7 matches found
GLSA-201701-64 : X.Org X Server: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201701-64 X.Org X Server: Multiple vulnerabilities Multiple vulnerabilities have been discovered in X.Org X Server. Please review the CVE identifiers referenced below for details. Impact : An authenticated attacker could possibly...
Fedora 22 : xorg-x11-server (2015-10336)
Upstream stable release of xserver 1.17.2 fix bug with glamor and overlapping copies CVE-2015-3164 Due to an omission in authentication setup, the XWayland server would start up in non-authenticating mode, meaning that any client with access to the server's UNIX socket was able to connect to the...
Mageia: Security Advisory (MGASA-2015-0316)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2015-3164
The authentication setup in XWayland 1.16.x and 1.17.x before 1.17.2 starts the server in non-authenticating mode, which allows local users to read from or send information to arbitrary X11 clients via vectors involving a UNIX socket...
CVE-2015-3164
The CVE-2015-3164 issue affects XWayland 1.16.x and 1.17.x prior to 1.17.2, where the authentication setup starts the XWayland server in non-authenticating mode. This allows local attackers with access to the server’s UNIX socket to read from or send information to arbitrary X11 clients. Impact i...
openSUSE Security Update : XWayland (openSUSE-2015-438)
The XWayland portion of the x.org X11 server was updated to fix one security issue. The following vulnerability was fixed : - CVE-2015-3164: Unauthorised local client access in XWayland boo934102 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this...
CVE-2015-3168
CVE-2015-3164 affects XWayland, specifically versions 1.16.x and 1.17.x before 1.17.2. The vulnerability arises from the authentication setup, which starts the server in non-authenticating mode, allowing local users to read from or send information to arbitrary X11 clients via vectors involving a...