View at Official ubuntu advisory, NVD, CVE.org · CVE detail
Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.
CVE-2016-7948 low priority: Ubuntu including 5 source packages (libxrandr, libxrandr-lts-quantal, libxrandr-lts-raring, libxrandr-lts-saucy, libxrandr-lts-trusty), 80 status rows across 16 suites (artful, bionic, cosmic, disco, eoan, focal, groovy, hirsute, impish, jammy, precise, trusty, upstream, xenial, yakkety, zesty): DNE 57, released 11, ignored 8, needs-triage 4.
X.org libXrandr before 1.5.1 allows remote X servers to trigger out-of-bounds write operations by leveraging mishandling of reply data.