Debian DLA-664-1 : libxrender security update

Tobias Stoeckmann from the OpenBSD project has discovered a number of issues in the way various X client libraries handle the responses they receive from servers. Insufficient validation of data from the X server could cause out of boundary memory writes in the libXrender library potentially...

[SECURITY] [DLA 664-1] libxrender security update

Package : libxrender Version : 1:0.9.7-1+deb7u3 CVE ID : CVE-2016-7949 CVE-2016-7950 Debian Bug : 840443 Tobias Stoeckmann from the OpenBSD project has discovered a number of issues in the way various X client libraries handle the responses they receive from servers. Insufficient validation of da...

DLA-664-1 libxrender - security update

Bulletin has no description...

SUSE SLED12 / SLES12 Security Update : X Window System client libraries (SUSE-SU-2016:2505-1)

This update for the X Window System client libraries fixes a class of privilege escalation issues. A malicious X Server could send specially crafted data to X clients, which allowed for triggering crashes, or privilege escalation if this relationship was untrusted or crossed user or permission...

X.Org libXrender Denial of Service Vulnerability

X.Org libXrender is a lightweight library interface proprietary to the Render extension operated by the X.Org Foundation. A security vulnerability exists in X.Org libXrender, which can be exploited by an attacker to cause a denial of service out-of-bounds memory write...

X.Org libXrender Denial of Service Vulnerability (CNVD-2016-08886)

X.Org libXrender is a lightweight library interface proprietary to the Render extension operated by the X.Org Foundation. A security vulnerability exists in X.Org libXrender 0.9.9 and earlier versions, which can be exploited by an attacker to cause a denial of service out-of-bounds memory write...

[SECURITY] Fedora 25 Update: libXrender-0.9.10-1.fc25

X.Org X11 libXrender runtime library...

Fedora 24 : libXrender (2016-8877cf648b)

Security fix for CVE-2016-7949, CVE-2016-7950 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

[SECURITY] Fedora 24 Update: libXrender-0.9.10-1.fc24

X.Org X11 libXrender runtime library...

CVE-2016-7950

The XRenderQueryFilters function in X.org libXrender before 0.9.10 allows remote X servers to trigger out-of-bounds write operations via vectors involving filter name lengths...

CVE-2016-7949

Multiple buffer overflows in the 1 XvQueryAdaptors and 2 XvQueryEncodings functions in X.org libXrender before 0.9.10 allow remote X servers to trigger out-of-bounds write operations via vectors involving length fields...

Amazon Linux: Security Advisory (ALAS-2014-452)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

libx11 / libxrender memory corruption

Memory corruption in MakeBigReq...

Ubuntu: Security Advisory (USN-2568-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DSA-3224-1 : libx11 - security update

Abhishek Arya discovered a buffer overflow in the MakeBigReq macro provided by libx11, which could result in denial of service or the execution of arbitrary code. Several other xorg packages e.g. libxrender will be recompiled against the fixed package after the release of this update. For detaile...

Ubuntu 14.04 LTS : libx11, libxrender vulnerability (USN-2568-1)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-2568-1 advisory. Abhishek Arya discovered that libX11 incorrectly handled memory in the MakeBigReq macro. A remote attacker could use this issue to cause applications to crash,...

USN-2568-1: libx11, libxrender vulnerability

Abhishek Arya discovered that libX11 incorrectly handled memory in the MakeBigReq macro. A remote attacker could use this issue to cause applications to crash, resulting in a denial of service, or possibly execute arbitrary code. In addition, following the macro fix in libx11, a number of other...

USN-2568-1 libx11, libxrender vulnerability

Abhishek Arya discovered that libX11 incorrectly handled memory in the MakeBigReq macro. A remote attacker could use this issue to cause applications to crash, resulting in a denial of service, or possibly execute arbitrary code. In addition, following the macro fix in libx11, a number of other...

DSA-3224-1 libx11 - security update

Bulletin has no description...

Oracle Solaris Third-Party Patch Update : xorg (multiple_vulnerabilities_in_x_org)

The remote Solaris system is missing necessary patches to address security updates : - Integer overflow in X.org libXfixes 5.0 and earlier allows X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the XFixesGetCursorImage function. CVE-2013-1983 -...