EUVD-2014-7944

Malware in sbrugna...

SUSE CVE-2006-6102

Integer overflow in the ProcDbeGetVisualInfo function in the DBE extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree86 X server, allows local users to execute arbitrary code via a crafted X protocol request that triggers memory corruption during processing of unspecified data structures...

SUSE CVE-2006-6103

Integer overflow in the ProcDbeSwapBuffers function in the DBE extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree86 X server, allows local users to execute arbitrary code via a crafted X protocol request that triggers memory corruption during processing of unspecified data structures...

SUSE CVE-2014-8097

The DBE extension in X.Org X Window System aka X11 or X X11R6.1 and X.Org Server aka xserver and xorg-server before 1.16.3 allows remote authenticated users to cause a denial of service out-of-bounds read or write or possibly execute arbitrary code via a crafted length or index value to the 1...

Security Bulletin: Multiple vulnerabilities in xorg-x11-server affect IBM Flex System Manager (FSM)

Summary There are multiple vulnerabilities in xorg-x11-server that is used by IBM Flex System Manager FSM. This bulletin addresses these vulnerabilities. Vulnerability Details Summary There are multiple vulnerabilities in xorg-x11-server that is used by IBM Flex System Manager FSM. This bulletin...

SuSE 11.3 Security Update : xorg-x11-server (SAT Patch Number 10108)

The XOrg X11 server was updated to fix 12 security issues : - Denial of service due to unchecked malloc in client authentication. CVE-2014-8091 - Integer overflows calculating memory needs for requests. CVE-2014-8092 - Integer overflows calculating memory needs for requests in GLX extension...

xorg-server: multiple issues

CVE-2014-8091 denial of service X.Org X Window System, when using SUN-DES-1 Secure RPC authentication credentials, does not check the return value of a malloc call, which allows remote attackers to cause a denial of service NULL pointer dereference and server crash via a crafted connection...

CVE-2014-8097

The DBE extension in X.Org X Window System aka X11 or X X11R6.1 and X.Org Server aka xserver and xorg-server before 1.16.3 allows remote authenticated users to cause a denial of service out-of-bounds read or write or possibly execute arbitrary code via a crafted length or index value to the 1...

DEBIAN-CVE-2014-8097

The DBE extension in X.Org X Window System aka X11 or X X11R6.1 and X.Org Server aka xserver and xorg-server before 1.16.3 allows remote authenticated users to cause a denial of service out-of-bounds read or write or possibly execute arbitrary code via a crafted length or index value to the 1...

Out-of-bounds

The DBE extension in X.Org X Window System aka X11 or X X11R6.1 and X.Org Server aka xserver and xorg-server before 1.16.3 allows remote authenticated users to cause a denial of service out-of-bounds read or write or possibly execute arbitrary code via a crafted length or index value to the 1...

CVE-2014-8097

The DBE extension in X.Org X Window System aka X11 or X X11R6.1 and X.Org Server aka xserver and xorg-server before 1.16.3 allows remote authenticated users to cause a denial of service out-of-bounds read or write or possibly execute arbitrary code via a crafted length or index value to the 1...

GLSA-200701-25 : X.Org X server: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200701-25 X.Org X server: Multiple vulnerabilities Multiple memory corruption vulnerabilities have been found in the ProcDbeGetVisualInfo and the ProcDbeSwapBuffers of the DBE extension, and ProcRenderAddGlyphs in the Render...

X.Org X server: Multiple vulnerabilities

Background The X Window System is a graphical windowing system based on a client/server model. Description Multiple memory corruption vulnerabilities have been found in the ProcDbeGetVisualInfo and the ProcDbeSwapBuffers of the DBE extension, and ProcRenderAddGlyphs in the Render extension. Impac...

Debian DSA-1249-1 : xfree86 - several vulnerabilities

Several vulnerabilities have been discovered in the X Window System, which may lead to privilege escalation or denial of service. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2006-6101 Sean Larsson discovered an integer overflow in the Render extensio...

DSA-1249-1 xfree86

Bulletin has no description...

X.Org DBE和Render扩展多个整数溢出漏洞

X.Org是X.Org Foundation对X窗口系统的开源实现。 X.Org Render扩展的ProcRenderAddGlyphs函数及DBE扩展的ProcDbeGetVisualInfo和ProcDbeSwapBuffers函数没有正确验证用户输入，允许攻击者通过向X服务器发送特制的X请求触发整数溢出，本地攻击者可能利用此漏洞获取root用户权限。 X.org X11R6 6.9.0 X.org X11R7 7.1 X.org X11R7 7.0 临时解决方法：...

security flaw

Integer overflow in the ProcDbeGetVisualInfo function in the DBE extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree86 X server, allows local users to execute arbitrary code via a crafted X protocol request that triggers memory corruption during processing of unspecified data structures...

security flaw

Integer overflow in the ProcDbeGetVisualInfo function in the DBE extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree86 X server, allows local users to execute arbitrary code via a crafted X protocol request that triggers memory corruption during processing of unspecified data structures...

X.org / XFree68 multiple integer overflows

Integer overflow in DBE and Renderer extensions...

iDefense Security Advisory 01.09.07: Multiple Vendor X Server DBE Extension ProcDbeGetVisualInfo Memory Corruption Vulnerability

Multiple Vendor X Server DBE Extension ProcDbeGetVisualInfo Memory Corruption Vulnerability iDefense Security Advisory 01.09.07 http://labs.idefense.com/intelligence/vulnerabilities/ Jan 09, 2007 I. BACKGROUND The X Window System is a graphical windowing system based on a client/server model. Mor...