{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2014-12-09T00:00:00", "descriptions": [{"lang": "en", "value": "Integer overflow in the ProcDRI2GetBuffers function in the DRI2 extension in X.Org Server (aka xserver and xorg-server) 1.7.0 through 1.16.x before 1.16.3 allows remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted request, which triggers an out-of-bounds read or write."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2016-12-30T16:57:01", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat"}, "references": [{"name": "DSA-3095", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2014/dsa-3095"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.x.org/wiki/Development/Security/Advisory-2014-12-09/"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://advisories.mageia.org/MGASA-2014-0532.html"}, {"name": "GLSA-201504-06", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "https://security.gentoo.org/glsa/201504-06"}, {"name": "71601", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/71601"}, {"name": "62292", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/62292"}, {"name": "MDVSA-2015:119", "tags": ["vendor-advisory", "x_refsource_MANDRIVA"], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:119"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html"}, {"name": "61947", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/61947"}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T13:10:49.952Z"}, "title": "CVE Program Container", "references": [{"name": "DSA-3095", "tags": ["vendor-advisory", "x_refsource_DEBIAN", "x_transferred"], "url": "http://www.debian.org/security/2014/dsa-3095"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.x.org/wiki/Development/Security/Advisory-2014-12-09/"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://advisories.mageia.org/MGASA-2014-0532.html"}, {"name": "GLSA-201504-06", "tags": ["vendor-advisory", "x_refsource_GENTOO", "x_transferred"], "url": "https://security.gentoo.org/glsa/201504-06"}, {"name": "71601", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/71601"}, {"name": "62292", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/62292"}, {"name": "MDVSA-2015:119", "tags": ["vendor-advisory", "x_refsource_MANDRIVA", "x_transferred"], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:119"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html"}, {"name": "61947", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/61947"}]}]}, "cveMetadata": {"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2014-8094", "datePublished": "2014-12-10T15:00:00", "dateReserved": "2014-10-10T00:00:00", "dateUpdated": "2024-08-06T13:10:49.952Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:x.org:xorg-server:1.7.0:*:*:*:*:*:*:*", "matchCriteriaId": "1DA192AB-DA6E-49C5-9ED0-544DA8907B70", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.7.0.901:*:*:*:*:*:*:*", "matchCriteriaId": "376D03CB-EF4D-48A0-82FA-2ADB2943FE29", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.7.0.902:*:*:*:*:*:*:*", "matchCriteriaId": "83169E1F-EC22-4566-B517-58CBCC67DE3E", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.7.1:*:*:*:*:*:*:*", "matchCriteriaId": "8F776F89-A2BF-4648-AF4A-7A393F8A8B3F", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.7.1.901:*:*:*:*:*:*:*", "matchCriteriaId": "28C61F30-7720-4005-98F0-E93ABF81F5A0", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.7.1.902:*:*:*:*:*:*:*", "matchCriteriaId": "B25C7FEA-810B-46E2-B41B-10E1BB811DB8", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.7.2:*:*:*:*:*:*:*", "matchCriteriaId": "AAF4F8EF-D260-4F54-A826-FB50BA3E9712", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.7.2.901:*:*:*:*:*:*:*", "matchCriteriaId": "77191995-F392-4C2E-B939-B4F5807B675E", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.7.2.902:*:*:*:*:*:*:*", "matchCriteriaId": "6CD26C79-5A14-4EB9-9500-050CD71636E3", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.7.3:*:*:*:*:*:*:*", "matchCriteriaId": "168E8F83-3BB5-4F0A-9527-B6378A677D2E", