{"url":"http://public2.vulnerablecode.io/api/packages/174971?format=json","purl":"pkg:rpm/redhat/xorg-x11-server@1.15.0-7.el7_0?arch=3","type":"rpm","namespace":"redhat","name":"xorg-x11-server","version":"1.15.0-7.el7_0","qualifiers":{"arch":"3"},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106675?format=json","vulnerability_id":"VCID-24mx-tgrf-nqa8","summary":"The SProcXFixesSelectSelectionInput function in the XFixes extension in X.Org X Window System (aka X11 or X) X11R6.8.0 and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length value.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8102.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8102.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8102","reference_id":"","reference_type":"","scores":[{"value":"0.01115","scoring_system":"epss","scoring_elements":"0.78527","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01115","scoring_system":"epss","scoring_elements":"0.78553","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01115","scoring_system":"epss","scoring_elements":"0.78561","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01115","scoring_system":"epss","scoring_elements":"0.78552","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01115","scoring_system":"epss","scoring_elements":"0.78539","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8102"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168714","reference_id":"1168714","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168714"},{"reference_url":"https://security.gentoo.org/glsa/201504-06","reference_id":"GLSA-201504-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201504-06"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1982","reference_id":"RHSA-2014:1982","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1982"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1983","reference_id":"RHSA-2014:1983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1983"},{"reference_url":"https://usn.ubuntu.com/2436-1/","reference_id":"USN-2436-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2436-1/"}],"fixed_packages":[],"aliases":["CVE-2014-8102"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-24mx-tgrf-nqa8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106670?format=json","vulnerability_id":"VCID-47qj-hd74-27h7","summary":"The XVideo extension in XFree86 4.0.0, X.Org X Window System (aka X11 or X) X11R6.7, and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) SProcXvQueryExtension, (2) SProcXvQueryAdaptors, (3) SProcXvQueryEncodings, (4) SProcXvGrabPort, (5) SProcXvUngrabPort, (6) SProcXvPutVideo, (7) SProcXvPutStill, (8) SProcXvGetVideo, (9) SProcXvGetStill, (10) SProcXvPutImage, (11) SProcXvShmPutImage, (12) SProcXvSelectVideoNotify, (13) SProcXvSelectPortNotify, (14) SProcXvStopVideo, (15) SProcXvSetPortAttribute, (16) SProcXvGetPortAttribute, (17) SProcXvQueryBestSize, (18) SProcXvQueryPortAttributes, (19) SProcXvQueryImageAttributes, or (20) SProcXvListImageFormats function.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8099.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8099.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8099","reference_id":"","reference_type":"","scores":[{"value":"0.01337","scoring_system":"epss","scoring_elements":"0.80329","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01337","scoring_system":"epss","scoring_elements":"0.80354","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01337","scoring_system":"epss","scoring_elements":"0.80357","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01337","scoring_system":"epss","scoring_elements":"0.80353","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01337","scoring_system":"epss","scoring_elements":"0.80347","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8099"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168710","reference_id":"1168710","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168710"},{"reference_url":"https://security.gentoo.org/glsa/201504-06","reference_id":"GLSA-201504-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201504-06"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1982","reference_id":"RHSA-2014:1982","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1982"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1983","reference_id":"RHSA-2014:1983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1983"},{"reference_url":"https://usn.ubuntu.com/2436-1/","reference_id":"USN-2436-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2436-1/"}],"fixed_packages":[],"aliases":["CVE-2014-8099"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-47qj-hd74-27h7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106677?format=json","vulnerability_id":"VCID-8k3e-h7va-myfg","summary":"X.Org Server (aka xserver and xorg-server) 1.15.0 through 1.16.x before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) sproc_dri3_query_version, (2) sproc_dri3_open, (3) sproc_dri3_pixmap_from_buffer, (4) sproc_dri3_buffer_from_pixmap, (5) sproc_dri3_fence_from_fd, (6) sproc_dri3_fd_from_fence, (7) proc_present_query_capabilities, (8) sproc_present_query_version, (9) sproc_present_pixmap, (10) sproc_present_notify_msc, (11) sproc_present_select_input, or (12) sproc_present_query_capabilities function in the (a) DRI3 or (b) Present extension.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8103.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8103.