Versions mentioned in the description apply to the upstream
Remediation section below for
Debian:10 relevant versions.
Uninitialized data in endianness conversion in the XEvent handling of the X.Org X Server before 2017-06-19 allowed authenticated malicious users to access potentially privileged data from the X server.
xorg-server to version 2:1.19.3-2 or higher.