"USN-7299-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7299-2/"},{"reference_url":"https://usn.ubuntu.com/7299-4/","reference_id":"USN-7299-4","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7299-4/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136526?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u15?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u15%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136525?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u9?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u9%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136527?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2025-26596"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-xq35-8sqg-9fcf"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/85240?format=json","vulnerability_id":"VCID-y5rf-aq67-nbcd","summary":"xorg: xwayland: Use-after-free in SyncInitTrigger()","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26601.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26601.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-26601","reference_id":"","reference_type":"","scores":[{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.08686","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-26601"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26601","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26601"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906","reference_id":"1098906","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907","reference_id":"1098907","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2345251","reference_id":"2345251","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2345251"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:9::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb","reference_id":"cpe:/a:redhat:enterprise_linux:9::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_eus:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0","reference_id":"cpe:/o:redhat:enterprise_linux:10.0","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8","reference_id":"cpe:/o:redhat:enterprise_linux:8","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6","reference_id":"cpe:/o:redhat:rhel_els:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7","reference_id":"cpe:/o:redhat:rhel_els:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2025-26601","reference_id":"CVE-2025-26601","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2025-26601"},{"reference_url":"https://security.gentoo.org/glsa/202506-04","reference_id":"GLSA-202506-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202506-04"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2500","reference_id":"RHSA-2025:2500","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2500"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2502","reference_id":"RHSA-2025:2502","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2502"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2861","reference_id":"RHSA-2025:2861","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2861"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2862","reference_id":"RHSA-2025:2862","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2862"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2865","reference_id":"RHSA-2025:2865","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2865"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2866","reference_id":"RHSA-2025:2866","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2866"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2873","reference_id":"RHSA-2025:2873","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2873"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2874","reference_id":"RHSA-2025:2874","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2874"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2875","reference_id":"RHSA-2025:2875","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2875"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2879","reference_id":"RHSA-2025:2879","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2879"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2880","reference_id":"RHSA-2025:2880","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2880"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:3976","reference_id":"RHSA-2025:3976","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:3976"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:7163","reference_id":"RHSA-2025:7163","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:7163"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:7165","reference_id":"RHSA-2025:7165","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:7165"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:7458","reference_id":"RHSA-2025:7458","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:7458"},{"reference_url":"https://usn.ubuntu.com/7299-1/","reference_id":"USN-7299-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7299-1/"},{"reference_url":"https://usn.ubuntu.com/7299-2/","reference_id":"USN-7299-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7299-2/"},{"reference_url":"https://usn.ubuntu.com/7299-4/","reference_id":"USN-7299-4","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7299-4/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136526?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u15?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u15%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136525?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u9?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u9%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136527?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2025-26601"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-y5rf-aq67-nbcd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/85246?format=json","vulnerability_id":"VCID-yqg5-wy1b-hfgx","summary":"xorg: xwayland: Use of uninitialized pointer in compRedirectWindow()","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26599.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26599.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-26599","reference_id":"","reference_type":"","scores":[{"value":"0.00029","scoring_system":"epss","scoring_elements":"0.08686","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-26599"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26599","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26599"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906","reference_id":"1098906","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907","reference_id":"1098907","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2345253","reference_id":"2345253","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2345253"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:9::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb","reference_id":"cpe:/a:redhat:enterprise_linux:9::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_eus:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0","reference_id":"cpe:/o:redhat:enterprise_linux:10.0","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8","reference_id":"cpe:/o:redhat:enterprise_linux:8","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6","reference_id":"cpe:/o:redhat:rhel_els:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7","reference_id":"cpe:/o:redhat:rhel_els:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2025-26599","reference_id":"CVE-2025-26599","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2025-26599"},{"reference_url":"https://security.gentoo.org/glsa/202506-04","reference_id":"GLSA-202506-04","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202506-04"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2500","reference_id":"RHSA-2025:2500","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2500"