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8103","reference_id":"","reference_type":"","scores":[{"value":"0.01787","scoring_system":"epss","scoring_elements":"0.83079","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01787","scoring_system":"epss","scoring_elements":"0.83106","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01787","scoring_system":"epss","scoring_elements":"0.83103","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01787","scoring_system":"epss","scoring_elements":"0.83095","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8103"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8103","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8103"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168716","reference_id":"1168716","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168716"},{"reference_url":"https://security.gentoo.org/glsa/201504-06","reference_id":"GLSA-201504-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201504-06"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1983","reference_id":"RHSA-2014:1983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1983"},{"reference_url":"https://usn.ubuntu.com/2436-1/","reference_id":"USN-2436-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2436-1/"}],"fixed_packages":[],"aliases":["CVE-2014-8103"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8k3e-h7va-myfg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106668?format=json","vulnerability_id":"VCID-8unb-tn3a-abe3","summary":"The DBE extension in X.Org X Window System (aka X11 or X) X11R6.1 and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) ProcDbeSwapBuffers or (2) SProcDbeSwapBuffers function.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8097.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8097.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8097","reference_id":"","reference_type":"","scores":[{"value":"0.01297","scoring_system":"epss","scoring_elements":"0.80046","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01297","scoring_system":"epss","scoring_elements":"0.80071","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01297","scoring_system":"epss","scoring_elements":"0.80076","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01297","scoring_system":"epss","scoring_elements":"0.8007","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01297","scoring_system":"epss","scoring_elements":"0.80061","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8097"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168705","reference_id":"1168705","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168705"},{"reference_url":"https://security.gentoo.org/glsa/201504-06","reference_id":"GLSA-201504-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201504-06"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1982","reference_id":"RHSA-2014:1982","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1982"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1983","reference_id":"RHSA-2014:1983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1983"},{"reference_url":"https://usn.ubuntu.com/2436-1/","reference_id":"USN-2436-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2436-1/"}],"fixed_packages":[],"aliases":["CVE-2014-8097"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-8unb-tn3a-abe3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106665?format=json","vulnerability_id":"VCID-9k4g-mc81-tffe","summary":"Integer overflow in the ProcDRI2GetBuffers function in the DRI2 extension in X.Org Server (aka xserver and xorg-server) 1.7.0 through 1.16.x before 1.16.3 allows remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted request, which triggers an out-of-bounds read or write.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8094.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8094.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8094","reference_id":"","reference_type":"","scores":[{"value":"0.01042","scoring_system":"epss","scoring_elements":"0.77789","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01042","scoring_system":"epss","scoring_elements":"0.77816","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01042","scoring_system":"epss","scoring_elements":"0.77823","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01042","scoring_system":"epss","scoring_elements":"0.77813","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01042","scoring_system":"epss","scoring_elements":"0.77803","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168691","reference_id":"1168691","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168691"},{"reference_url":"https://security.gentoo.org/glsa/201504-06","reference_id":"GLSA-201504-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201504-06"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1983","reference_id":"RHSA-2014:1983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1983"},{"reference_url":"https://usn.ubuntu.com/2436-1/","reference_id":"USN-2436-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2436-1/"}],"fixed_packages":[],"aliases":["CVE-2014-8094"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9k4g-mc81-tffe"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106672?format=json","vulnerability_id":"VCID-9kj6-9etk-uudg","summary":"The RandR extension in XFree86 4.2.0, X.Org X Window System (aka X11 or X) X11R6.7, and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) SProcRRQueryVersion, (2) SProcRRGetScreenInfo, (3) SProcRRSelectInput, or (4) SProcRRConfigureOutputProperty function.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8101.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8101.