326 matches found
CVE-2014-8102
CVE-2014-8102 affects the X.Org X Window System's XFixes extension: SProcXFixesSelectSelectionInput in the XFixes extension of X.Org X Server versions before 1.16.3. A remote authenticated user can trigger an out-of-bounds read or write, leading to denial of service or potentially executing arbit...
CVE-2014-8092
Summary (CVE-2014-8092) : The X.Org X Server (X.Org X Window System) before version 1.16.3 is affected. The issue arises from multiple integer overflows and out-of-bounds memory access during handling of X11 core requests (notably in ProcPutImage, GetHosts, RegionSizeof, and various other functio...
CVE-2014-8097
CVE-2014-8097 is a vulnerability in the X.Org X Server DBE extension present in X.Org X Window System before 1.16.3. It allows remote authenticated users to trigger an out-of-bounds read or write via a crafted length or index value to the DBE-related functions (DbeSwapBuffers family), potentially...
CVE-2014-8098
Affected software: X.Org X Window System (X.Org Server), GLX extension in X.Org X server prior to version 1.16.3. Root cause: several functions exposed via the GLX and other X11 core protocol paths accept crafted length or index values, enabling out-of-bounds read/write that could crash the serve...
CVE-2014-8099
The connected documents confirm CVE-2014-8099 is among a set of X.Org X server vulnerabilities affecting the XVideo extension. The issues arise from out-of-bounds reads/writes and integer overflow when handling certain memory/length values in various Xv-related SProc and related extension functio...
CVE-2014-8103
X.Org X Server (1.15.0–1.16.x before 1.16.3) is affected. Remote authenticated users can trigger an out-of-bounds read/write or potentially execute arbitrary code via crafted lengths/indices in DRI3/Present path (sproc_dri3_* and sproc_present_*). This may enable DoS or code execution. Remediatio...
X.Org X Window System Xserver 1.3 XRender Extension Divide by Zero Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/23741/info X.Org X Window System Xserver is prone to a denial-of-service vulnerabilty because the software fails to properly handle exceptional conditions. Attackers who can connect to a vulnerable X server may exploit th...
Caldera X Server 7.1/8.0 External Program Privileged Invocation Weakness
No description provided by source. source: http://www.securityfocus.com/bid/5575/info Caldera's X Server implementation invokes external commands without dropping existing privilege levels. Xserver calls xkbcomp, and other related utilities, in an unsecure manner using the popen or system calls...
Xi Graphics Accelerated X 4.0 .x/5.0 - Buffer Overflow Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/488/info Accelerated-X, also known as Accel-X, is a popular commercial X server available from Xi Graphics. The servers are normally installed setuid root, and contain multiple buffer overflow vulnerabilities. These...
DSA-2784-1 xorg-server - use-after-free
Bulletin has no description...
Oracle Linux 5 : xorg-x11-server (ELSA-2010-0382)
The remote Oracle Linux 5 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2010-0382 advisory. 1.1.1-48.76.0.1.el55.1 - Added oracle-enterprise-detect.patch - Replaced 'Red Hat' in spec file 1.1.1-48.76.1 - xserver-1.1.1-mod-macro-parens.patch: Fix...
Ubuntu Update for xserver-xorg-video-openchrome USN-1871-1
Check for the Version of xserver-xorg-video-openchrome OpenVAS Vulnerability Test $Id: gbubuntuUSN18711.nasl 7958 2017-12-01 06:47:47Z santu $ Ubuntu Update for xserver-xorg-video-openchrome USN-1871-1 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH,...
Ubuntu: Security Advisory (USN-1871-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 12.04 LTS / 12.10 / 13.04 : xserver-xorg-video-openchrome, xserver-xorg-video-openchrome-lts-quantal vulnerability (USN-1871-1)
Ilja van Sprundel discovered multiple security issues in various X.org libraries and components. An attacker could use these issues to cause applications to crash, resulting in a denial of service, or possibly execute arbitrary code. Note that Tenable Network Security has extracted the preceding...
[SECURITY] [DSA 2679-1] xserver-xorg-video-openchrome security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2679-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff May 23, 2013 http://www.debian.org/security/faq -...
Debian DSA-2679-1 : xserver-xorg-video-openchrome - several vulnerabilities
Ilja van Sprundel of IOActive discovered several security issues in multiple components of the X.org graphics stack and the related libraries: Various integer overflows, sign handling errors in integer conversions, buffer overflows, memory corruption and missing input sanitising may lead to...
[SECURITY] [DSA 2679-1] xserver-xorg-video-openchrome security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2679-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff May 23, 2013 http://www.debian.org/security/faq -...
Debian Security Advisory DSA 2679-1 (xserver-xorg-video-openchrome - several vulnerabilities)
Ilja van Sprundel of IOActive discovered several security issues in multiple components of the X.org graphics stack and the related libraries: Various integer overflows, sign handling errors in integer conversions, buffer overflows, memory corruption and missing input sanitising may lead to...
Debian: Security Advisory (DSA-2679-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 10.04 LTS / 11.10 / 12.04 LTS / 12.10 : xorg-server, xorg-server-lts-quantal vulnerability (USN-1803-1)
It was discovered that the X.Org X server did not properly clear input events in certain circumstances. A local attacker with physical access could use this flaw to capture keystrokes. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu securi...