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2502","reference_id":"RHSA-2025:2502","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2502"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2861","reference_id":"RHSA-2025:2861","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2861"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2862","reference_id":"RHSA-2025:2862","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2862"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2865","reference_id":"RHSA-2025:2865","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2865"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2866","reference_id":"RHSA-2025:2866","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2866"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2873","reference_id":"RHSA-2025:2873","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2873"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2874","reference_id":"RHSA-2025:2874","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2874"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2875","reference_id":"RHSA-2025:2875","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2875"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2879","reference_id":"RHSA-2025:2879","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2879"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:2880","reference_id":"RHSA-2025:2880","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:2880"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:3976","reference_id":"RHSA-2025:3976","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:3976"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:7163","reference_id":"RHSA-2025:7163","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:7163"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:7165","reference_id":"RHSA-2025:7165","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:7165"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:7458","reference_id":"RHSA-2025:7458","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:7458"},{"reference_url":"https://usn.ubuntu.com/7299-1/","reference_id":"USN-7299-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7299-1/"},{"reference_url":"https://usn.ubuntu.com/7299-2/","reference_id":"USN-7299-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7299-2/"},{"reference_url":"https://usn.ubuntu.com/7299-4/","reference_id":"USN-7299-4","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7299-4/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136526?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u15?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u15%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136525?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u9?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u9%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136527?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2025-26599"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-yqg5-wy1b-hfgx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106671?format=json","vulnerability_id":"VCID-ys3e-5jfb-dfez","summary":"The Render extension in XFree86 4.0.1, X.Org X Window System (aka X11 or X) X11R6.7, and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) ProcRenderQueryVersion, (2) SProcRenderQueryVersion, (3) SProcRenderQueryPictFormats, (4) SProcRenderQueryPictIndexValues, (5) SProcRenderCreatePicture, (6) SProcRenderChangePicture, (7) SProcRenderSetPictureClipRectangles, (8) SProcRenderFreePicture, (9) SProcRenderComposite, (10) SProcRenderScale, (11) SProcRenderCreateGlyphSet, (12) SProcRenderReferenceGlyphSet, (13) SProcRenderFreeGlyphSet, (14) SProcRenderFreeGlyphs, or (15) SProcRenderCompositeGlyphs function.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8100.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8100.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8100","reference_id":"","reference_type":"","scores":[{"value":"0.01297","scoring_system":"epss","scoring_elements":"0.80046","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01297","scoring_system":"epss","scoring_elements":"0.80071","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8100"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168711","reference_id":"1168711","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168711"},{"reference_url":"https://security.gentoo.org/glsa/201504-06","reference_id":"GLSA-201504-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201504-06"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1982","reference_id":"RHSA-2014:1982","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1982"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1983","reference_id":"RHSA-2014:1983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1983"},{"reference_url":"https://usn.ubuntu.com/2436-1/","reference_id":"USN-2436-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2436-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136451?format=json","purl":"pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.2.901-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2014-8100"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ys3e-5jfb-dfez"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/90717?format=json","vulnerability_id":"VCID-z2sj-4r7t-3ycm","summary":"xorg-x11-server: Heap buffer overread/data leakage in ProcXIGetSelectedEvents","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31080.json","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31080.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-31080","reference_id":"","reference_type":"","scores":[{"value":"0.00123","scoring_system":"epss","scoring_elements":"0.31047","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-31080"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31080","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31080"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31081","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31081"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31083","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31083"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.6","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2271997","reference_id":"2271997","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2271997"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb","reference_id":"cpe:/a:redhat:enterprise_linux:8::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:9::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb","reference_id":"cpe:/a:redhat:enterprise_linux:9::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_eus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_eus:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.0::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10","reference_id":"cpe:/o:redhat:enterprise_linux:10","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client","reference_id":"cpe:/o:redhat:enterprise_linux:7::client","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode","reference_id":"cpe:/o:redhat:enterprise_linux:7::computenode","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server","reference_id":"cpe:/o:redhat:enterprise_linux:7::server","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation","reference_id":"cpe:/o:redhat:enterprise_linux:7::workstation","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6","reference_id":"cpe:/o:redhat:rhel_els:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2024-31080","reference_id":"CVE-2024-31080","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2024-31080"},{"reference_url":"https://security.gentoo.org/glsa/202411-08","reference_id":"GLSA-202411-08","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/202411-08"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:1785","reference_id":"RHSA-2024:1785","