863 matches found
xorg-x11-server: divide-by-zero when checking image dimensions
A divide-by-zero flaw was found in the way the X.Org server checked the dimensions of certain images. An attacker could potentially crash the X.Org server by tricking a suitable X application into displaying a specially crafted image file...
DEBIAN-CVE-2015-3164
The authentication setup in XWayland 1.16.x and 1.17.x before 1.17.2 starts the server in non-authenticating mode, which allows local users to read from or send information to arbitrary X11 clients via vectors involving a UNIX socket...
[SECURITY] Fedora 20 Update: qt3-3.3.8b-63.fc20
Qt is a GUI software toolkit which simplifies the task of writing and maintaining GUI Graphical User Interface applications for the X Window System. Qt is written in C++ and is fully object-oriented. This package contains the shared library needed to run Qt 3 applications, as well as the README...
[SECURITY] Fedora 21 Update: qt3-3.3.8b-63.fc21
Qt is a GUI software toolkit which simplifies the task of writing and maintaining GUI Graphical User Interface applications for the X Window System. Qt is written in C++ and is fully object-oriented. This package contains the shared library needed to run Qt 3 applications, as well as the README...
[SECURITY] Fedora 22 Update: qt3-3.3.8b-63.fc22
Qt is a GUI software toolkit which simplifies the task of writing and maintaining GUI Graphical User Interface applications for the X Window System. Qt is written in C++ and is fully object-oriented. This package contains the shared library needed to run Qt 3 applications, as well as the README...
DEBIAN-CVE-2013-7439
Multiple off-by-one errors in the 1 MakeBigReq and 2 SetReqLen macros in include/X11/Xlibint.h in X11R6.x and libX11 before 1.6.0 allow remote attackers to have unspecified impact via a crafted request, which triggers a buffer overflow...
Debian Security Advisory DSA 3224-1 (libx11 - security update)
Abhishek Arya discovered a buffer overflow in the MakeBigReq macro provided by libx11, which could result in denial of service or the execution of arbitrary code. Several other xorg packages e.g. libxrender will be recompiled against the fixed package after the release of this update. For detaile...
xorg security update
CentOS Errata and Security Advisory CESA-2015:0797 Updated xorg-x11-server packages that fix one security issue are now available for Red Hat Enterprise Linux 6 and 7. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS bas...
[SECURITY] Fedora 21 Update: xterm-308-3.fc21
The xterm program is a terminal emulator for the X Window System. It provides DEC VT102 and Tektronix 4014 compatible terminals for programs that can't use the window system directly...
[SECURITY] Fedora 20 Update: xterm-297-2.fc20
The xterm program is a terminal emulator for the X Window System. It provides DEC VT102 and Tektronix 4014 compatible terminals for programs that can't use the window system directly...
[SECURITY] Fedora 20 Update: qt3-3.3.8b-62.fc20
Qt is a GUI software toolkit which simplifies the task of writing and maintaining GUI Graphical User Interface applications for the X Window System. Qt is written in C++ and is fully object-oriented. This package contains the shared library needed to run Qt 3 applications, as well as the README...
[SECURITY] Fedora 21 Update: qt3-3.3.8b-62.fc21
Qt is a GUI software toolkit which simplifies the task of writing and maintaining GUI Graphical User Interface applications for the X Window System. Qt is written in C++ and is fully object-oriented. This package contains the shared library needed to run Qt 3 applications, as well as the README...
RHEL 6 / 7 : xorg-x11-server (RHSA-2014:1983)
The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2014:1983 advisory. X.Org is an open source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical...
xorg-server: multiple issues
CVE-2014-8091 denial of service X.Org X Window System, when using SUN-DES-1 Secure RPC authentication credentials, does not check the return value of a malloc call, which allows remote attackers to cause a denial of service NULL pointer dereference and server crash via a crafted connection...
xorg-x11-server: integer overflow in X11 core protocol requests when calculating memory needs for requests
Multiple integer overflow flaws were found in the way the X.Org server calculated memory requirements for certain X11 core protocol requests. A malicious, authenticated client could use either of these flaws to crash the X.Org server or, potentially, execute arbitrary code with root privileges...
CVE-2014-8102
The SProcXFixesSelectSelectionInput function in the XFixes extension in X.Org X Window System aka X11 or X X11R6.8.0 and X.Org Server aka xserver and xorg-server before 1.16.3 allows remote authenticated users to cause a denial of service out-of-bounds read or write or possibly execute arbitrary...
DEBIAN-CVE-2014-8102
The SProcXFixesSelectSelectionInput function in the XFixes extension in X.Org X Window System aka X11 or X X11R6.8.0 and X.Org Server aka xserver and xorg-server before 1.16.3 allows remote authenticated users to cause a denial of service out-of-bounds read or write or possibly execute arbitrary...
CVE-2014-8101
The RandR extension in XFree86 4.2.0, X.Org X Window System aka X11 or X X11R6.7, and X.Org Server aka xserver and xorg-server before 1.16.3 allows remote authenticated users to cause a denial of service out-of-bounds read or write or possibly execute arbitrary code via a crafted length or index...
DEBIAN-CVE-2014-8100
The Render extension in XFree86 4.0.1, X.Org X Window System aka X11 or X X11R6.7, and X.Org Server aka xserver and xorg-server before 1.16.3 allows remote authenticated users to cause a denial of service out-of-bounds read or write or possibly execute arbitrary code via a crafted length or index...
CVE-2014-8098
The GLX extension in XFree86 4.0, X.Org X Window System aka X11 or X X11R6.7, and X.Org Server aka xserver and xorg-server before 1.16.3 allows remote authenticated users to cause a denial of service out-of-bounds read or write or possibly execute arbitrary code via a crafted length or index valu...