CVE 2017-10972
Uninitialized data in endianness conversion in the XEvent handling of the X.Org X Server before 2017-06-19 allowed authenticated malicious users to access potentially privileged data from the X server.
Related bugs and status
CVE-2017-10972 (Candidate) is related to these bugs:
Bug #1687981: Backport packages for 16.04.3 HWE stack
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1687981 | Backport packages for 16.04.3 HWE stack | xorg-server-hwe-16.04 (Ubuntu) | Undecided | Invalid | ||
| 1687981 | Backport packages for 16.04.3 HWE stack | xorg-server-hwe-16.04 (Ubuntu Xenial) | Undecided | Fix Released | ||
| 1687981 | Backport packages for 16.04.3 HWE stack | xorg-hwe-16.04 (Ubuntu) | Undecided | Invalid | ||
| 1687981 | Backport packages for 16.04.3 HWE stack | xorg-hwe-16.04 (Ubuntu Xenial) | Undecided | Fix Released | ||
| 1687981 | Backport packages for 16.04.3 HWE stack | x11proto-core (Ubuntu) | Undecided | Invalid | ||
| 1687981 | Backport packages for 16.04.3 HWE stack | x11proto-core (Ubuntu Xenial) | Undecided | Fix Released | ||
| 1687981 | Backport packages for 16.04.3 HWE stack | libxfont2 (Ubuntu) | Undecided | Invalid | ||
| 1687981 | Backport packages for 16.04.3 HWE stack | libxfont2 (Ubuntu Xenial) | Undecided | Fix Released | ||
| 1687981 | Backport packages for 16.04.3 HWE stack | libxfont (Ubuntu) | Undecided | Invalid | ||
| 1687981 | Backport packages for 16.04.3 HWE stack | libxfont (Ubuntu Xenial) | Undecided | Fix Released | ||
| 1687981 | Backport packages for 16.04.3 HWE stack | wayland (Ubuntu) | Undecided | Invalid | ||
| 1687981 | Backport packages for 16.04.3 HWE stack | wayland (Ubuntu Xenial) | Undecided | Fix Released | ||
| 1687981 | Backport packages for 16.04.3 HWE stack | libinput (Ubuntu) | Undecided | Invalid | ||
| 1687981 | Backport packages for 16.04.3 HWE stack | libinput (Ubuntu Xenial) | Undecided | Fix Released | ||
| 1687981 | Backport packages for 16.04.3 HWE stack | libdrm (Ubuntu) | Undecided | Invalid | ||
| 1687981 | Backport packages for 16.04.3 HWE stack | libdrm (Ubuntu Xenial) | Undecided | Fix Released | ||
| 1687981 | Backport packages for 16.04.3 HWE stack | libwacom (Ubuntu) | Undecided | Invalid | ||
| 1687981 | Backport packages for 16.04.3 HWE stack | libwacom (Ubuntu Xenial) | Undecided | Fix Released | ||
| 1687981 | Backport packages for 16.04.3 HWE stack | mesa (Ubuntu) | Undecided | Invalid | ||
| 1687981 | Backport packages for 16.04.3 HWE stack | mesa (Ubuntu Xenial) | Undecided | Fix Released | ||
| 1687981 | Backport packages for 16.04.3 HWE stack | libclc (Ubuntu) | Undecided | Invalid | ||
| 1687981 | Backport packages for 16.04.3 HWE stack | libclc (Ubuntu Xenial) | Undecided | Fix Released | ||
| 1687981 | Backport packages for 16.04.3 HWE stack | llvm-toolchain-4.0 (Ubuntu) | Undecided | Invalid | ||
| 1687981 | Backport packages for 16.04.3 HWE stack | llvm-toolchain-4.0 (Ubuntu Xenial) | Undecided | Fix Released | ||
| 1687981 | Backport packages for 16.04.3 HWE stack | xorg-server (Ubuntu) | Undecided | Invalid | ||
| 1687981 | Backport packages for 16.04.3 HWE stack | xorg-server (Ubuntu Xenial) | Undecided | Fix Released | ||
| 1687981 | Backport packages for 16.04.3 HWE stack | vulkan (Ubuntu) | Undecided | Invalid | ||
| 1687981 | Backport packages for 16.04.3 HWE stack | vulkan (Ubuntu Xenial) | Undecided | Fix Released | ||
| 1687981 | Backport packages for 16.04.3 HWE stack | xfonts-utils (Ubuntu) | Undecided | Invalid | ||
| 1687981 | Backport packages for 16.04.3 HWE stack | xfonts-utils (Ubuntu Xenial) | Undecided | Fix Released | ||
| 1687981 | Backport packages for 16.04.3 HWE stack | virtualbox-hwe (Ubuntu) | Undecided | Fix Released | ||
See the 
CVE page on Mitre.org
for more details.
