SUSE-SU-2026:2226-1 Security update for xorg-x11-server

This update for xorg-x11-server fixes the following issues - CreateSaverWindow Use-After-Free Information Disclosure. bsc1266301 - DRI2 DRIGetBuffers/DRIGetBuffersWithFormat Out-Of-Bounds Write. bsc1266302 - Font Alias Stack-based Buffer Overflow. bsc1266294 - GLX ChangeDrawableAttributes...

Security update for xorg-x11-server

This update for xorg-x11-server fixes the following issues CreateSaverWindow Use-After-Free Information Disclosure. bsc1266301 DRI2 DRIGetBuffers/DRIGetBuffersWithFormat Out-Of-Bounds Write. bsc1266302 Font Alias Stack-based Buffer Overflow. bsc1266294 GLX ChangeDrawableAttributes Out-Of-Bounds...

ROS-20260113-7305

A vulnerability in the dcnbwupdatefrompplibfclks function of the Direct Rendering Infrastructure DRI support driver of AMD graphics cards in the Linux operating system kernel is related to integer overflow or cyclic shift. Exploitation of the vulnerability could allow an attacker to cause a denia...

ROS-20260113-7338

A vulnerability in the dcn30inithw function of the drivers/gpu/drm/amd/display/dc/dcn30/dcn30hwseq.c module of the AMD graphics card Direct Rendering Infrastructure DRI support driver of the Linux operating system kernel is related to pointer dereferencing. Exploitation of the vulnerability could...

ROS-20260113-7308

A vulnerability in the dmupdatemstvcpislotsfordsc function of the Direct Rendering Infrastructure DRI support driver of AMD graphics cards in the Linux operating system kernel is related to insufficient input validation when dividing by zero. Exploitation of the vulnerability could allow an...

ROS-20260112-7374

A vulnerability in the isdscneedrecompute function of the drivers/gpu/drm/amd/display/amdgpudm/amdgpudmmsttypes.c module of the Direct Rendering Infrastructure DRI support driver for AMD graphics cards in the Linux operating system kernel is related to pointer dereferencing. Exploitation of the...

EUVD-2004-0093

Malware in sbrugna...

EUVD-2004-0094

Malware in sbrugna...

ROS-20250520-01

Vulnerability of v3dirq function in drivers/gpu/drm/v3d/v3dirq.c - driver for Direct Rendering Infrastructure DRI support in Linux kernel is related to code errors. Direct Rendering Infrastructure DRI of the Linux kernel is related to bugs in the code. Exploitation of the vulnerability could allo...

DEBIAN-CVE-2023-45913

Mesa v23.0.4 was discovered to contain a NULL pointer dereference via the function dri2GetGlxDrawableFromXDrawableId. This vulnerability is triggered when the X11 server sends an DRI2BufferSwapComplete event unexpectedly when the application is using DRI3. NOTE: this is disputed because there is ...

kernel: use-after-free during a race condition between a nonblocking atomic commit and a driver unload in drivers/gpu/drm/drm_atomic.c

A flaw was found in the Linux kernel Direct Rendering Infrastructure DRI subsystem in which a use-after-free can be caused when a user triggers a race condition between a nonblocking atomic commit and a driver unload. A local user could use this flaw to crash the system or potentially escalate...

kernel: vmwgfx: NULL pointer dereference in vmw_cmd_dx_define_query

A NULL pointer dereference issue was found in the Linux kernel's vmwgfx driver in vmwcmddxdefinequery. This flaw allows a local, unprivileged attacker with access to either /dev/dri/card0 or /dev/dri/rendererD128, who can issue an ioctl on the resulting file descriptor, to crash the system, causi...

kernel: use-after-free during a race condition between a nonblocking atomic commit and a driver unload in drivers/gpu/drm/drm_atomic.c

A flaw was found in the Linux kernel Direct Rendering Infrastructure DRI subsystem in which a use-after-free can be caused when a user triggers a race condition between a nonblocking atomic commit and a driver unload. A local user could use this flaw to crash the system or potentially escalate...

kernel: use-after-free during a race condition between a nonblocking atomic commit and a driver unload in drivers/gpu/drm/drm_atomic.c

A flaw was found in the Linux kernel Direct Rendering Infrastructure DRI subsystem in which a use-after-free can be caused when a user triggers a race condition between a nonblocking atomic commit and a driver unload. A local user could use this flaw to crash the system or potentially escalate...

SUSE CVE-2004-0094

Integer signedness errors in XFree86 4.1.0 allow remote attackers to cause a denial of service and possibly execute arbitrary code when using the GLX extension and Direct Rendering Infrastructure DRI...

Google NVIDIA Tegra X1 Direct rendering infrastructur boost vulnerability

Google Pixel is a smartphone device from Google, Inc.NVIDIA Tegra X1 is a processor chip from NVIDIA, Inc.Direct rendering infrastructur is an architecture for direct access to graphics hardware. The Direct rendering infrastructur vulnerability in the NVIDIA Tegra X1 on Google Pixel devices stems...

Privilege escalation

An elevation of privilege vulnerability in the Direct rendering infrastructure of the NVIDIA Tegra X1 where an unchecked input from userspace is passed as a pointer to kfree. This could lead to kernel memory corruption and possible code execution. This issue is rated as moderate. Product: Pixel...

CVE-2017-0866

An elevation of privilege vulnerability in the Direct rendering infrastructure of the NVIDIA Tegra X1 where an unchecked input from userspace is passed as a pointer to kfree. This could lead to kernel memory corruption and possible code execution. This issue is rated as moderate. Product: Pixel...

UBUNTU-CVE-2014-8094

Integer overflow in the ProcDRI2GetBuffers function in the DRI2 extension in X.Org Server aka xserver and xorg-server 1.7.0 through 1.16.x before 1.16.3 allows remote authenticated users to cause a denial of service crash or possibly execute arbitrary code via a crafted request, which triggers an...

PT-2014-1854 · Xorg +5 · Xorg-X11-Server +14

Name of the Vulnerable Software and Affected Versions: xorg-x11-server versions 1.15.0 through 1.16.x before 1.16.3 xorg-x11-server-Xdmx version 1.15.0 xorg-x11-server-Xnest version 1.15.0 xorg-x11-server-Xephyr version 1.15.0 xorg-x11-server-source version 1.15.0 xorg-x11-server-debuginfo versio...