X.Org X Window System (aka X11 and X) X11R5 and X.Org Server (aka xserver and xorg-server) before 1.16.3, when using SUN-DES-1 (Secure RPC) authentication credentials, does not check the return value of a malloc call, which allows remote attackers to cause a denial of service (NULL pointer dereference and server crash) via a crafted connection request.
References
Configurations
History
13 Feb 2023, 00:42
Type | Values Removed | Values Added |
---|---|---|
Summary | X.Org X Window System (aka X11 and X) X11R5 and X.Org Server (aka xserver and xorg-server) before 1.16.3, when using SUN-DES-1 (Secure RPC) authentication credentials, does not check the return value of a malloc call, which allows remote attackers to cause a denial of service (NULL pointer dereference and server crash) via a crafted connection request. | |
References |
|
02 Feb 2023, 20:18
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Summary | It was found that the X.Org server did not properly handle SUN-DES-1 (Secure RPC) authentication credentials. A malicious, unauthenticated client could use this flaw to crash the X.Org server by submitting a specially crafted authentication request. |
Information
Published : 2014-12-10 15:59
Updated : 2023-12-10 11:31
NVD link : CVE-2014-8091
Mitre link : CVE-2014-8091
CVE.ORG link : CVE-2014-8091
JSON object : View
Products Affected
x.org
- x11
- xorg-server
CWE