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.7.3.901:*:*:*:*:*:*:*", "matchCriteriaId": "17829D65-C8A2-4945-85C6-5104889FC324", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.7.3.902:*:*:*:*:*:*:*", "matchCriteriaId": "C66576DD-E5CF-40FF-B23A-3CC6F1448CD3", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.7.4:*:*:*:*:*:*:*", "matchCriteriaId": "FD20BDCF-CC7D-489E-8BA8-F32857FFB4D4", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.7.4.901:*:*:*:*:*:*:*", "matchCriteriaId": "EBFF847A-A845-4949-A2FF-69C1596705B2", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.7.4.902:*:*:*:*:*:*:*", "matchCriteriaId": "D993E17C-2593-4588-8A93-ED2622E205F1", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.7.5:*:*:*:*:*:*:*", "matchCriteriaId": "636497ED-4F8B-4CF0-A0CE-81D23C27CB11", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.7.5.901:*:*:*:*:*:*:*", "matchCriteriaId": "A65E5207-B323-4A0D-9B0E-196CCD06A8B1", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.7.5.902:*:*:*:*:*:*:*", "matchCriteriaId": "22A5CEE9-7C64-48B6-9CFA-1EB582F2CAF9", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.7.6:*:*:*:*:*:*:*", "matchCriteriaId": "6FBE4EE8-A0C8-4694-98DD-D154C9507EC7", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.7.6.901:*:*:*:*:*:*:*", "matchCriteriaId": "B36539B6-C99E-48E7-AC6B-7C03FD3510B8", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.7.6.902:*:*:*:*:*:*:*", "matchCriteriaId": "9773DD6B-84E0-4414-A3A6-BC493236C44F", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.7.7:*:*:*:*:*:*:*", "matchCriteriaId": "16D54A40-39ED-4CDE-87C0-67013E2E2D84", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.7.99.1:*:*:*:*:*:*:*", "matchCriteriaId": "4E2A3791-9547-4247-B091-749EBA24381F", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.7.99.2:*:*:*:*:*:*:*", "matchCriteriaId": "B6B0B434-D38B-4FEF-A0AE-9B4958EC48D9", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.7.99.901:*:*:*:*:*:*:*", "matchCriteriaId": "0B37E7FF-FCA5-4882-AB4C-D7C13D57852D", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.7.99.902:*:*:*:*:*:*:*", "matchCriteriaId": "C8B5871C-1F19-445A-A8EC-576CCB07E8AB", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.8.0:*:*:*:*:*:*:*", "matchCriteriaId": "81AAF315-3208-4654-8720-42C847F7EDC8", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.8.0.901:*:*:*:*:*:*:*", "matchCriteriaId": "94AE8A95-2EC0-441C-A4C0-CAF41270339B", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.8.0.902:*:*:*:*:*:*:*", "matchCriteriaId": "8497B643-2934-418E-B077-0C11C6DDDF66", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.8.1:*:*:*:*:*:*:*", "matchCriteriaId": "C7F6179B-FF31-4F29-9A9D-97D674FC2E2F", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.8.1.901:*:*:*:*:*:*:*", "matchCriteriaId": "A9E1FA89-4354-4FEB-AEC6-F6942CD4CEBC", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.8.1.902:*:*:*:*:*:*:*", "matchCriteriaId": "C27389C5-DA3E-4627-861A-3F33FBD02E82", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.8.2:*:*:*:*:*:*:*", "matchCriteriaId": "9B40E2A6-8215-41CB-90C6-067750F73BE2", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.8.2.901:*:*:*:*:*:*:*", "matchCriteriaId": "D9C98C96-3198-40D2-959D-1777EFC0CA1A", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.8.2.902:*:*:*:*:*:*:*", "matchCriteriaId": "D6F21167-5E28-4867-A643-E2FED17DD831", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.8.99.901:*:*:*:*:*:*:*", "matchCriteriaId": "941CBBF1-2738-4BAE-8BA2-E896A8A4024C", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.8.99.902:*:*:*:*:*:*:*", "matchCriteriaId": "1650B26A-9CDE-4699-9D7D-D4B9B852857F", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.8.99.903:*:*:*:*:*:*:*", "matchCriteriaId": "B317F562-2E14-44AD-98F8-4397461F0F7C", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.8.99.904:*:*:*:*:*:*:*", "matchCriteriaId": "8B2480BE-AEA9-4802-9025-7E86B94EF286", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.8.99.905:*:*:*:*:*:*:*", "matchCriteriaId": "3A60D2AC-0B70-4BAA-BE20-E