GCVE - cpe:2.3:a:x.org:xorg-server:1.16.99.902:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:x.org:xorg-server:1.16.99.902:*:*:*:*:*:*:*

part: a version: 1.16.99.902 update: *

Vendor	X.Org (`4cd053ee-09df-594a-873d-dbd09ec2f899`)
Product	Xorg Server (`d5c5a228-377c-5b85-be9a-ca5da7e1b31e`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from purl2cpe mapping

PURL mappings

PURL	Source	Last updated
`pkg:deb/debian/xserver-xorg-core`	purl2cpe	2026-06-01 10:14:02.742044
`pkg:deb/ubuntu/xserver-xorg-core`	purl2cpe	2026-06-01 10:14:02.742046
`pkg:freedesktop/xorg/xserver`	purl2cpe	2026-06-01 10:14:02.742048
`pkg:github/freedesktop/xorg-xserver`	purl2cpe	2026-06-01 10:14:02.742049
`pkg:rpm/fedora/xorg-x11-server`	purl2cpe	2026-06-01 10:14:02.742050

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2015-3164`	vulnerable	2026-06-03 14:34:49.334420	Details available The authentication setup in XWayland 1.16.x and 1.17.x before 1.17.2 starts the server in non-authenticating mode, which allows local users to read from or send information to arbitrary X11 clients via vectors involving a UNIX socket. Published: 2015-07-01T14:00:00.000Z Updated: 2024-08-06T05:39:31.640Z Open on db.gcve.eu Reference links http://lists.freedesktop.org/archives/wayland-devel/2015-June/022548.html http://www.securityfocus.com/bid/75535 https://security.gentoo.org/glsa/201701-64 http://lists.opensuse.org/opensuse-updates/2015-06/msg00044.html	Imported from gcve-enriched-dumps CVE data

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.