72 matches found
xorg-x11-server security and bug fix update
1.13.0-23 - Fix root window damage reports when Xinerama is active 919165 1.13.0-22 - Fix Xephyr crashes in 8 and 16 bit mode 1018405 1.13.0-21 - Fix Damage reports when Xinerama is active 919165 1.13.0-20 - Fix broken Xorg -configure 1016854 - CVE-2013-1940: Fix xf86FlushInput to drain evdev...
SuSE 11.2 / 11.3 Security Update : xorg-x11-server (SAT Patch Numbers 8463 / 8464)
xorg-x11-server was updated to fix the following security issue : - Fixed a security issue in which an authenticated X client can cause an X server to use memory after it was freed, potentially leading to crash and/or memory corruption. CVE-2013-4396, bnc843652 A non-security issues was also fixe...
Amazon Linux AMI : xorg-x11-server (ALAS-2013-234)
A use-after-free flaw was found in the way the X.Org server handled ImageText requests. A malicious, authorized client could use this flaw to crash the X.Org server or, potentially, execute arbitrary code with root privileges. CVE-2013-4396 C Tenable Network Security, Inc. The descriptive text an...
MGASA-2013-0317 Updated x11-server packages fix CVE-2013-4396
Updated x11-server packages fix security vulnerability: Use-after-free vulnerability in the doImageText function in dix/dixfonts.c in the xorg-server module before 1.14.4 in X.Org X11 allows remote authenticated users to cause a denial of service daemon crash or possibly execute arbitrary code vi...
Important: xorg-x11-server
Issue Overview: A use-after-free flaw was found in the way the X.Org server handled ImageText requests. A malicious, authorized client could use this flaw to crash the X.Org server or, potentially, execute arbitrary code with root privileges. CVE-2013-4396 Affected Packages: xorg-x11-server Issue...
Ubuntu: Security Advisory (USN-1990-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
RedHat Update for xorg-x11-server RHSA-2013:1426-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-1990-1: X.Org X server vulnerabilities
Pedro Ribeiro discovered that the X.Org X server incorrectly handled memory operations when handling ImageText requests. An attacker could use this issue to cause X.Org to crash, or to possibly execute arbitrary code. CVE-2013-4396 It was discovered that non-root X.Org X servers such as Xephyr...
CentOS 5 / 6 : xorg-x11-server (CESA-2013:1426)
Updated xorg-x11-server packages that fix one security issue are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
Oracle Linux 5 / 6 : xorg-x11-server (ELSA-2013-1426)
The remote Oracle Linux 5 / 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2013-1426 advisory. 1.13.0-11.1.2 - CVE-2013-4396: Fix use-after free in ImageText requests 1014561 Tenable has extracted the preceding description block directly from the Orac...
xorg security update
CentOS Errata and Security Advisory CESA-2013:1426 Updated xorg-x11-server packages that fix one security issue are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring Syst...
xorg-x11-server security update
1.13.0-11.1.2 - CVE-2013-4396: Fix use-after free in ImageText requests 1014561...
CVE-2013-4396
Use-after-free vulnerability in the doImageText function in dix/dixfonts.c in the xorg-server module before 1.14.4 in X.Org X11 allows remote authenticated users to cause a denial of service daemon crash or possibly execute arbitrary code via a crafted ImageText request that triggers...
DEBIAN-CVE-2013-4396
Use-after-free vulnerability in the doImageText function in dix/dixfonts.c in the xorg-server module before 1.14.4 in X.Org X11 allows remote authenticated users to cause a denial of service daemon crash or possibly execute arbitrary code via a crafted ImageText request that triggers...
CVE-2013-4396
CVE-2013-4396 describes a use-after-free in the X.Org X11 server’s ImageText handling (dix/dixfonts.c: doImageText) that affects xorg-server before 1.14.4. A crafted ImageText request could trigger memory-allocation failure, enabling remote authenticated users to cause a daemon crash or potential...
CVE-2011-4396
CVE-2011-4396 is rejected/not used; this entry does not correspond to an active vulnerability.
CVE-2011-4396
...
CVE-2012-4396
Multiple cross-site scripting XSS vulnerabilities in ownCloud before 4.0.2 allow remote attackers to inject arbitrary web script or HTML via the 1 file names to apps/userldap/settings.php; 2 url or 3 title parameter to apps/bookmarks/ajax/editBookmark.php; 4 tag or 5 page parameter to...
CVE-2012-4396
CVE-2012-4396 involves multiple reflected XSS vulnerabilities in ownCloud prior to 4.0.2. The description lists the vulnerable vectors and parameters across various modules: file names in apps/user_ldap/settings.php; url and/or title in apps/bookmarks/ajax/editBookmark.php; tag/page in apps/bookm...
RealNetworks RealPlayer Multiple Vulnerabilities (Windows) - Dec10
This host is installed with RealPlayer which is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbrealplayermultvulnwindec10.nasl 5373 2017-02-20 16:27:48Z teissa $ RealNetworks RealPlayer Multiple Vulnerabilities Windows - Dec10 Authors: Sooraj KS Copyright: Copyright c 2010...