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8101","reference_id":"","reference_type":"","scores":[{"value":"0.01269","scoring_system":"epss","scoring_elements":"0.79818","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01269","scoring_system":"epss","scoring_elements":"0.79843","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01269","scoring_system":"epss","scoring_elements":"0.79849","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01269","scoring_system":"epss","scoring_elements":"0.79844","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01269","scoring_system":"epss","scoring_elements":"0.79833","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8101"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168713","reference_id":"1168713","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168713"},{"reference_url":"https://security.gentoo.org/glsa/201504-06","reference_id":"GLSA-201504-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201504-06"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1982","reference_id":"RHSA-2014:1982","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1982"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1983","reference_id":"RHSA-2014:1983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1983"},{"reference_url":"https://usn.ubuntu.com/2436-1/","reference_id":"USN-2436-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2436-1/"}],"fixed_packages":[],"aliases":["CVE-2014-8101"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9kj6-9etk-uudg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106666?format=json","vulnerability_id":"VCID-bny6-pyf6-k3ht","summary":"The XInput extension in X.Org X Window System (aka X11 or X) X11R4 and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) SProcXChangeDeviceControl, (2) ProcXChangeDeviceControl, (3) ProcXChangeFeedbackControl, (4) ProcXSendExtensionEvent, (5) SProcXIAllowEvents, (6) SProcXIChangeCursor, (7) ProcXIChangeHierarchy, (8) SProcXIGetClientPointer, (9) SProcXIGrabDevice, (10) SProcXIUngrabDevice, (11) ProcXIUngrabDevice, (12) SProcXIPassiveGrabDevice, (13) ProcXIPassiveGrabDevice, (14) SProcXIPassiveUngrabDevice, (15) ProcXIPassiveUngrabDevice, (16) SProcXListDeviceProperties, (17) SProcXDeleteDeviceProperty, (18) SProcXIListProperties, (19) SProcXIDeleteProperty, (20) SProcXIGetProperty, (21) SProcXIQueryDevice, (22) SProcXIQueryPointer, (23) SProcXISelectEvents, (24) SProcXISetClientPointer, (25) SProcXISetFocus, (26) SProcXIGetFocus, or (27) SProcXIWarpPointer function.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8095.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8095.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8095","reference_id":"","reference_type":"","scores":[{"value":"0.01115","scoring_system":"epss","scoring_elements":"0.78527","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01115","scoring_system":"epss","scoring_elements":"0.78553","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01115","scoring_system":"epss","scoring_elements":"0.78561","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01115","scoring_system":"epss","scoring_elements":"0.78552","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01115","scoring_system":"epss","scoring_elements":"0.78539","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8095"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168694","reference_id":"1168694","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168694"},{"reference_url":"https://security.gentoo.org/glsa/201504-06","reference_id":"GLSA-201504-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201504-06"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1982","reference_id":"RHSA-2014:1982","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1982"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1983","reference_id":"RHSA-2014:1983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1983"},{"reference_url":"https://usn.ubuntu.com/2436-1/","reference_id":"USN-2436-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2436-1/"}],"fixed_packages":[],"aliases":["CVE-2014-8095"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-bny6-pyf6-k3ht"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106661?format=json","vulnerability_id":"VCID-dbns-h674-n7gm","summary":"X.Org X Window System (aka X11 and X) X11R5 and X.Org Server (aka xserver and xorg-server) before 1.16.3, when using SUN-DES-1 (Secure RPC) authentication credentials, does not check the return value of a malloc call, which allows remote attackers to cause a denial of service (NULL pointer dereference and server crash) via a crafted connection request.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8091.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8091.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8091","reference_id":"","reference_type":"","scores":[{"value":"0.04839","scoring_system":"epss","scoring_elements":"0.89707","published_at":"2026-06-04T12:55:00Z"},{"value":"0.04839","scoring_system":"epss","scoring_elements":"0.89724","published_at":"2026-06-05T12:55:00Z"},{"value":"0.04839","scoring_system":"epss","scoring_elements":"0.89727","published_at":"2026-06-06T12:55:00Z"},{"value":"0.04839","scoring_system":"epss","scoring_elements":"0.89726","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8091"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168680","reference_id":"1168680","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168680"},{"reference_url":"https://security.gentoo.org/glsa/201504-06","reference_id":"GLSA-201504-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201504-06"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1982","reference_id":"RHSA-2014:1982","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1982"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1983","reference_id":"RHSA-2014:1983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1983"},{"reference_url":"https://usn.ubuntu.com/2436-1/","reference_id":"USN-2436-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2436-1/"},{"reference_url":"https://usn.ubuntu.com/2438-1/","reference_id":"USN-2438-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2438-1/"}],"fixed_packages":[],"aliases":["CVE-2014-8091"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-dbns-h674-n7gm"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106662?format=json","vulnerability_id":"VCID-fdrh-s6h2-buhk","summary":"Multiple integer overflows in X.Org X Window System (aka X11 or X) X11R1 and X.Org Server (aka xserver and xorg-server) before 1.16.3 allow remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted request to the (1) ProcPutImage, (2) GetHosts, (3) RegionSizeof, or (4) REQUEST_FIXED_SIZE function, which triggers an out-of-bounds read or write.