Launchpad.net

CVE 2017-10971

In the X.Org X server before 2017-06-19, a user authenticated to an X Session could crash or execute code in the context of the X Server by exploiting a stack overflow in the endianness conversion of X Events.

Related bugs and status

CVE-2017-10971 (Candidate) is related to these bugs:

Bug #1687981: Backport packages for 16.04.3 HWE stack

		In	Importance	Status
1687981	Backport packages for 16.04.3 HWE stack	xorg-server-hwe-16.04 (Ubuntu)	Undecided	Invalid
1687981	Backport packages for 16.04.3 HWE stack	xorg-server-hwe-16.04 (Ubuntu Xenial)	Undecided	Fix Released
1687981	Backport packages for 16.04.3 HWE stack	xorg-hwe-16.04 (Ubuntu)	Undecided	Invalid
1687981	Backport packages for 16.04.3 HWE stack	xorg-hwe-16.04 (Ubuntu Xenial)	Undecided	Fix Released
1687981	Backport packages for 16.04.3 HWE stack	x11proto-core (Ubuntu)	Undecided	Invalid
1687981	Backport packages for 16.04.3 HWE stack	x11proto-core (Ubuntu Xenial)	Undecided	Fix Released
1687981	Backport packages for 16.04.3 HWE stack	libxfont2 (Ubuntu)	Undecided	Invalid
1687981	Backport packages for 16.04.3 HWE stack	libxfont2 (Ubuntu Xenial)	Undecided	Fix Released
1687981	Backport packages for 16.04.3 HWE stack	libxfont (Ubuntu)	Undecided	Invalid
1687981	Backport packages for 16.04.3 HWE stack	libxfont (Ubuntu Xenial)	Undecided	Fix Released
1687981	Backport packages for 16.04.3 HWE stack	wayland (Ubuntu)	Undecided	Invalid
1687981	Backport packages for 16.04.3 HWE stack	wayland (Ubuntu Xenial)	Undecided	Fix Released
1687981	Backport packages for 16.04.3 HWE stack	libinput (Ubuntu)	Undecided	Invalid
1687981	Backport packages for 16.04.3 HWE stack	libinput (Ubuntu Xenial)	Undecided	Fix Released
1687981	Backport packages for 16.04.3 HWE stack	libdrm (Ubuntu)	Undecided	Invalid
1687981	Backport packages for 16.04.3 HWE stack	libdrm (Ubuntu Xenial)	Undecided	Fix Released
1687981	Backport packages for 16.04.3 HWE stack	libwacom (Ubuntu)	Undecided	Invalid
1687981	Backport packages for 16.04.3 HWE stack	libwacom (Ubuntu Xenial)	Undecided	Fix Released
1687981	Backport packages for 16.04.3 HWE stack	mesa (Ubuntu)	Undecided	Invalid
1687981	Backport packages for 16.04.3 HWE stack	mesa (Ubuntu Xenial)	Undecided	Fix Released
1687981	Backport packages for 16.04.3 HWE stack	libclc (Ubuntu)	Undecided	Invalid
1687981	Backport packages for 16.04.3 HWE stack	libclc (Ubuntu Xenial)	Undecided	Fix Released
1687981	Backport packages for 16.04.3 HWE stack	llvm-toolchain-4.0 (Ubuntu)	Undecided	Invalid
1687981	Backport packages for 16.04.3 HWE stack	llvm-toolchain-4.0 (Ubuntu Xenial)	Undecided	Fix Released
1687981	Backport packages for 16.04.3 HWE stack	xorg-server (Ubuntu)	Undecided	Invalid
1687981	Backport packages for 16.04.3 HWE stack	xorg-server (Ubuntu Xenial)	Undecided	Fix Released
1687981	Backport packages for 16.04.3 HWE stack	vulkan (Ubuntu)	Undecided	Invalid
1687981	Backport packages for 16.04.3 HWE stack	vulkan (Ubuntu Xenial)	Undecided	Fix Released
1687981	Backport packages for 16.04.3 HWE stack	xfonts-utils (Ubuntu)	Undecided	Invalid
1687981	Backport packages for 16.04.3 HWE stack	xfonts-utils (Ubuntu Xenial)	Undecided	Fix Released
1687981	Backport packages for 16.04.3 HWE stack	virtualbox-hwe (Ubuntu)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2017-10971

Related bugs and status

Related bugs

References