X.Org X Server 1.17.0
Approved changes feed: RSS · Atom
cpe:2.3:a:x.org:x_server:1.17.0:*:*:*:*:*:*:*
part: a version: 1.17.0 update: *
| Vendor | X.Org (4cd053ee-09df-594a-873d-dbd09ec2f899) |
|---|---|
| Product | X Server (886aecb6-f1b2-5d3d-bfbf-bfb474c3b23f) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:deb/debian/xserver-xorg-core |
purl2cpe | 2026-06-01 10:14:02.411432 |
pkg:deb/ubuntu/xserver-xorg-core |
purl2cpe | 2026-06-01 10:14:02.411433 |
pkg:github/freedesktop/xorg-xserver |
purl2cpe | 2026-06-01 10:14:02.411435 |
pkg:rpm/opensuse/xserver-xorg-core |
purl2cpe | 2026-06-01 10:14:02.411436 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2015-3164 |
vulnerable | 2026-06-03 14:34:49.338908 |
Details available
The authentication setup in XWayland 1.16.x and 1.17.x before 1.17.2 starts the server in non-authenticating mode, which allows local users to read from or send information to arbitrary X11 clients via vectors involving a UNIX socket.
Published: 2015-07-01T14:00:00.000Z
Updated: 2024-08-06T05:39:31.640Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2015-0255 |
vulnerable | 2026-06-03 14:34:29.402459 |
Details available
X.Org Server (aka xserver and xorg-server) before 1.16.3 and 1.17.x before 1.17.1 allows remote attackers to obtain sensitive information from process memory or cause a denial of service (crash) via a crafted string length value in a XkbSetGeometry request.
Published: 2015-02-13T15:00:00.000Z
Updated: 2024-08-06T04:03:10.448Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.