130 matches found
AZL-25859 CVE-2023-1393 affecting package xorg-x11-server for versions less than 1.20.10-4
A flaw was found in X.Org Server Overlay Window. A Use-After-Free may lead to local privilege escalation. If a client explicitly destroys the compositor overlay window aka COW, the Xserver would leave a dangling pointer to that window in the CompScreen structure, which will trigger a use-after-fr...
CVE-2023-1393
A flaw was found in X.Org Server Overlay Window. A Use-After-Free may lead to local privilege escalation. If a client explicitly destroys the compositor overlay window aka COW, the Xserver would leave a dangling pointer to that window in the CompScreen structure, which will trigger a use-after-fr...
DEBIAN-CVE-2023-1393
A flaw was found in X.Org Server Overlay Window. A Use-After-Free may lead to local privilege escalation. If a client explicitly destroys the compositor overlay window aka COW, the Xserver would leave a dangling pointer to that window in the CompScreen structure, which will trigger a use-after-fr...
CVE-2023-1393
A flaw was found in X.Org Server Overlay Window. A Use-After-Free may lead to local privilege escalation. If a client explicitly destroys the compositor overlay window aka COW, the Xserver would leave a dangling pointer to that window in the CompScreen structure, which will trigger a use-after-fr...
CVE-2023-1393
A flaw was found in X.Org Server Overlay Window. A Use-After-Free may lead to local privilege escalation. If a client explicitly destroys the compositor overlay window aka COW, the Xserver would leave a dangling pointer to that window in the CompScreen structure, which will trigger a use-after-fr...
xorg-server -- Overlay Window Use-After-Free
The X.Org project reports: ZDI-CAN-19866/CVE-2023-1393: X.Org Server Overlay Window Use-After-Free Local Privilege Escalation Vulnerability If a client explicitly destroys the compositor overlay window aka COW, the Xserver would leave a dangling pointer to that window in the CompScreen structure,...
SUSE CVE-2016-3190
The fillxrgb32lerpopaquespans function in cairo-image-compositor.c in cairo before 1.14.2 allows remote attackers to cause a denial of service out-of-bounds read and application crash via a negative span length...
SUSE CVE-2018-5148
A use-after-free vulnerability can occur in the compositor during certain graphics operations when a raw pointer is used instead of a reference counted one. This results in a potentially exploitable crash. This vulnerability affects Firefox ESR 52.7.3 and Firefox 59.0.2...
SUSE CVE-2020-35492
A flaw was found in cairo's image-compositor.c in all versions prior to 1.17.4. This flaw allows an attacker who can provide a crafted input file to cairo's image-compositor for example, by convincing a user to open a file in an application using cairo, or if an application uses cairo on untruste...
SUSE CVE-2022-26530
swaylock before 1.6 allows attackers to trigger a crash and achieve unlocked access to a Wayland compositor...
CVE-2022-26530
swaylock before 1.6 allows attackers to trigger a crash and achieve unlocked access to a Wayland compositor...
cairo: libreoffice slideshow aborts with stack smashing in cairo's composite_boxes
A flaw was found in cairo's image-compositor.c. This flaw allows an attacker who can provide a crafted input file to cairo's image-compositor for example, by convincing a user to open a file in an application using cairo, or if an application uses cairo on untrusted input to cause a stack buffer...
Denial Of Service (DoS)
swaylock is vulnerable to denial of service. The vulnerability exist because it allows attackers to achieve unlocked access to a Wayland compositor which causes an application crash...
CVE-2022-26530
swaylock before 1.6 allows attackers to trigger a crash and achieve unlocked access to a Wayland compositor...
DEBIAN-CVE-2022-26530
swaylock before 1.6 allows attackers to trigger a crash and achieve unlocked access to a Wayland compositor...
Design/Logic Flaw
swaylock before 1.6 allows attackers to trigger a crash and achieve unlocked access to a Wayland compositor...
CVE-2022-26530
swaylock before 1.6 allows attackers to trigger a crash and achieve unlocked access to a Wayland compositor...
UBUNTU-CVE-2022-26530
swaylock before 1.6 allows attackers to trigger a crash and achieve unlocked access to a Wayland compositor...
CVE-2022-26530
swaylock before 1.6 allows attackers to trigger a crash and achieve unlocked access to a Wayland compositor...
CVE-2022-26530
Swaylock prior to 1.6 is vulnerable to CVE-2022-26530: an attacker can trigger a crash and gain unlocked access to the Wayland compositor. The connected documents specify the affected target as swaylock before 1.6 and do not provide further exploit details, impact elaboration beyond this descript...