02C0310F55C", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.9.0:*:*:*:*:*:*:*", "matchCriteriaId": "3781CFBF-8FD9-46D9-85FC-5307DB6CB6E0", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.9.0.901:*:*:*:*:*:*:*", "matchCriteriaId": "2565FA37-4C91-4F35-B1CF-735E2BB37C2B", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.9.0.902:*:*:*:*:*:*:*", "matchCriteriaId": "2EE18EBF-7267-40E2-80A6-D66A5A9A8930", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.9.1:*:*:*:*:*:*:*", "matchCriteriaId": "0A294FAC-7710-45C1-8DD1-1E4BE32C3C27", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.9.2:*:*:*:*:*:*:*", "matchCriteriaId": "9AFF3BA8-AC25-4EA7-96F0-A2BB25CE74D2", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.9.2.901:*:*:*:*:*:*:*", "matchCriteriaId": "F48BD2B4-93E1-46DD-A85F-B3EC704FDC25", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.9.2.902:*:*:*:*:*:*:*", "matchCriteriaId": "14600376-1272-4449-B2D1-5DCC233E014A", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.9.3:*:*:*:*:*:*:*", "matchCriteriaId": "B50FED77-F9EB-4E53-AF48-6D30314F28B9", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.9.3.901:*:*:*:*:*:*:*", "matchCriteriaId": "1D4A0C97-9C7D-4486-B216-7243335EF2FB", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.9.3.902:*:*:*:*:*:*:*", "matchCriteriaId": "BD1BB706-0500-414D-A319-447D48C20097", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.9.4:*:*:*:*:*:*:*", "matchCriteriaId": "A6B3C73B-ABFB-4850-8B26-32A2C2986417", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.9.4.901:*:*:*:*:*:*:*", "matchCriteriaId": "B5EEEAF8-1F39-40C2-BE81-AD19C880D018", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.9.5:*:*:*:*:*:*:*", "matchCriteriaId": "75F952B7-2B6E-4D4B-B96E-F7482A133E8F", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.9.99.901:*:*:*:*:*:*:*", "matchCriteriaId": "BAF3A816-BD9B-4211-8801-3C7884079BC2", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.9.99.902:*:*:*:*:*:*:*", "matchCriteriaId": "935363D0-B9FC-4766-B9D7-F4F5C3F65CEE", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.9.99.903:*:*:*:*:*:*:*", "matchCriteriaId": "901196FA-F7E6-49CD-8EC6-C8CFC2CD5D3F", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.10.0:*:*:*:*:*:*:*", "matchCriteriaId": "83DC6692-7D6B-4441-A523-367BC3E87615", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.10.0.901:*:*:*:*:*:*:*", "matchCriteriaId": "EEC9F6C6-D3ED-4598-9485-7B217F3F8E75", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.10.0.902:*:*:*:*:*:*:*", "matchCriteriaId": "44839656-FBCD-405D-BFAD-37EAF3C86934", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.10.1:*:*:*:*:*:*:*", "matchCriteriaId": "362F5E4B-DD7E-40FD-8BBC-D3B9098B6971", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.10.1.901:*:*:*:*:*:*:*", "matchCriteriaId": "AC7B3A13-1A18-4846-917E-D5F405EDC392", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.10.1.902:*:*:*:*:*:*:*", "matchCriteriaId": "EC2612DC-50CD-42BD-885E-5624630F4BF9", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.10.2:*:*:*:*:*:*:*", "matchCriteriaId": "A59249DD-1B26-4A92-866D-83F1C9E155E7", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.10.2.901:*:*:*:*:*:*:*", "matchCriteriaId": "CA4D9202-769D-4258-A63F-993ED424EB98", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.10.2.902:*:*:*:*:*:*:*", "matchCriteriaId": "600DA4F1-5EAB-4561-9B20-E6EA11128C69", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.10.3:*:*:*:*:*:*:*", "matchCriteriaId": "2FECA2DA-16FA-43E7-83ED-D5160DD083FC", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.10.3.901:*:*:*:*:*:*:*", "matchCriteriaId": "5BFC1B46-7739-4071-A925-8EB84C431B41", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.10.3.902:*:*:*:*:*:*:*", "matchCriteriaId": "7C7004C4-1907-4089-B2F2-294371CF2E7E", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.10.4:*:*:*:*:*:*:*", "matchCriteriaId": "9960A238-5042-4149-833A-336FB0D4C324", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.10.6:*:*:*:*:*:*:*", "matchCriteriaId": "B2614B29-D924-4DD0-977