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8092.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8092.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8092","reference_id":"","reference_type":"","scores":[{"value":"0.01293","scoring_system":"epss","scoring_elements":"0.80018","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01293","scoring_system":"epss","scoring_elements":"0.80044","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01293","scoring_system":"epss","scoring_elements":"0.80049","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01293","scoring_system":"epss","scoring_elements":"0.80043","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01293","scoring_system":"epss","scoring_elements":"0.80033","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168684","reference_id":"1168684","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168684"},{"reference_url":"https://security.gentoo.org/glsa/201504-06","reference_id":"GLSA-201504-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201504-06"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1982","reference_id":"RHSA-2014:1982","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1982"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1983","reference_id":"RHSA-2014:1983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1983"},{"reference_url":"https://usn.ubuntu.com/2436-1/","reference_id":"USN-2436-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2436-1/"}],"fixed_packages":[],"aliases":["CVE-2014-8092"],"risk_score":1.7,"exploitability":"0.5","weighted_severity":"3.4","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fdrh-s6h2-buhk"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106667?format=json","vulnerability_id":"VCID-jt46-r94m-v7er","summary":"The SProcXCMiscGetXIDList function in the XC-MISC extension in X.Org X Window System (aka X11 or X) X11R6.0 and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8096.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8096.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8096","reference_id":"","reference_type":"","scores":[{"value":"0.01014","scoring_system":"epss","scoring_elements":"0.7749","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01014","scoring_system":"epss","scoring_elements":"0.77517","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01014","scoring_system":"epss","scoring_elements":"0.77526","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01014","scoring_system":"epss","scoring_elements":"0.77506","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8096"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168700","reference_id":"1168700","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168700"},{"reference_url":"https://security.gentoo.org/glsa/201504-06","reference_id":"GLSA-201504-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201504-06"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1982","reference_id":"RHSA-2014:1982","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1982"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1983","reference_id":"RHSA-2014:1983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1983"},{"reference_url":"https://usn.ubuntu.com/2436-1/","reference_id":"USN-2436-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2436-1/"}],"fixed_packages":[],"aliases":["CVE-2014-8096"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jt46-r94m-v7er"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106671?format=json","vulnerability_id":"VCID-ys3e-5jfb-dfez","summary":"The Render extension in XFree86 4.0.1, X.Org X Window System (aka X11 or X) X11R6.7, and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) ProcRenderQueryVersion, (2) SProcRenderQueryVersion, (3) SProcRenderQueryPictFormats, (4) SProcRenderQueryPictIndexValues, (5) SProcRenderCreatePicture, (6) SProcRenderChangePicture, (7) SProcRenderSetPictureClipRectangles, (8) SProcRenderFreePicture, (9) SProcRenderComposite, (10) SProcRenderScale, (11) SProcRenderCreateGlyphSet, (12) SProcRenderReferenceGlyphSet, (13) SProcRenderFreeGlyphSet, (14) SProcRenderFreeGlyphs, or (15) SProcRenderCompositeGlyphs function.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8100.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8100.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8100","reference_id":"","reference_type":"","scores":[{"value":"0.01297","scoring_system":"epss","scoring_elements":"0.80046","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01297","scoring_system":"epss","scoring_elements":"0.80071","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01297","scoring_system":"epss","scoring_elements":"0.80076","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01297","scoring_system":"epss","scoring_elements":"0.8007","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01297","scoring_system":"epss","scoring_elements":"0.80061","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8100"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168711","reference_id":"1168711","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168711"},{"reference_url":"https://security.gentoo.org/glsa/201504-06","reference_id":"GLSA-201504-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201504-06"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1982","reference_id":"RHSA-2014:1982","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1982"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1983","reference_id":"RHSA-2014:1983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1983"},{"reference_url":"https://usn.ubuntu.com/2436-1/","reference_id":"USN-2436-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2436-1/"}],"fixed_packages":[],"aliases":["CVE-2014-8100"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ys3e-5jfb-dfez"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106669?format=json","vulnerability_id":"VCID-zckq-n5gm-3qb9","summary":"The