Lucene search
+L

59 matches found

Cent OS
Cent OS
added 2017/08/24 1:38 a.m.146 views

drm, libICE, libX11, libXaw, libXcursor, libXdmcp, libXfixes, libXfont, libXfont2, libXi, libXpm, libXrandr, libXrender, libXt, libXtst, libXv, libXvMC, libXxf86vm, libdrm, libepoxy, libevdev, libfontenc, libinput, libvdpau, libwacom, libxcb, libxkbcommon, libxkbfile, mesa, vulkan, xcb, xkeyboard, xorg security update

CentOS Errata and Security Advisory CESA-2017:1865 An update is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

9.8CVSS6.7AI score0.07528EPSS
Exploits3References7
Oracle linux
Oracle linux
added 2017/08/07 12:0 a.m.68 views

X.org X11 libraries security, bug fix and enhancement update

libICE 1.0.9-9 - Add upstream patch to not pull libbsd - Add custom patch for Fedora 24 & 25 1.0.9-8 - Fix changelog 1.0.9-7 - Use libbsd for randoms CVE-2017-2626, rhbz1427715 1.0.9-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora26MassRebuild 1.0.9-5 - Force disable documentation generatio...

9.8CVSS7.9AI score0.07528EPSS
Exploits3
OpenVAS
OpenVAS
added 2017/08/04 12:0 a.m.63 views

RedHat Update for X.org X11 libraries RHSA-2017:1865-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6.3AI score0.07528EPSS
Exploits3References2
RedHat Linux
RedHat Linux
added 2017/08/01 1:50 p.m.6 views

libXdmcp: weak entropy usage for session keys

It was discovered that libXdmcp used weak entropy to generate session keys. On a multi-user system using xdmcp, a local attacker could potentially use information available from the process list to brute force the key, allowing them to hijack other users' sessions...

6.5CVSS5.8AI score0.00534EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2017/07/17 12:0 a.m.29 views

Fedora 26 : libXdmcp (2017-09f65e5e00)

Security fix for CVE-2017-2625 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300...

6.5CVSS6.5AI score0.00534EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2017/07/17 12:0 a.m.32 views

SUSE SLES11 Security Update : xorg-x11-libXdmcp (SUSE-SU-2017:1868-1)

This update for xorg-x11-libXdmcp fixes the following issues : - CVE-2017-2625: The generation of session key in XDM using libXdmcp might have used weak entropy, making the session keys predictable bsc1025046 Note that Tenable Network Security has extracted the preceding description block directl...

6.5CVSS6.5AI score0.00534EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2017/07/17 12:0 a.m.24 views

SUSE SLED12 / SLES12 Security Update : libXdmcp (SUSE-SU-2017:1862-1)

This update for libXdmcp fixes the following issues : - CVE-2017-2625: The generation of session key in XDM using libXdmcp might have used weak entropy, making the session keys predictable bsc1025046 Note that Tenable Network Security has extracted the preceding description block directly from th...

6.5CVSS6.5AI score0.00534EPSS
Exploits3References4
OSV
OSV
added 2017/07/14 3:16 p.m.7 views

SUSE-SU-2017:1868-1 Security update for xorg-x11-libXdmcp

This update for xorg-x11-libXdmcp fixes the following issues: - CVE-2017-2625: The generation of session key in XDM using libXdmcp might have used weak entropy, making the session keys predictable bsc1025046...

6.5CVSS6.7AI score0.00534EPSS
Exploits3References3
OSV
OSV
added 2017/07/14 10:37 a.m.6 views

SUSE-SU-2017:1862-1 Security update for libXdmcp

This update for libXdmcp fixes the following issues: - CVE-2017-2625: The generation of session key in XDM using libXdmcp might have used weak entropy, making the session keys predictable bsc1025046...

6.5CVSS6.7AI score0.00534EPSS
Exploits3References3
Tenable Nessus
Tenable Nessus
added 2017/07/07 12:0 a.m.33 views

openSUSE Security Update : libXdmcp (openSUSE-2017-789)

This update for libXdmcp fixes the following issues : - CVE-2017-2625: The generation of session key in XDM using libXdmcp might have used weak entropy, making the session keys predictable boo1025046 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in...

6.5CVSS6.4AI score0.00534EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2017/04/11 12:0 a.m.42 views

GLSA-201704-03 : X.Org: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201704-03 X.Org: Multiple vulnerabilities Multiple vulnerabilities have been discovered in X.Org server and libraries. Please review the CVE identifiers referenced below for details. Impact : A local or remote users can utilize th...

9.8CVSS7.7AI score0.04526EPSS
Exploits4References15
FreeBSD
FreeBSD
added 2017/04/04 12:0 a.m.44 views

libXdmcp -- insufficient entropy generating session keys

The freedesktop and x.org project reports: It was discovered that libXdmcp before 1.1.3 used weak entropy to generate session keys on platforms without arc4randombuf but with getentropy. On a multi-user system using xdmcp, a local attacker could potentially use information available from the...

6.5CVSS1.7AI score0.00534EPSS
Exploits3References2
Fedora
Fedora
added 2017/04/01 5:55 p.m.30 views

[SECURITY] Fedora 26 Update: libXdmcp-1.1.2-5.fc26

X Display Manager Control Protocol library...

6.5CVSS2.6AI score0.00534EPSS
Exploits3
OpenVAS
OpenVAS
added 2017/03/07 12:0 a.m.37 views

Fedora Update for libXdmcp FEDORA-2017-bcb1999e65

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS5.9AI score0.00534EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2017/03/06 12:0 a.m.26 views

Fedora 24 : libXdmcp (2017-bcb1999e65)

Security fix for CVE-2017-2625 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300...

6.5CVSS6.5AI score0.00534EPSS
Exploits3References2
Fedora
Fedora
added 2017/03/05 8:52 p.m.36 views

[SECURITY] Fedora 24 Update: libXdmcp-1.1.2-5.fc24

X Display Manager Control Protocol library...

6.5CVSS2.6AI score0.00534EPSS
Exploits3
OpenVAS
OpenVAS
added 2017/03/03 12:0 a.m.29 views

Fedora Update for libXdmcp FEDORA-2017-9a9328c159

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS5.9AI score0.00534EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2017/03/03 12:0 a.m.31 views

Fedora 25 : libXdmcp (2017-9a9328c159)

Security fix for CVE-2017-2625 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300...

6.5CVSS6.5AI score0.00534EPSS
Exploits3References2
RedhatCVE
RedhatCVE
added 2017/03/01 12:18 a.m.32 views

CVE-2017-2625

It was discovered that libXdmcp used weak entropy to generate session keys. On a multi-user system using xdmcp, a local attacker could potentially use information available from the process list to brute force the key, allowing them to hijack other users' sessions...

6.5CVSS3.5AI score0.00534EPSS
Exploits3References1
Rows per page
Query Builder