← Back to CVEs

CVE-2017-13721

N/A

Description

In X.Org Server (aka xserver and xorg-server) before 1.19.4, an attacker authenticated to an X server with the X shared memory extension enabled can cause aborts of the X server or replace shared memory segments of other X clients in the same session.

CVE Details

CVSS v3.1 ScoreN/A

Published10/10/2017

Last Modified8/29/2025

Sourcenvd

Honeypot Sightings0

Affected Products

debian:debian_linuxx.org:x_server

Weaknesses (CWE)

CWE-269

References

http://www.debian.org/security/2017/dsa-4000(cve@mitre.org)

http://www.openwall.com/lists/oss-security/2017/10/04/10(cve@mitre.org)

http://www.securityfocus.com/bid/101238(cve@mitre.org)

https://cgit.freedesktop.org/xorg/xserver/commit/?id=b95f25af141d33a65f6f821ea9c003f66a01e1f1(cve@mitre.org)

https://lists.x.org/archives/xorg-announce/2017-October/002808.html(cve@mitre.org)

https://security.gentoo.org/glsa/201710-30(cve@mitre.org)

http://www.debian.org/security/2017/dsa-4000(af854a3a-2127-422b-91ae-364da2661108)

http://www.openwall.com/lists/oss-security/2017/10/04/10(af854a3a-2127-422b-91ae-364da2661108)

http://www.securityfocus.com/bid/101238(af854a3a-2127-422b-91ae-364da2661108)

https://cgit.freedesktop.org/xorg/xserver/commit/?id=b95f25af141d33a65f6f821ea9c003f66a01e1f1(af854a3a-2127-422b-91ae-364da2661108)

https://lists.x.org/archives/xorg-announce/2017-October/002808.html(af854a3a-2127-422b-91ae-364da2661108)

https://security.gentoo.org/glsa/201710-30(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.