GLX extension in XFree86 4.0, X.Org X Window System (aka X11 or X) X11R6.7, and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) __glXDisp_Render, (2) __glXDisp_RenderLarge, (3) __glXDispSwap_VendorPrivate, (4) __glXDispSwap_VendorPrivateWithReply, (5) set_client_info, (6) __glXDispSwap_SetClientInfoARB, (7) DoSwapInterval, (8) DoGetProgramString, (9) DoGetString, (10) __glXDispSwap_RenderMode, (11) __glXDisp_GetCompressedTexImage, (12) __glXDispSwap_GetCompressedTexImage, (13) __glXDisp_FeedbackBuffer, (14) __glXDispSwap_FeedbackBuffer, (15) __glXDisp_SelectBuffer, (16) __glXDispSwap_SelectBuffer, (17) __glXDisp_Flush, (18) __glXDispSwap_Flush, (19) __glXDisp_Finish, (20) __glXDispSwap_Finish, (21) __glXDisp_ReadPixels, (22) __glXDispSwap_ReadPixels, (23) __glXDisp_GetTexImage, (24) __glXDispSwap_GetTexImage, (25) __glXDisp_GetPolygonStipple, (26) __glXDispSwap_GetPolygonStipple, (27) __glXDisp_GetSeparableFilter, (28) __glXDisp_GetSeparableFilterEXT, (29) __glXDisp_GetConvolutionFilter, (30) __glXDisp_GetConvolutionFilterEXT, (31) __glXDisp_GetHistogram, (32) __glXDisp_GetHistogramEXT, (33) __glXDisp_GetMinmax, (34) __glXDisp_GetMinmaxEXT, (35) __glXDisp_GetColorTable, (36) __glXDisp_GetColorTableSGI, (37) GetSeparableFilter, (38) GetConvolutionFilter, (39) GetHistogram, (40) GetMinmax, or (41) GetColorTable function.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8098.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8098.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8098","reference_id":"","reference_type":"","scores":[{"value":"0.0101","scoring_system":"epss","scoring_elements":"0.77443","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0101","scoring_system":"epss","scoring_elements":"0.77471","published_at":"2026-06-07T12:55:00Z"},{"value":"0.0101","scoring_system":"epss","scoring_elements":"0.7748","published_at":"2026-06-06T12:55:00Z"},{"value":"0.0101","scoring_system":"epss","scoring_elements":"0.7746","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8098"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168707","reference_id":"1168707","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168707"},{"reference_url":"https://security.gentoo.org/glsa/201504-06","reference_id":"GLSA-201504-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201504-06"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1982","reference_id":"RHSA-2014:1982","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1982"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1983","reference_id":"RHSA-2014:1983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1983"},{"reference_url":"https://usn.ubuntu.com/2436-1/","reference_id":"USN-2436-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2436-1/"},{"reference_url":"https://usn.ubuntu.com/2438-1/","reference_id":"USN-2438-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2438-1/"}],"fixed_packages":[],"aliases":["CVE-2014-8098"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zckq-n5gm-3qb9"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/106663?format=json","vulnerability_id":"VCID-zh42-3rck-93he","summary":"Multiple integer overflows in the GLX extension in XFree86 4.0, X.Org X Window System (aka X11 or X) X11R6.7, and X.Org Server (aka xserver and xorg-server) before 1.16.3 allow remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted request to the (1) __glXDisp_ReadPixels, (2) __glXDispSwap_ReadPixels, (3) __glXDisp_GetTexImage, (4) __glXDispSwap_GetTexImage, (5) GetSeparableFilter, (6) GetConvolutionFilter, (7) GetHistogram, (8) GetMinmax, (9) GetColorTable, (10) __glXGetAnswerBuffer, (11) __GLX_GET_ANSWER_BUFFER, (12) __glXMap1dReqSize, (13) __glXMap1fReqSize, (14) Map2Size, (15) __glXMap2dReqSize, (16) __glXMap2fReqSize, (17) __glXImageSize, or (18) __glXSeparableFilter2DReqSize function, which triggers an out-of-bounds read or write.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8093.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8093.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8093","reference_id":"","reference_type":"","scores":[{"value":"0.01297","scoring_system":"epss","scoring_elements":"0.80046","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01297","scoring_system":"epss","scoring_elements":"0.80071","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01297","scoring_system":"epss","scoring_elements":"0.80076","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01297","scoring_system":"epss","scoring_elements":"0.8007","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01297","scoring_system":"epss","scoring_elements":"0.80061","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2014-8093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168688","reference_id":"1168688","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1168688"},{"reference_url":"https://security.gentoo.org/glsa/201504-06","reference_id":"GLSA-201504-06","reference_type":"","scores":[],"url":"https://security.gentoo.org/glsa/201504-06"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1982","reference_id":"RHSA-2014:1982","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1982"},{"reference_url":"https://access.redhat.com/errata/RHSA-2014:1983","reference_id":"RHSA-2014:1983","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2014:1983"},{"reference_url":"https://usn.ubuntu.com/2436-1/","reference_id":"USN-2436-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2436-1/"}],"fixed_packages":[],"aliases":["CVE-2014-8093"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zh42-3rck-93he"}],"fixing_vulnerabilities":[],"risk_score":"1.7","resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/xorg-x11-server@1.15.0-7.el7_0%3Farch=3"}