X.org X Server Local Multiple Security Vulnerabilities

X.org X Server is prone to the following multiple security vulnerabilities.

1. A local privilege-escalation vulnerability

2. A local use-after-free vulnerability

3. Multiple security-bypass vulnerabilities

Attackers can exploit these issues to bypass certain security restrictions and perform unauthorized actions or gain elevated privileges. Failed exploit attempts will likely cause denial-of-service conditions.

Information

Bugtraq ID: 96480
Class: Boundary Condition Error
CVE: CVE-2017-2624
CVE-2017-2625
CVE-2017-2626

Remote: No
Local: Yes
Published: Feb 28 2017 12:00AM
Updated: Apr 14 2017 01:06AM
Credit: X41 D-Sec GmbH.
Vulnerable: X.org X Server 1.19
X.org X Server 1.17.1
X.org X Server 1.17
X.org X Server 1.16.4
X.org X Server 1.16.3
X.org X Server 1.11.2
X.org X Server 1.11.1
X.org X Server 1.11
X.org X Server 1.1.2
X.org X Server 1.0.9
X.org X Server 1.15.0
X.org X Server 1.14.4
X.org X Server 1.14.3
X.org X Server 1.14.2
Gentoo Linux

Not Vulnerable:

References:

• X.org Home Page (X.org)
  
• Multiple Vulnerabilities in X.org (X41-Dsec)
  

Source: www.securityfocus.com