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:1785"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2036","reference_id":"RHSA-2024:2036","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2036"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2037","reference_id":"RHSA-2024:2037","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2037"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2038","reference_id":"RHSA-2024:2038","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2038"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2039","reference_id":"RHSA-2024:2039","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2039"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2040","reference_id":"RHSA-2024:2040","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2040"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2041","reference_id":"RHSA-2024:2041","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2041"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2042","reference_id":"RHSA-2024:2042","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2042"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2080","reference_id":"RHSA-2024:2080","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2080"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:2616","reference_id":"RHSA-2024:2616","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:2616"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3258","reference_id":"RHSA-2024:3258","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:3258"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3261","reference_id":"RHSA-2024:3261","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:3261"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:3343","reference_id":"RHSA-2024:3343","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:3343"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9093","reference_id":"RHSA-2024:9093","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:9093"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:9122","reference_id":"RHSA-2024:9122","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:9122"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:12751","reference_id":"RHSA-2025:12751","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:12751"},{"reference_url":"https://usn.ubuntu.com/6721-1/","reference_id":"USN-6721-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6721-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136519?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136520?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.11-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.11-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2024-31080"],"risk_score":3.3,"exploitability":"0.5","weighted_severity":"6.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-z2sj-4r7t-3ycm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/80512?format=json","vulnerability_id":"VCID-z6tv-7fmc-13bw","summary":"xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Integer Overflow in X Resize, Rotate and Reflect (RandR) Extension","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49180.json","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49180.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-49180","reference_id":"","reference_type":"","scores":[{"value":"0.00147","scoring_system":"epss","scoring_elements":"0.34831","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-49180"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49180","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49180"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369","reference_id":"1108369","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2369981","reference_id":"2369981","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2369981"},{"reference_url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/3c3a4b767b16174d3213055947ea7f4f88e10ec6","reference_id":"3c3a4b767b16174d3213055947ea7f4f88e10ec6","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/"}],"url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/3c3a4b767b16174d3213055947ea7f4f88e10ec6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb","reference_id":"cpe:/a:redhat:enterprise_linux:8::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:9::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb","reference_id":"cpe:/a:redhat:enterprise_linux:9::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:9.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb","reference_id":"cpe:/a:redhat:rhel_eus:9.4::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_eus_long_life:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_eus_long_life:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_eus_long_life:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0","reference_id":"cpe:/o:redhat:enterprise_linux:10.0","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:7.7::server","reference_id":"cpe:/o:redhat:rhel_aus:7.7::server","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:7.7::server"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6","reference_id":"cpe:/o:redhat:rhel_els:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7","reference_id":"cpe:/o:redhat:rhel_els:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2025-49180","reference_id":"CVE-2025-49180","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2025-49180"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10258","reference_id":"RHSA-2025:10258","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10258"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10342","reference_id":"RHSA-2025:10342","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10342"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10343","reference_id":"RHSA-2025:10343","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10343"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10344","reference_id":"RHSA-2025:10344","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10344"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10346","reference_id":"RHSA-2025:10346","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10346"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10347","reference_id":"RHSA-2025:10347","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10347"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10348","reference_id":"RHSA-2025:10348","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10348"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10349","reference_id":"RHSA-2025:10349","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10349"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10350","reference_id":"RHSA-2025:10350","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10350"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10351","reference_id":"RHSA-2025:10351","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10351"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10352","reference_id":"RHSA-2025:10352","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10352"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10355","reference_id":"RHSA-2025:10355","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10355"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10356","reference_id":"RHSA-2025:10356","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10356"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10360","reference_id":"RHSA-2025:10360","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10360"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10370","reference_id":"RHSA-2025:10370","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10370"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10374","reference_id":"RHSA-2025:10374","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10374"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10375","reference_id