GCVE - cpe:2.3:a:x.org:xorg-server:1.12.2.902:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:x.org:xorg-server:1.12.2.902:*:*:*:*:*:*:*

part: a version: 1.12.2.902 update: *

Vendor	X.Org (`4cd053ee-09df-594a-873d-dbd09ec2f899`)
Product	Xorg Server (`d5c5a228-377c-5b85-be9a-ca5da7e1b31e`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
`pkg:deb/debian/xserver-xorg-core`	purl2cpe	2026-06-01 10:14:02.689517
`pkg:deb/ubuntu/xserver-xorg-core`	purl2cpe	2026-06-01 10:14:02.689519
`pkg:freedesktop/xorg/xserver`	purl2cpe	2026-06-01 10:14:02.689520
`pkg:github/freedesktop/xorg-xserver`	purl2cpe	2026-06-01 10:14:02.689521
`pkg:rpm/fedora/xorg-x11-server`	purl2cpe	2026-06-01 10:14:02.689523

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2014-8094`	vulnerable	2026-06-03 14:34:22.544516	Details available Integer overflow in the ProcDRI2GetBuffers function in the DRI2 extension in X.Org Server (aka xserver and xorg-server) 1.7.0 through 1.16.x before 1.16.3 allows remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted request, which triggers an out-of-bounds read or write. Published: 2014-12-10T15:00:00.000Z Updated: 2024-08-06T13:10:49.952Z Open on db.gcve.eu Reference links http://www.debian.org/security/2014/dsa-3095 http://www.x.org/wiki/Development/Security/Advisory-2014-12-09/ http://advisories.mageia.org/MGASA-2014-0532.html https://security.gentoo.org/glsa/201504-06 http://www.securityfocus.com/bid/71601	Imported from gcve-enriched-dumps CVE data

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.