Sogou Input Method suffers from a local power lifting vulnerability

Sogou Input Method is a Chinese character input method tool. A local privilege elevation vulnerability exists in Sogou Input Method. An attacker can exploit the vulnerability to cause a local privilege boost via a symbolic link...

EulerOS Virtualization for ARM 64 3.0.2.0 : libX11 (EulerOS-SA-2021-1049)

According to the versions of the libX11 packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - An integer overflow vulnerability leading to a double-free was found in libX11. This flaw allows a local privileged...

CVE-2020-0500

In startInputUncheckedLocked of InputMethodManager.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

Sogou Input Method (Windows client) suffers from dll hijacking vulnerability

Sogou Input Method is a Chinese character input method tool launched in June 2006 by Sogou Sogou. A dll hijacking vulnerability exists in Sogou Input Method Windows client. An attacker can exploit this vulnerability to load a malicious dll and execute malicious code...

December 8, 2020—KB4592438 (OS Builds 19041.685 and 19042.685)

December 8, 2020—KB4592438 OS Builds 19041.685 and 19042.685 NEW 12/8/20 IMPORTANT Adobe Flash Player will go out of support on December 31, 2020. For more information, see Adobe Flash end of support on December 31, 2020. Flash content will be blocked from running in Flash Player beginning Januar...

Medium: ibus

Issue Overview: A flaw was discovered in ibus that allows any unprivileged user to monitor and send method calls to the ibus bus of another user due to a misconfiguration in the DBus server setup. A local attacker may use this flaw to intercept all keystrokes of a victim user who is using the...

EulerOS 2.0 SP8 : libX11 (EulerOS-SA-2020-2313)

According to the versions of the libX11 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An integer overflow leading to a heap-buffer overflow was found in The X Input Method XIM client was implemented in libX11 before version 1.6.10...

EulerOS 2.0 SP9 : libX11 (EulerOS-SA-2020-2177)

According to the versions of the libX11 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An integer overflow vulnerability leading to a double-free was found in libX11. This flaw allows a local privileged attacker to cause an...

MGASA-2020-0334 Updated libx11 packages fix security vulnerability

The X Input Method XIM client implementation in libX11 has some integer overflows and signed/unsigned comparison issues that can lead to heap corruption when handling malformed messages from an input method CVE-2020-14344. The libx11 package has been updated to version 1.6.10 which fixes this...

DEBIAN-CVE-2020-14344

An integer overflow leading to a heap-buffer overflow was found in The X Input Method XIM client was implemented in libX11 before version 1.6.10. As per upstream this is security relevant when setuid programs call XIM client functions while running with elevated privileges. No such programs are...

ALPINE-CVE-2020-14344

An integer overflow leading to a heap-buffer overflow was found in The X Input Method XIM client was implemented in libX11 before version 1.6.10. As per upstream this is security relevant when setuid programs call XIM client functions while running with elevated privileges. No such programs are...

UBUNTU-CVE-2020-14344

An integer overflow leading to a heap-buffer overflow was found in The X Input Method XIM client was implemented in libX11 before version 1.6.10. As per upstream this is security relevant when setuid programs call XIM client functions while running with elevated privileges. No such programs are...

CVE-2020-14344

An integer overflow leading to a heap-buffer overflow was found in The X Input Method XIM client was implemented in libX11 before version 1.6.10. As per upstream this is security relevant when setuid programs call XIM client functions while running with elevated privileges. No such programs are...

CVE-2020-14344

An integer overflow leading to a heap-buffer overflow was found in The X Input Method XIM client was implemented in libX11 before version 1.6.10. As per upstream this is security relevant when setuid programs call XIM client functions while running with elevated privileges. No such programs are...

CVE-2020-14344

The CVE-2020-14344 issue is described in Connected Document ALAS2-2021-1661 as an integer overflow in libX11 that leads to a heap-buffer overflow when setuid processes call XIM client functions. Affected packages include libX11 and related libX11-devel/debuginfo across aarch64, i686, noarch, src,...

libX11 -- Heap corruption in the X input method client in libX11

The X.org project reports: The X Input Method XIM client implementation in libX11 has some integer overflows and signed/unsigned comparison issues that can lead to heap corruption when handling malformed messages from an input method...

ALSA-2020:1880 Moderate: ibus and glib2 security and bug fix update

GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures. The Intelligent Input Bus IBus is an input...

Description of the Input Method Editor 2010 update: July 10, 2012

Description of the Input Method Editor 2010 update: July 10, 2012 INTRODUCTION Microsoft has released an update for Microsoft Input Method Editor 2010. This update provides the latest fixes for the 32-bit and 64-bit editions of Input Method Editor 2010. Additionally, this update contains stabilit...

Excel freezes when you convert Japanese characters in Windows

Excel freezes when you convert Japanese characters in Windows Symptoms Assume that you try to type some Japanese characters in Microsoft Excel 2013 by using Microsoft IME on a one-CPU computer that is running Windows RT 8.1, Windows 8.1, Windows Server 2012 R2, Windows RT, Windows 8, or Windows...

Directory traversal

An issue was discovered on Samsung mobile devices with KK4.4 and later software through 2015-06-16. In some cases, HTTP is used for an Inputmethod, rather than HTTPS. A man-in-the-middle attacker can modify the client-server data stream to insert directory traversal sequences into an extracted fi...