":"RHSA-2025:10375","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10375"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10376","reference_id":"RHSA-2025:10376","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10376"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10377","reference_id":"RHSA-2025:10377","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10377"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10378","reference_id":"RHSA-2025:10378","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10378"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10381","reference_id":"RHSA-2025:10381","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10381"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10410","reference_id":"RHSA-2025:10410","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10410"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9303","reference_id":"RHSA-2025:9303","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:9303"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9304","reference_id":"RHSA-2025:9304","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:9304"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9305","reference_id":"RHSA-2025:9305","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:9305"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9306","reference_id":"RHSA-2025:9306","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:9306"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9392","reference_id":"RHSA-2025:9392","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:9392"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9964","reference_id":"RHSA-2025:9964","reference_type":"","scores":[{"value":"7.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:9964"},{"reference_url":"https://usn.ubuntu.com/7573-1/","reference_id":"USN-7573-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7573-1/"},{"reference_url":"https://usn.ubuntu.com/7573-2/","reference_id":"USN-7573-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7573-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136533?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u16?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u16%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136532?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u10%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136535?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2025-49180"],"risk_score":3.5,"exploitability":"0.5","weighted_severity":"7.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-z6tv-7fmc-13bw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/80381?format=json","vulnerability_id":"VCID-zb61-sksa-e3c5","summary":"xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Out-of-Bounds Read in X Rendering Extension Animated Cursors","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49175.json","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49175.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-49175","reference_id":"","reference_type":"","scores":[{"value":"0.00212","scoring_system":"epss","scoring_elements":"0.43788","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-49175"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49175","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49175"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/0885e0b26225c90534642fe911632ec0779eebee","reference_id":"0885e0b26225c90534642fe911632ec0779eebee","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/"}],"url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/0885e0b26225c90534642fe911632ec0779eebee"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369","reference_id":"1108369","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369"},{"reference_url":"https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/2024","reference_id":"2024","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/"}],"url":"https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/2024"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2369947","reference_id":"2369947","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2369947"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb","reference_id":"cpe:/a:redhat:enterprise_linux:8::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:9::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb","reference_id":"cpe:/a:redhat:enterprise_linux:9::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_aus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:9.0::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream","reference_id":"cpe:/a:redhat:rhel_e4s:9.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb","reference_id":"cpe:/a:redhat:rhel_eus:9.4::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream","reference_id":"cpe:/a:redhat:rhel_eus_long_life:8.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_eus_long_life:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_eus_long_life:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream","reference_id":"cpe:/a:redhat:rhel_tus:8.8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0","reference_id":"cpe:/o:redhat:enterprise_linux:10.0","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:7.7::server","reference_id":"cpe:/o:redhat:rhel_aus:7.7::server","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:7.7::server"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6","reference_id":"cpe:/o:redhat:rhel_els:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7","reference_id":"cpe:/o:redhat:rhel_els:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2025-49175","reference_id":"CVE-2025-49175","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2025-49175"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10258","reference_id":"RHSA-2025:10258","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10258"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10342","reference_id":"RHSA-2025:10342","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10342"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10343","reference_id":"RHSA-2025:10343","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10343"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10344","reference_id":"RHSA-2025:10344","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10344"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10346","reference_id":"RHSA-2025:10346","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10346"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10347","reference_id":"RHSA-2025:10347","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10347"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10348","reference_id":"RHSA-2025:10348","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10348"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10349","reference_id":"RHSA-2025:10349","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10349"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10350","reference_id":"RHSA-2025:10350","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10350"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10351","reference_id":"RHSA-2025:10351","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10351"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10352","reference_id":"RHSA-2025:10352","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10352"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10355","reference_id":"RHSA-2025:10355","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10355"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10356","reference_id":"RHSA-2025:10356","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10356"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10360","reference_id":"RHSA-2025:10360","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10360"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10370","reference