CVE-2014-8099

X.Org X Server < 1.16.3 - Authenticated Memory Corruption via XVideo Extension

Title source: llm
STIX 2.1

Description

The XVideo extension in XFree86 4.0.0, X.Org X Window System (aka X11 or X) X11R6.7, and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) SProcXvQueryExtension, (2) SProcXvQueryAdaptors, (3) SProcXvQueryEncodings, (4) SProcXvGrabPort, (5) SProcXvUngrabPort, (6) SProcXvPutVideo, (7) SProcXvPutStill, (8) SProcXvGetVideo, (9) SProcXvGetStill, (10) SProcXvPutImage, (11) SProcXvShmPutImage, (12) SProcXvSelectVideoNotify, (13) SProcXvSelectPortNotify, (14) SProcXvStopVideo, (15) SProcXvSetPortAttribute, (16) SProcXvGetPortAttribute, (17) SProcXvQueryBestSize, (18) SProcXvQueryPortAttributes, (19) SProcXvQueryImageAttributes, or (20) SProcXvListImageFormats function.

References (9)

Core 9
Core References
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2014/dsa-3095
Patch, Vendor Advisory x_refsource_confirm
http://www.x.org/wiki/Development/Security/Advisory-2014-12-09/
Third Party Advisory x_refsource_confirm
http://advisories.mageia.org/MGASA-2014-0532.html
Third Party Advisory vendor-advisory x_refsource_gentoo
https://security.gentoo.org/glsa/201504-06
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/62292
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/71600
Vendor Advisory vendor-advisory x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2015:119
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/61947

Scores

EPSS 0.0432
EPSS Percentile 90.0%

Details

CWE
CWE-119
Status published
Products (3)
x.org/x11 6.7
x.org/x_server < 1.16.2.99.901
x.org/xfree86 4.0
Published Dec 10, 2014
Tracked Since Feb 18, 2026