Critical severity9.8NVD Advisory· Published Dec 13, 2016· Updated May 6, 2026
CVE-2016-7948
CVE-2016-7948
Description
X.org libXrandr before 1.5.1 allows remote X servers to trigger out-of-bounds write operations by leveraging mishandling of reply data.
Affected products
3cpe:2.3:o:fedoraproject:fedora:24:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:fedoraproject:fedora:24:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:25:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
9- www.openwall.com/lists/oss-security/2016/10/04/2nvd
- www.openwall.com/lists/oss-security/2016/10/04/4nvd
- www.securityfocus.com/bid/93373nvd
- www.securitytracker.com/id/1036945nvd
- cgit.freedesktop.org/xorg/lib/libXrandr/commit/nvd
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/74FFOHWYIKQZTJLRJWDMJ4W3WYBELUUG/nvd
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Y7662OZWCSTLRPKS6R3E4Y4M26BSVAAM/nvd
- lists.x.org/archives/xorg-announce/2016-October/002720.htmlnvd
- security.gentoo.org/glsa/201704-03nvd
News mentions
0No linked articles in our index yet.