The XGetImage function in X.org libX11 before 1.6.4 might allow remote X servers to gain privileges via vectors involving image type and geometry, which triggers out-of-bounds read operations. http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-7942