<p>There is no fixed version for <code>Ubuntu:14.04</code> <code>libxrandr</code>.</p>

Out-of-bounds Write Affecting libxrandr package, versions *

Snyk CVSS

Attack Complexity Low

Confidentiality High

Integrity High

Availability High

Threat Intelligence

EPSS 0.97% (84^th percentile)

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications

Snyk ID SNYK-UBUNTU1404-LIBXRANDR-288435
published 13 Dec 2016
disclosed 13 Dec 2016

Report a new vulnerability Found a mistake?

Introduced: 13 Dec 2016

CVE-2016-7947 Open this link in a new tab CWE-787 Open this link in a new tab CWE-190 Open this link in a new tab

How to fix?

There is no fixed version for Ubuntu:14.04 libxrandr.

NVD Description

Note: Versions mentioned in the description apply only to the upstream libxrandr package and not the libxrandr package as distributed by Ubuntu. See How to fix? for Ubuntu:14.04 relevant fixed versions and status.

Multiple integer overflows in X.org libXrandr before 1.5.1 allow remote X servers to trigger out-of-bounds write operations via a crafted response.