CVE-2021-4067

Use after free in window manager in Google Chrome on ChromeOS prior to 96.0.4664.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

Chromium: CVE-2021-4067 Use after free in window manager

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser from Google, Inc. Google Chrome suffers from a resource management error vulnerability that stems from post-release reuse in the window manager...

[SECURITY] Fedora 34 Update: WindowMaker-0.95.9-7.fc34

Window Maker is an X11 window manager designed to give additional integration support to the GNUstep Desktop Environment. In every way possible, it reproduces the elegant look and feel of the NEXTSTEP GUI. It is fast, feature rich, easy to configure, and easy to use. In addition, Window Maker wor...

[SECURITY] Fedora 35 Update: WindowMaker-0.95.9-7.fc35

Window Maker is an X11 window manager designed to give additional integration support to the GNUstep Desktop Environment. In every way possible, it reproduces the elegant look and feel of the NEXTSTEP GUI. It is fast, feature rich, easy to configure, and easy to use. In addition, Window Maker wor...

CVE-2021-41339

Microsoft DWM Core Library Elevation of Privilege Vulnerability...

VulnCheck KEV: CVE-2021-33739

Microsoft Desktop Window Manager DWM Core Library contains an unspecified vulnerability that allows for privilege escalation...

[SECURITY] [DSA 4917-1] chromium security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4917-1 [email protected] https://www.debian.org/security/ Michael Gilbert May 17, 2021 https://www.debian.org/security/faq -...

Debian DSA-4917-1 : chromium - security update

Several vulnerabilities have been discovered in the chromium web browser. - CVE-2021-30506 @retsew0x01 discovered an error in the Web App installation interface. - CVE-2021-30507 Alison Huffman discovered an error in the Offline mode. - CVE-2021-30508 Leecraso and Guang Gong discovered a buffer...

The vulnerability of Desktop Window Managers in Windows operating systems allows attackers to increase their privileges.

The vulnerability of desktop window managers in Windows operating systems relates to the issue of operations going beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to enhance their privileges through a specially crafted application...

CVE-2021-0438

In several functions of InputDispatcher.cpp, WindowManagerService.java, and related files, there is a possible tapjacking attack due to an incorrect FLAGOBSCURED value. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for...

Zero-day vulnerability in Desktop Window Manager (CVE-2021-28310) used in the wild

While analyzing the CVE-2021-1732 exploit originally discovered by the DBAPPSecurity Threat Intelligence Center and used by the BITTER APT group, we discovered another zero-day exploit we believe is linked to the same actor. We reported this new exploit to Microsoft in February and after...

[SECURITY] Fedora 34 Update: mutter-40.0~rc-1.fc34

Mutter is a window and compositing manager that displays and manages your desktop via OpenGL. Mutter combines a sophisticated display engine using the Clutter toolkit with solid window-management logic inherited from the Metacity window manager. While Mutter can be used stand-alone, it is primari...

[SECURITY] Fedora 34 Update: kwin-5.21.3-1.fc34

KDE Window manager...

Fedora: Security Advisory for mutter (FEDORA-2021-303f6623fa)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

The vulnerability of the fly-wm window manager, related to security configuration errors, allows attackers to gain access to confidential data.

The vulnerability of the fly-wm window manager is related to security configuration errors. Exploiting this vulnerability can allow a remote attacker to gain access to confidential data...

The vulnerability of the fly-wm window manager, related to the bypassing of authentication due to a fundamental error, allows attackers to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the fly-wm window manager is related to the password prompt displayed during session blocking. Exploiting this vulnerability can allow attackers to access confidential data, compromise its integrity, and cause service failures...

The vulnerability of the fly-wm window manager, related to improper release of memory before deleting last references, allows attackers to gain access to confidential data.

The vulnerability of the fly-wm window manager is related to the improper release of memory after moving the icon to a new location. Exploiting this vulnerability can allow an attacker to gain access to confidential data...

CVE-2020-0475

In createInputConsumer of WindowManagerService.java, there is a possible way to block and intercept input events due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Product:...

CVE-2020-0475

In createInputConsumer of WindowManagerService.java, there is a possible way to block and intercept input events due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Product:...