28 matches found
CVE-2023-6816
A flaw was found in X.Org server. Both DeviceFocusEvent and the XIQueryPointer reply contain a bit for each logical button currently down. Buttons can be arbitrarily mapped to any value up to 255, but the X.Org Server was only allocating space for the device's particular number of buttons, leadin...
CVE-2023-6816
The CVE-2023-6816 issue affects the X.Org Server (xorg-x11-server) and stems from a heap overflow in DeviceFocusEvent and ProcXIQueryPointer due to allocating space only for the device’s button count; extra bits (up to 255) can cause overflow when bigger values are used. This impacts X.Org Server...
CVE-2023-6816
A flaw was found in X.Org server. Both DeviceFocusEvent and the XIQueryPointer reply contain a bit for each logical button currently down. Buttons can be arbitrarily mapped to any value up to 255, but the X.Org Server was only allocating space for the device's particular number of buttons, leadin...
The vulnerability of the DeviceFocusEvent and XIQueryPointer functions in the X Window System X.Org Server implementation allows a perpetrator to gain access to confidential data, compromise its integrity, and cause service failures.
The vulnerability of the DeviceFocusEvent and XIQueryPointer functions in the X Window System X.Org Server implementation is related to operations that go beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to access confidential data, compromise its...
SUSE SLES12 Security Update : xorg-x11-server (SUSE-SU-2024:0116-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:0116-1 advisory. - A flaw was found in X.Org server. Both DeviceFocusEvent and the XIQueryPointer reply contain a bit for each logical button...
X.org Server Security Vulnerability
X.org Server is an open source free software from the X.org Foundation. A security vulnerability exists in X.org Server that stems from the server incorrectly handling memory when processing the DeviceFocusEvent and ProcXIQueryPointer APIs, which can lead to a server crash, disclosure of sensitiv...
CVE-2023-6816
A flaw was found in X.Org server. Both DeviceFocusEvent and the XIQueryPointer reply contain a bit for each logical button currently down. Buttons can be arbitrarily mapped to any value up to 255, but the X.Org Server was only allocating space for the device's particular number of buttons, leadin...
UBUNTU-CVE-2023-6816
A flaw was found in X.Org server. Both DeviceFocusEvent and the XIQueryPointer reply contain a bit for each logical button currently down. Buttons can be arbitrarily mapped to any value up to 255, but the X.Org Server was only allocating space for the device's particular number of buttons, leadin...