_id":"RHSA-2025:10370","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10370"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10374","reference_id":"RHSA-2025:10374","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10374"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10375","reference_id":"RHSA-2025:10375","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10375"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10376","reference_id":"RHSA-2025:10376","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10376"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10377","reference_id":"RHSA-2025:10377","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10377"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10378","reference_id":"RHSA-2025:10378","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10378"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10381","reference_id":"RHSA-2025:10381","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10381"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10410","reference_id":"RHSA-2025:10410","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10410"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9303","reference_id":"RHSA-2025:9303","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:9303"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9304","reference_id":"RHSA-2025:9304","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:9304"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9305","reference_id":"RHSA-2025:9305","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:9305"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9306","reference_id":"RHSA-2025:9306","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:9306"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9392","reference_id":"RHSA-2025:9392","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:9392"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9964","reference_id":"RHSA-2025:9964","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:9964"},{"reference_url":"https://www.x.org/wiki/Development/Security/","reference_id":"Security","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/"}],"url":"https://www.x.org/wiki/Development/Security/"},{"reference_url":"https://usn.ubuntu.com/7573-1/","reference_id":"USN-7573-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7573-1/"},{"reference_url":"https://usn.ubuntu.com/7573-2/","reference_id":"USN-7573-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7573-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136533?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u16?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u16%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136532?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u10%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136535?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2025-49175"],"risk_score":2.8,"exploitability":"0.5","weighted_severity":"5.5","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zb61-sksa-e3c5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106669?format=json","vulnerability_id":"VCID-zckq-n5gm-3qb9","summary":"The GLX extension in XFree86 4.0, X.Org X Window System (aka X11 or X) X11R6.7, and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) __glXDisp_Render, (2) __glXDisp_RenderLarge, (3) __glXDispSwap_VendorPrivate, (4) __glXDispSwap_VendorPrivateWithReply, (5) set_client_info, (6) __glXDispSwap_SetClientInfoARB, (7) DoSwapInterval, (8) DoGetProgramString, (9) DoGetString, (10) __glXDispSwap_RenderMode, (11) __glXDisp_GetCompressedTexImage, (12) __glXDispSwap_GetCompressedTexImage, (13) __glXDisp_FeedbackBuffer, (14) __glXDispSwap_FeedbackBuffer, (15) __glXDisp_SelectBuffer, (16) __glXDispSwap_SelectBuffer, (17) __glXDisp_Flush, (18) __glXDispSwap_Flush, (19) __glXDisp_Finish, (20) __glXDispSwap_Finish, (21) __glXDisp_ReadPixels, (22) __glXDispSwap_ReadPixels, (23) __glXDisp_GetTexImage, (24) __glXDispSwap_GetTexImage, (25) __glXDisp_GetPolygonStipple, (26) __glXDispSwap_GetPolygonStipple, (27) __glXDisp_GetSeparableFilter, (28) __glXDisp_GetSeparableFilterEXT, (29) __glXDisp_GetConvolutionFilter, (30) __glXDisp_GetConvolutionFilterEXT, (31) __glXDisp_GetHistogram, (32) __glXDisp_GetHistogramEXT, (33) __glXDisp_GetMinmax, (34) __glXDisp_GetMinmaxEXT, (35) __glXDisp_GetColorTable, (36) __glXDisp_GetColorTableSGI, (37) GetSeparableFilter, (38) GetConvolutionFilter, (39) GetHistogram, (40) GetMinmax, or (41) GetColorTable function.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8098.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8098.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8098","reference_id":"","reference_type":"","scores":[{"value":"0.0101","scoring_system":"epss","scoring_elements":"0.77443","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0101","scoring_system":"epss","scoring_elements":"0.77471","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8098"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168707","reference_id":"1168707","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168707"},{"reference_url":"https://security.gentoo.org/glsa/201504-06","reference_id":"GLSA-201504-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201504-06"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1982","reference_id":"RHSA-2014:1982","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1982"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1983","reference_id":"RHSA-2014:1983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1983"},{"reference_url":"https://usn.ubuntu.com/2436-1/","reference_id":"USN-2436-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2436-1/"},{"reference_url":"https://usn.ubuntu.com/2438-1/","reference_id":"USN-2438-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2438-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136451?format=json","purl":"pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.2.901-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2014-8098"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zckq-n5gm-3qb9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106627?format=json","vulnerability_id":"VCID-zen3-5wz9-jyff","summary":"Buffer overflow in the X render (Xrender) extension in X.org X server 6.8.0 up to allows attackers to cause a denial of service (crash), as demonstrated by the (1) XRenderCompositeTriStrip and (2) XRenderCompositeTriFan requests in the rendertest from XCB xcb/xcb-demo, which leads to an incorrect memory allocation due to a typo in an expression that uses a \"&\" instead of a \"*\" operator. NOTE: the subject line of the original announcement used an incorrect CVE number for this issue.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-1526.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2006-1526.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2006-1526","reference_id":"","reference_type":"","scores":[{"value":"0.00443","scoring_system":"epss","scoring_elements":"0.63626","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00443","scoring_system":"epss","scoring_elements":"0.63668","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2006-1526"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1526","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1526"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1618042","reference_id":"1618042","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1618042"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=378464","reference_id":"378464","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=378464"},{"reference_url":"https://security.gentoo.org/glsa/200605-02","reference_id":"GLSA-200605-02","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/200605-02"},{"reference_url":"https://access.redhat.com/errata/RHSA-2006:0451","reference_id":"RHSA-2006:0451","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2006:0451"},{"reference_url":"https://usn.ubuntu.com/280-1/","reference_id":"USN-280-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/280-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136415?format=json","purl":"pkg:deb/debian/xorg-server@1:1.0.2-8?