C-729789789E33", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.10.99.901:*:*:*:*:*:*:*", "matchCriteriaId": "2194CE77-6455-4377-93D9-65FB08C5BDAA", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.10.99.902:*:*:*:*:*:*:*", "matchCriteriaId": "D9561B4B-59CA-459A-B2B1-98C76B723FE8", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.11.0:*:*:*:*:*:*:*", "matchCriteriaId": "24F5BDB7-41D1-434E-AA55-10E1A4ED3B76", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.11.1:*:*:*:*:*:*:*", "matchCriteriaId": "DC88CA42-5F4B-4499-BAEA-368DE1BB9614", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.11.1.901:*:*:*:*:*:*:*", "matchCriteriaId": "F188EDCB-3199-400F-AF80-14D746F32246", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.11.1.902:*:*:*:*:*:*:*", "matchCriteriaId": "4B1DA20C-0D1F-4325-AF6F-A7C2BBAF9698", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.11.2:*:*:*:*:*:*:*", "matchCriteriaId": "BF5EAAA0-DFD1-492D-ACCC-4887653D2DE8", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.11.2.901:*:*:*:*:*:*:*", "matchCriteriaId": "C7407BCD-9496-4C5C-83F7-0E4AD910C0E7", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.11.2.902:*:*:*:*:*:*:*", "matchCriteriaId": "8FB9494E-C014-4897-8892-8579E907A28E", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.11.3:*:*:*:*:*:*:*", "matchCriteriaId": "F866F761-2D29-473E-B1E8-468632207650", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.11.3.901:*:*:*:*:*:*:*", "matchCriteriaId": "5FB451CC-A40A-47F7-94A9-1B4AB7E3C04F", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.11.3.902:*:*:*:*:*:*:*", "matchCriteriaId": "B32C5613-D9D9-4F9F-B393-A24F102C9748", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.11.4:*:*:*:*:*:*:*", "matchCriteriaId": "BA7D8FD4-8372-42CA-B081-D4E7D4B6F151", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.11.99.1:*:*:*:*:*:*:*", "matchCriteriaId": "672888E1-77CA-4733-94A5-27EC676BBDA5", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.11.99.2:*:*:*:*:*:*:*", "matchCriteriaId": "9845357D-C397-4951-BA0B-89FA493B0DB6", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.11.99.901:*:*:*:*:*:*:*", "matchCriteriaId": "3700AF66-565B-47E1-BD19-C82B5EEA167D", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.11.99.902:*:*:*:*:*:*:*", "matchCriteriaId": "AEF08E1F-CB07-4F9A-BCD0-DB70161997AA", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.11.99.903:*:*:*:*:*:*:*", "matchCriteriaId": "86C2043D-A945-4666-9944-5DE19C37C4D5", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.12.0:*:*:*:*:*:*:*", "matchCriteriaId": "69196671-6AD1-4242-B3A2-89298799895B", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.12.0.901:*:*:*:*:*:*:*", "matchCriteriaId": "9A2249AC-446D-4E29-936D-DD8D25C6B843", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.12.0.902:*:*:*:*:*:*:*", "matchCriteriaId": "FE0F0CD3-133D-451D-90B1-A38E6CBC0023", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.12.1.901:*:*:*:*:*:*:*", "matchCriteriaId": "E4A96CD2-B460-4741-8867-30A1A56F42EA", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.12.1.902:*:*:*:*:*:*:*", "matchCriteriaId": "AD51AA8E-811E-48E7-8F1B-1F64506EF150", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.12.2:*:*:*:*:*:*:*", "matchCriteriaId": "41B084A3-20D1-4F11-9D09-C912BD1DCFDD", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.12.2.901:*:*:*:*:*:*:*", "matchCriteriaId": "3691339E-0F2C-4B83-AB16-6F4732106F33", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.12.2.902:*:*:*:*:*:*:*", "matchCriteriaId": "D4751C35-F64B-49D4-A286-5DAAE78EEF55", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.12.3:*:*:*:*:*:*:*", "matchCriteriaId": "8915F128-05FC-47E9-AEE9-E4B2C2C4A23E", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.12.3.901:*:*:*:*:*:*:*", "matchCriteriaId": "C6F80A00-84E2-496D-9C6D-CD4E507E60FB", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.12.3.902:*:*:*:*:*:*:*", "matchCriteriaId": "292D6488-D24F-4A50-8DA4-9DA0A3112FDA", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.12.4:*:*:*:*:*:*:*", "matchCriteriaId": "B1B5B408-A192-4328-9356-C38B880CCA56", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.12.99.901:*:*:*:*:*:*:*", "matchCriteriaId": "83C26419-E10B-4CFF-86B4-CFEBE1609E45", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.12.99.902:*:*:*:*:*:*:*", "matchCriteriaId": "C35459C0-B0D2-46CF-A86A-E9C5C3522425", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.12.99.903:*:*:*:*:*:*:*", "matchCriteriaId": "3ABB956F-B86B-4E6C-BDE6-62EAA0AC1099", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.12.99.904:*:*:*:*:*:*:*", "matchCriteriaId": "461C5A96-D1CE-4828-B6EA-60346DD99C51", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.12.99.905:*:*:*:*:*:*:*", "matchCriteriaId": "95C19C46-FFAB-49E3-A855-75B33911F764", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.13.0:*:*:*:*:*:*:*", "matchCriteriaId": "51B25131-EC19-4584-973D-FEAD54392993", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.13.0.901:*:*:*:*:*:*:*", "matchCriteriaId": "799626BC-30AB-4408-99B7-E57BB81FA17F", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.13.0.902:*:*:*:*:*:*:*", "matchCriteriaId": "63DEA680-660B-483E-BD38-9320EAF46FF1", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.13.1:*:*:*:*:*:*:*", "matchCriteriaId": "BA88429E-F84F-4F9C-AF5B-43CB19419572", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.13.1.901:*:*:*:*:*:*:*", "matchCriteriaId": "6F4248B2-5DD1-4F45-A321-D5EEFAC33FFF", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.13.2:*:*:*:*:*:*:*", "matchCriteriaId": "5A04E047-4940-457A-842B-9F3CDA9A36EF", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.13.2.901:*:*:*:*:*:*:*", "matchCriteriaId": "FF4DD8BD-9CAF-4878-95DD-1EB17472823F", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.13.2.902:*:*:*:*:*:*:*", "matchCriteriaId": "1B1A06D1-8FA2-4722-A40C-834764831DE6", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.13.3:*:*:*:*:*:*:*", "matchCriteriaId": "CC953F00-C5C5-4192-802E-8662862C1C45", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.13.4:*:*:*:*:*:*:*", "matchCriteriaId": "06703903-326E-4CED-80FB-89E4BCBBA364", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.13.99.901:*:*:*:*:*:*:*", "matchCriteriaId": "5159B6FE-4F07-4524-928A-6965A4A78F6D", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.13.99.902:*:*:*:*:*:*:*", "matchCriteriaId": "6978760D-0AAF-47D8-973E-17DEE6A2E269", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.14.0:*:*:*:*:*:*:*", "matchCriteriaId": "037C7B89-D0AF-499F-9B9D-A6583F2D4DC5", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.14.1:*:*:*:*:*:*:*", "matchCriteriaId": "DD5F02F3-7EF3-453B-B3F9-5936F13C1519", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.14.1.901:*:*:*:*:*:*:*", "matchCriteriaId": "8E664FD5-C629-4C4C-9974-8549EA61592B", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.14.1.902:*:*:*:*:*:*:*", "matchCriteriaId": "5828A8F0-9E3A-4E26-8293-A8226BA7F3DA", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.14.2:*:*:*:*:*:*:*", "matchCriteriaId": "1DA389F8-0356-47BA-B78E-A4639F1AC4A0", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.14.2:rc1:*:*:*:*:*:*", "matchCriteriaId": "7FE50DBF-CEBB-4F31-A67C-8A7E1D6B22CC", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.14.2.901:*:*:*:*:*:*:*", "matchCriteriaId": "65DD8C7E-9630-42DF-B547-C874218980A3", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.14.2.902:*:*:*:*:*:*:*", "matchCriteriaId": "ED793C75-09C9-4385-A490-5D9F53A4A053", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.14.3:*:*:*:*:*:*:*", "matchCriteriaId": "0C2B638C-CB78-4891-8B17-39BA10267ED3", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.14.3.901:*:*:*:*:*:*:*", "matchCriteriaId": "196846C8-6B23-4502-918E-2E6447EEC575", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.14.3.901:rc1:*:*:*:*:*:*", "matchCriteriaId": "1E9EB194-162E-493C-839B-4EC8A5AC9351", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.14.4:*:*:*:*:*:*:*", "matchCriteriaId": "47A8C9A4-7C5F-4EBA-83C9-9D468367ECBA", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.14