50 matches found
SUSE SLES11 Security Update : xorg-x11-libs (SUSE-SU-2016:3189-1)
This update for xorg-x11-libs fixes the following issues : - insufficient validation of data from the X server can cause a one byte buffer read underrun bsc1003023, CVE-2016-7953 - insufficient validation of data from the X server can cause out of boundary memory access or endless loops Denial of...
ALPINE-CVE-2016-7948
X.org libXrandr before 1.5.1 allows remote X servers to trigger out-of-bounds write operations by leveraging mishandling of reply data...
CVE-2016-7948
CVE-2016-7948 affects X.Org libXrandr prior to 1.5.1. The vulnerability arises from mishandling of reply data, allowing remote X servers to trigger out-of-bounds write operations. Several advisories confirm the issue and public fixes exist by upgrading to libXrandr 1.5.1 or newer (as reflected in...
CVE-2016-7948
X.org libXrandr before 1.5.1 allows remote X servers to trigger out-of-bounds write operations by leveraging mishandling of reply data...
CVE-2016-7948
X.org libXrandr before 1.5.1 allows remote X servers to trigger out-of-bounds write operations by leveraging mishandling of reply data...
SUSE SLED12 / SLES12 Security Update : X Window System client libraries (SUSE-SU-2016:2828-1)
This update for the X Window System client libraries fixes a class of privilege escalation issues. A malicious X Server could send specially crafted data to X clients, which allowed for triggering crashes, or privilege escalation if this relationship was untrusted or crossed user or permission...
Fedora 23 : libXrandr (2016-d045c2c7b3)
Security fix for CVE-2016-7947, CVE-2016-7948 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
Fedora 24 : libXrandr (2016-83040426d6)
Security fix for CVE-2016-7947, CVE-2016-7948 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
RHEL 6 : chromium-browser (RHSA-2015:0093)
The remote Redhat Enterprise Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2015:0093 advisory. Chromium is an open-source web browser, powered by WebKit Blink. Several flaws were found in the processing of malformed web content. A web...
CVE-2014-7948
CVE-2014-7948 affects Google Chrome’s AppCache: the AppCacheUpdateJob::URLFetcher proceeds with caching for SSL sessions even when there is an X.509 certificate error, enabling MITM attackers to spoof HTML5 app content. Documented in multiple advisories (e.g., Ubuntu USN-2476-1, Red Hat RHSA-2015...