ROS-2-849

🗓️ 08 Sep 2021 00:00:00Reported by RedosType

Denial of Service vulnerability in libX11 due to insufficient color name validation in XLookupColor() function. Installation of security updates for libx11 required to eliminate the vulnerabilit

Reporter	Title	Published	Views	Family All 376
IBM Security Bulletins	Security Bulletin: LookupCol.c in X.Org X through X11R7.7 and libX11 before 1.7.1 might allow remote attackers to execute arbitrary code, affect watsonx.data	16 Jun 202505:33	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge is vulnerable to multiple Base OS issues	19 Jun 202517:28	–	ibm
IBM Security Bulletins	Security Bulletin: IBM QRadar Network Security is affected by multiple vulnerabilities (CVE-2020-25648, CVE-2021-31535, CVE-2021-20305, CVE-2020-25692)	8 Nov 202103:57	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Security QRadar Event and Flow Exporter App is vulnerable to using components with known vulnerabilities (CVE-2021-31535, CVE-2020-17541)	16 Jun 202218:26	–	ibm
FreeBSD	libX11 -- Arbitrary code execution	11 May 202100:00	–	freebsd
Tenable Nessus	Amazon Linux 2 : libX11 (ALAS-2021-1686)	16 Jul 202100:00	–	nessus
Tenable Nessus	Amazon Linux AMI : libX11 (ALAS-2021-1517)	13 Jul 202100:00	–	nessus
Tenable Nessus	AlmaLinux 8 : libX11 (ALSA-2021:4326)	9 Feb 202200:00	–	nessus
Tenable Nessus	CentOS 8 : libX11 (CESA-2021:4326)	11 Nov 202100:00	–	nessus
Tenable Nessus	CentOS 7 : libX11 (RHSA-2021:3296)	30 Aug 202100:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
redos	–	–	unknown	–	UNKNOWN

08 Sep 2021 00:00Current

9.3High risk

Vulners AI Score9.3

CVSS 27.5

CVSS 3.19.8

EPSS0.05481