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@1:1.0.2-8%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2006-1526"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zen3-5wz9-jyff"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106663?format=json","vulnerability_id":"VCID-zh42-3rck-93he","summary":"Multiple integer overflows in the GLX extension in XFree86 4.0, X.Org X Window System (aka X11 or X) X11R6.7, and X.Org Server (aka xserver and xorg-server) before 1.16.3 allow remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted request to the (1) __glXDisp_ReadPixels, (2) __glXDispSwap_ReadPixels, (3) __glXDisp_GetTexImage, (4) __glXDispSwap_GetTexImage, (5) GetSeparableFilter, (6) GetConvolutionFilter, (7) GetHistogram, (8) GetMinmax, (9) GetColorTable, (10) __glXGetAnswerBuffer, (11) __GLX_GET_ANSWER_BUFFER, (12) __glXMap1dReqSize, (13) __glXMap1fReqSize, (14) Map2Size, (15) __glXMap2dReqSize, (16) __glXMap2fReqSize, (17) __glXImageSize, or (18) __glXSeparableFilter2DReqSize function, which triggers an out-of-bounds read or write.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8093.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8093.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8093","reference_id":"","reference_type":"","scores":[{"value":"0.01297","scoring_system":"epss","scoring_elements":"0.80046","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01297","scoring_system":"epss","scoring_elements":"0.80071","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168688","reference_id":"1168688","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168688"},{"reference_url":"https://security.gentoo.org/glsa/201504-06","reference_id":"GLSA-201504-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201504-06"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1982","reference_id":"RHSA-2014:1982","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1982"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1983","reference_id":"RHSA-2014:1983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1983"},{"reference_url":"https://usn.ubuntu.com/2436-1/","reference_id":"USN-2436-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2436-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136451?format=json","purl":"pkg:deb/debian/xorg-server@2:1.16.2.901-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.2.901-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2014-8093"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zh42-3rck-93he"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/80439?format=json","vulnerability_id":"VCID-zuaj-1yvr-sug9","summary":"xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Data Leak in XFIXES Extension's XFixesSetClientDisconnectMode","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49177.json","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"}],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49177.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2025-49177","reference_id":"","reference_type":"","scores":[{"value":"0.00087","scoring_system":"epss","scoring_elements":"0.25102","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2025-49177"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369","reference_id":"1108369","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2369955","reference_id":"2369955","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:57:08Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2369955"},{"reference_url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/ab02fb96b1c701c3bb47617d965522c34befa6af","reference_id":"ab02fb96b1c701c3bb47617d965522c34befa6af","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:57:08Z/"}],"url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/ab02fb96b1c701c3bb47617d965522c34befa6af"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:9::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb","reference_id":"cpe:/a:redhat:enterprise_linux:9::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.4::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0","reference_id":"cpe:/o:redhat:enterprise_linux:10.0","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7","reference_id":"cpe:/o:redhat:enterprise_linux:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8","reference_id":"cpe:/o:redhat:enterprise_linux:8","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9","reference_id":"cpe:/o:redhat:enterprise_linux:9","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2025-49177","reference_id":"CVE-2025-49177","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:57:08Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2025-49177"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:10258","reference_id":"RHSA-2025:10258","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:57:08Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:10258"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9303","reference_id":"RHSA-2025:9303","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:57:08Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:9303"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:9304","reference_id":"RHSA-2025:9304","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:57:08Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:9304"},{"reference_url":"https://www.x.org/wiki/Development/Security/","reference_id":"Security","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:57:08Z/"}],"url":"https://www.x.org/wiki/Development/Security/"},{"reference_url":"https://usn.ubuntu.com/7573-1/","reference_id":"USN-7573-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/7573-1/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/136437?format=json","purl":"pkg:deb/debian/xorg-server@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136409?format=json","purl":"pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-8mr3-m631-ykff"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-mksc-f652-2qcd"},{"vulnerability":"VCID-mux3-jggq-bqej"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-ucf1-81as-eucj"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-xsha-wn9z-4fg2"},{"vulnerability":"VCID-ydth-wf4d-zugb"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136532?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u10%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136407?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-abhy-pfqz-efa2"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136535?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136413?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.16-1.3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136410?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.22-1?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2uvb-wkwb-jbbf"},{"vulnerability":"VCID-5zrz-y3fm-4uet"},{"vulnerability":"VCID-62xy-rm39-mqge"},{"vulnerability":"VCID-csqc-7j51-x7bb"},{"vulnerability":"VCID-epmv-hj44-2bhq"},{"vulnerability":"VCID-nynt-8cpp-27fe"},{"vulnerability":"VCID-wsp6-uyxx-53hf"},{"vulnerability":"VCID-zdwz-bgk3-fqdj"},{"vulnerability":"VCID-zsm3-vywn-pkej"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.22-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/136412?format=json","purl":"pkg:deb/debian/xorg-server@2:21.1.23-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.23-1%3Fdistro=trixie"}],"aliases":["CVE-2025-49177"],"risk_score":2.8,"exploitability":"0.5","weighted_severity":"5.5","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zuaj-1yvr-sug9"}],"risk_score":"3.5","resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13%3Fdistro=trixie"}