23 matches found
RHEL 6 : kde-workspace (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - kde-workspace: X11 clients can eavesdrop input events while screen is locked CVE-2015-1308 Note that Nessus has not...
SUSE CVE-2015-3164
The authentication setup in XWayland 1.16.x and 1.17.x before 1.17.2 starts the server in non-authenticating mode, which allows local users to read from or send information to arbitrary X11 clients via vectors involving a UNIX socket...
CVE-2020-25697
A privilege escalation flaw was found in the Xorg-x11-server due to a lack of authentication for X11 clients. This flaw allows an attacker to take control of an X application by impersonating the server it is expecting to connect to...
Privilege escalation
A privilege escalation flaw was found in the Xorg-x11-server due to a lack of authentication for X11 clients. This flaw allows an attacker to take control of an X application by impersonating the server it is expecting to connect to...
CVE-2020-25697
A privilege escalation flaw was found in the Xorg-x11-server due to a lack of authentication for X11 clients. This flaw allows an attacker to take control of an X application by impersonating the server it is expecting to connect to...
CVE-2020-25697
CVE-2020-25697 is a local privilege-escalation flaw in the X.org X11 server caused by a lack of authentication for X11 clients. Affected component is the Xorg-x11-server (via the TRANS_ABSTRACT/client handling on the server side). Exploitation would enable an attacker with local access to imperso...
CVE-2020-25697
A privilege escalation flaw was found in the Xorg-x11-server due to a lack of authentication for X11 clients. This flaw allows an attacker to take control of an X application by impersonating the server it is expecting to connect to...
CVE-2020-25697
A privilege escalation flaw was found in the Xorg-x11-server due to a lack of authentication for X11 clients. This flaw allows an attacker to take control of an X application by impersonating the server it is expecting to connect to...
X11 Mesa 3D Graphics Library shared memory permissions vulnerability
Summary An exploitable shared memory permissions vulnerability exists in the functionality of X11 Mesa 3D Graphics Library. An attacker can access the shared memory without any specific permissions to trigger this vulnerability. Tested Versions Mesa 3D X11 Graphics library 19.1.2 Product URLs...
GLSA-201701-64 : X.Org X Server: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201701-64 X.Org X Server: Multiple vulnerabilities Multiple vulnerabilities have been discovered in X.Org X Server. Please review the CVE identifiers referenced below for details. Impact : An authenticated attacker could possibly...
X.Org X Server: Multiple vulnerabilities
Background The X Window System is a graphical windowing system based on a client/server model. Description Multiple vulnerabilities have been discovered in X.Org X Server. Please review the CVE identifiers referenced below for details. Impact An authenticated attacker could possibly cause a Denia...
Updated x11-server packages fix security vulnerability
The authentication setup in XWayland 1.16.x and 1.17.x before 1.17.2 starts the server in non-authenticating mode, which allows local users to read from or send information to arbitrary X11 clients via vectors involving a UNIX socket CVE-2015-3164...
CVE-2015-3164
The authentication setup in XWayland 1.16.x and 1.17.x before 1.17.2 starts the server in non-authenticating mode, which allows local users to read from or send information to arbitrary X11 clients via vectors involving a UNIX socket...
Authentication flaw
The authentication setup in XWayland 1.16.x and 1.17.x before 1.17.2 starts the server in non-authenticating mode, which allows local users to read from or send information to arbitrary X11 clients via vectors involving a UNIX socket...
openSUSE Security Update : xorg-x11 (openSUSE-SU-2011:0298-1)
Remote attackers could execute arbitrary commands as root by assigning specially crafted hostnames to X11 clients via XDMCP CVE-2011-0465. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...
Oracle Linux 6 : Core X11 clients (ELSA-2013-0502)
The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2013-0502 advisory. - x11perf 1.5.4 CVE-2011-2504 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not...
Scientific Linux Security Update : Core X11 clients on SL6.x i386/x86_64 (20130221)
It was found that the x11perfcomp utility included the current working directory in its PATH environment variable. Running x11perfcomp in an attacker- controlled directory would cause arbitrary code execution with the privileges of the user running x11perfcomp. CVE-2011-2504 Also with this update...
xorg security update
CentOS Errata and Security Advisory CESA-2013:0502 Updated core client packages for the X Window System that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low...
Core X11 clients security, bug fix, and enhancement update
xorg-x11-apps 7.6-6 - x11perf 1.5.4 CVE-2011-2504 7.6-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora17MassRebuild 7.6-4 - Move xinput and xkill to xorg-x11-server-utils 7.6-3 - Rebuild for libpng 1.5 7.6-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora15MassRebuild 7.6-1 - x11perf 1.5...
RedHat Update for Core X11 clients RHSA-2013:0502-02
Check for the Version of Core X11 clients OpenVAS Vulnerability Test RedHat Update for Core X11 clients RHSA-2013:0502-02 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...