Lucene search
K

6 matches found

Amazon
Amazon
added 2024/04/18 12:0 a.m.5 views

Important: tigervnc

Issue Overview: A heap-based buffer over-read vulnerability was found in the X.org server's ProcXIGetSelectedEvents function. This issue occurs when byte-swapped length values are used in replies, potentially leading to memory leakage and segmentation faults, particularly when triggered by a clie...

7.8CVSS7AI score0.01843EPSS
Exploits0
Amazon
Amazon
added 2024/04/17 12:0 a.m.5 views

Important: xorg-x11-server

Issue Overview: A heap-based buffer over-read vulnerability was found in the X.org server's ProcXIGetSelectedEvents function. This issue occurs when byte-swapped length values are used in replies, potentially leading to memory leakage and segmentation faults, particularly when triggered by a clie...

7.8CVSS6.9AI score0.01843EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 4:23 a.m.2 views

SUSE CVE-2018-16869

A Bleichenbacher type side-channel based padding oracle attack was found in the way nettle handles endian conversion of RSA decrypted PKCS1 v1.5 data. An attacker who is able to run a process on the same physical core as the victim process, could use this flaw extract plaintext or in some cases...

5.3CVSS6.5AI score0.01495EPSS
Exploits0References32
Positive Technologies
Positive Technologies
added 2018/11/30 12:0 a.m.2 views

PT-2018-2490 · Gnu +4 · Nettle +4

Name of the Vulnerable Software and Affected Versions: Nettle affected versions not specified Description: The issue is related to a Bleichenbacher type side-channel based padding oracle attack in the way Nettle handles endian conversion of RSA decrypted PKCS1 v1.5 data. This could allow an...

7.5CVSS5AI score0.02686EPSS
Exploits0References37
OSV
OSV
added 2017/07/24 4:37 p.m.1 views

USN-3362-1 xorg-server, xorg-server-hwe-16.04, xorg-server-lts-xenial vulnerabilities

It was discovered that the X.Org X server incorrectly handled endianness conversion of certain X events. An attacker able to connect to an X server, either locally or remotely, could use this issue to crash the server, or possibly execute arbitrary code as an administrator. CVE-2017-10971 It was...

8.8CVSS7.2AI score0.03877EPSS
Exploits3References4
OSV
OSV
added 2017/07/06 11:29 a.m.2 views

DEBIAN-CVE-2017-10972

Uninitialized data in endianness conversion in the XEvent handling of the X.Org X Server before 2017-06-19 allowed authenticated malicious users to access potentially privileged data from the X server...

6.5CVSS7.1AI score0.023EPSS
Exploits0References1
Rows per page
Query Builder