.4.901:*:*:*:*:*:*:*", "matchCriteriaId": "F22625C4-00F8-4A41-906E-A18B207BB63A", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.14.5:*:*:*:*:*:*:*", "matchCriteriaId": "EF676429-F98A-4624-B471-69687AF732EC", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.14.5.901:*:*:*:*:*:*:*", "matchCriteriaId": "5743F8E4-716B-4C1B-8AF4-747E2B379CA7", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.14.6:*:*:*:*:*:*:*", "matchCriteriaId": "0E6C0220-0A82-4BCE-B2A8-8BA65FA3DCAB", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.14.7:*:*:*:*:*:*:*", "matchCriteriaId": "54056901-E89E-467D-AB1D-4FA2E72F9153", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.14.99.1:*:*:*:*:*:*:*", "matchCriteriaId": "A6B604C8-0E85-4101-A957-52EE0FD0943A", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.14.99.2:*:*:*:*:*:*:*", "matchCriteriaId": "DFBFCDD3-F4F1-4EB9-A1B9-6FC2F1604E6C", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.14.99.3:*:*:*:*:*:*:*", "matchCriteriaId": "859207F9-C59A-49E0-BFE8-D4D5722D8A1A", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.14.99.901:*:*:*:*:*:*:*", "matchCriteriaId": "B977B770-738E-4CEB-BC13-9693EE88EF69", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.14.99.902:*:*:*:*:*:*:*", "matchCriteriaId": "721785DD-7D83-4FDF-B530-66B39816E015", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.14.99.903:*:*:*:*:*:*:*", "matchCriteriaId": "16D4A1D8-EAB5-4840-BD33-F3370BDBAAE4", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.14.99.904:*:*:*:*:*:*:*", "matchCriteriaId": "817CAA17-EA12-4390-BAD0-0E4F7E2ED478", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.14.99.905:*:*:*:*:*:*:*", "matchCriteriaId": "45B1D3CA-8D07-4BF3-A0EE-1F0E9DE218AC", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.15.0:*:*:*:*:*:*:*", "matchCriteriaId": "62C88AC6-67CE-468B-A3C0-15EB3AC8DF76", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.15.0.901:*:*:*:*:*:*:*", "matchCriteriaId": "2CE93B3A-4967-4BB8-BCCA-5B3510519B07", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.15.1:*:*:*:*:*:*:*", "matchCriteriaId": "1E1ECABB-5C6F-4C43-8677-FA2561CAFB12", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.15.2:*:*:*:*:*:*:*", "matchCriteriaId": "B3653D70-129E-455B-BB0B-A8BAA159E93E", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.15.99.901:*:*:*:*:*:*:*", "matchCriteriaId": "D0A927ED-5CD8-41A9-8F8F-347E14CAAFDB", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.15.99.902:*:*:*:*:*:*:*", "matchCriteriaId": "45783F50-2C9B-458D-9DDD-04ACE57E8302", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.15.99.903:*:*:*:*:*:*:*", "matchCriteriaId": "980BA2E3-69BF-4229-AB5B-D5A1441CF6C3", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.15.99.904:*:*:*:*:*:*:*", "matchCriteriaId": "A863097A-5BC4-4440-AE59-A8EB3DF39A1B", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.16.0:*:*:*:*:*:*:*", "matchCriteriaId": "A66E4428-470F-40EE-AD4C-879575AAC05A", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.16.0.901:*:*:*:*:*:*:*", "matchCriteriaId": "7E4C9F1A-87A1-457B-890C-B0ADF5A432A7", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.16.1:*:*:*:*:*:*:*", "matchCriteriaId": "9D9AAD3B-0254-40EA-A1B0-EFA966DC0240", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.16.1.901:*:*:*:*:*:*:*", "matchCriteriaId": "40FC9093-238B-4090-9123-EDD038C53CB1", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.16.2:*:*:*:*:*:*:*", "matchCriteriaId": "B58F5E3E-7CE6-49F5-A51C-8273B707FAEE", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.16.2.99.901:*:*:*:*:*:*:*", "matchCriteriaId": "2DB9779C-364B-4ACA-8587-8204F774A113", "vulnerable": true}, {"criteria": "cpe:2.3:a:x.org:xorg-server:1.16.2.901:*:*:*:*:*:*:*", "matchCriteriaId": "F47F463C-2DB0-4724-8E96-E598ED682DE4", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:oracle:solaris:10:*:*:*:*:*:*:*", "matchCriteriaId": "964B57CD-CB8A-4520-B358-1C93EC5EF2DC", "vulnerable": true}, {"criteria": "cpe:2.3:o:oracle:solaris:11.2:*:*:*:*:*:*:*", "matchCriteriaId": "0B1C288F-326B-497B-B26C-D26E01262DDB", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*", "matchCriteriaId": "16F59A04-14CF-49E2-9973-645477EA09DA", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Integer overflow in the ProcDRI2GetBuffers function in the DRI2 extension in X.Org Server (aka xserver and xorg-server) 1.7.0 through 1.16.x before 1.16.3 allows remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted request, which triggers an out-of-bounds read or write."}, {"lang": "es", "value": "Desbordamiento de enteros en la funci\u00f3n ProcDRI2GetBuffers en la extensi\u00f3n DRI2 en X.Org Server (tambi\u00e9n conocido como xserver y xorg-server) 1.7.0 hasta 1.16.x anterior a 1.16.3 permite a usuarios remotos autenticados causar una denegaci\u00f3n de servicio (ca\u00edda) o posiblemente ejecutar c\u00f3digo arbitrario a trav\u00e9s de una solicitud manipulada, lo que provoca una lectura o escritura fuera de rango."}], "evaluatorComment": "<a href=\"http://cwe.mitre.org/data/definitions/190.html\">CWE-190: Integer Overflow or Wraparound</a>", "id": "CVE-2014-8094", "lastModified": "2023-02-13T00:42:38.443", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2014-12-10T15:59:06.863", "references": [{"source": "secalert@redhat.com", "tags": ["Third Party Advisory"], "url": "http://advisories.mageia.org/MGASA-2014-0532.html"}, {"source": "secalert@redhat.com", "url": "http://secunia.com/advisories/61947"}, {"source": "secalert@redhat.com", "tags": ["Permissions Required"], "url": "http://secunia.com/advisories/62292"}, {"source": "secalert@redhat.com", "tags": ["Third Party Advisory"], "url": "http://www.debian.org/security/2014/dsa-3095"}, {"source": "secalert@redhat.com", "tags": ["Broken Link"], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:119"}, {"source": "secalert@redhat.com", "tags": ["Third Party Advisory"], "url": "http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html"}, {"source": "secalert@redhat.com", "url": "http://www.securityfocus.com/bid/71601"}, {"source": "secalert@redhat.com", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.x.org/wiki/Development/Security/Advisory-2014-12-09/"}, {"source": "secalert@redhat.com", "url": "https://security.gentoo.org/glsa/201504-06"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-190"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"affected_release": [{"advisory": "RHSA-2014:1983", "cpe": "cpe:/o:redhat:enterprise_linux:6", "package": "xorg-x11-server-0:1.15.0-25.el6_6", "product_name": "Red Hat Enterprise Linux 6", "release_date": "2014-12-11T00:00:00Z"}, {"advisory": "RHSA-2014:1983", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "xorg-x11-server-0:1.15.0-7.el7_0.3", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2014-12-11T00:00:00Z"}], "bugzilla": {"description": "xorg-x11-server: integer overflow in DRI2 extension function ProcDRI2GetBuffers()", "id": "1168691", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168691"}, "csaw": false, "cvss": {"cvss_base_score": "2.3", "cvss_scoring_vector": "AV:A/AC:M/Au:S/C:N/I:N/A:P", "status": "verified"}, "cwe": "CWE-190->CWE-119", "details": ["Integer overflow in the ProcDRI2GetBuffers function in the DRI2 extension in X.Org Server (aka xserver and xorg-server) 1.7.0 through 1.16.x before 1.16.3 allows remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted request, which triggers an out-of-bounds read or write.", "An integer overflow flaw was found in the way the X.Org server calculated memory requirements for certain DRI2 extension requests. A malicious, authenticated client could use this flaw to crash the X.Org server."], "name": "CVE-2014-8094", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:5", "fix_state": "Not affected", "package_name": "xorg-x11-server", "product_name": "Red Hat Enterprise Linux 5"}], "public_date": "2014-12-09T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2014-8094\nhttps://nvd.nist.gov/vuln/detail/CVE-2014-8094\nhttp://www.x.org/wiki/Development/Security/Advisory-2014-12-09/"], "threat_severity": "Moderate"}