27 matches found
EUVD-2006-6085
Malware in sbrugna...
EUVD-2017-3752
Malware in sbrugna...
SUSE CVE-2006-6102
Integer overflow in the ProcDbeGetVisualInfo function in the DBE extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree86 X server, allows local users to execute arbitrary code via a crafted X protocol request that triggers memory corruption during processing of unspecified data structures...
Integer overflow
xorg-x11-server before 1.19.5 was vulnerable to integer overflow in ProcDbeGetVisualInfo function allowing malicious X client to cause X server to crash or possibly execute arbitrary code...
CVE-2017-12177
xorg-x11-server before 1.19.5 was vulnerable to integer overflow in ProcDbeGetVisualInfo function allowing malicious X client to cause X server to crash or possibly execute arbitrary code...
CVE-2017-12177
xorg-x11-server before 1.19.5 was vulnerable to integer overflow in ProcDbeGetVisualInfo function allowing malicious X client to cause X server to crash or possibly execute arbitrary code...
CVE-2017-12177
CVE-2017-12177 affects xorg-server prior to 1.19.5. The vulnerability arises from an integer overflow in ProcDbeGetVisualInfo, allowing a remote/local X server client to cause a crash or potentially execute arbitrary code. Public advisories (Debian, Arch Linux, Gentoo, Mageia, etc.) indicate the ...
CVE-2017-12177
xorg-x11-server before 1.19.5 was vulnerable to integer overflow in ProcDbeGetVisualInfo function allowing malicious X client to cause X server to crash or possibly execute arbitrary code...
CVE-2017-12177
xorg-x11-server before 1.19.5 was vulnerable to integer overflow in ProcDbeGetVisualInfo function allowing malicious X client to cause X server to crash or possibly execute arbitrary code...
CVE-2017-12177
xorg-x11-server before 1.19.5 was vulnerable to integer overflow in ProcDbeGetVisualInfo function allowing malicious X client to cause X server to crash or possibly execute arbitrary code...
SUSE SLED12 / SLES12 Security Update : xorg-x11-server (SUSE-SU-2017:3047-1)
This update for xorg-x11-server fixes several issues. These security issues were fixed : - CVE-2017-13721: Missing validation of shmseg resource id in Xext/XShm could lead to shared memory segments of other users beeing freed bnc1052984 - CVE-2017-13723: A local denial of service via unusual...
CVE-2017-12177
xorg-x11-server before 1.19.5 was vulnerable to integer overflow in ProcDbeGetVisualInfo function allowing malicious X client to cause X server to crash or possibly execute arbitrary code...
openSUSE Security Update : xorg-x11-server (openSUSE-2017-1177)
This update for xorg-x11-server fixes the following vulnerabilities : - CVE-2017-12176: Unvalidated extra length in ProcEstablishConnection bsc1063041 - CVE-2017-12177: dbe: Unvalidated variable-length request in ProcDbeGetVisualInfo bsc1063040 - CVE-2017-12178: Xi: fix wrong extra length check i...
[ASA-201710-29] xorg-server: arbitrary code execution
Arch Linux Security Advisory ASA-201710-29 ========================================== Severity: High Date : 2017-10-21 CVE-ID : CVE-2017-12176 CVE-2017-12177 CVE-2017-12178 CVE-2017-12183 Package : xorg-server Type : arbitrary code execution Remote : Yes Link :...
CVE-2017-12177
xorg-x11-server before 1.19.5 was vulnerable to integer overflow in ProcDbeGetVisualInfo function allowing malicious X client to cause X server to crash or possibly execute arbitrary code...
SuSE 10 Security Update : xorg-x11-server (ZYPP Patch Number 2449)
X server: ProcRenderAddGlyphs Memory Corruption Vulnerability. This update fixes a memory corruption in the ProcRenderAddGlyphs function CVE-2006-6101. X server: ProcDbeGetVisualInfo Memory Corruption Vulnerability. This update fixes a memory corruption in the ProcDbeGetVisualInfo function...
SUSE-SA:2007:008: XFree86-server,xorg-x11-server,xloader
The remote host is missing the patch for the advisory SUSE-SA:2007:008 XFree86-server,xorg-x11-server,xloader. This update fixes three memory corruptions within the X server which could be used by local attackers with access to this display to crash the X server and potentially execute code...
GLSA-200701-25 : X.Org X server: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200701-25 X.Org X server: Multiple vulnerabilities Multiple memory corruption vulnerabilities have been found in the ProcDbeGetVisualInfo and the ProcDbeSwapBuffers of the DBE extension, and ProcRenderAddGlyphs in the Render...
X.Org X server: Multiple vulnerabilities
Background The X Window System is a graphical windowing system based on a client/server model. Description Multiple memory corruption vulnerabilities have been found in the ProcDbeGetVisualInfo and the ProcDbeSwapBuffers of the DBE extension, and ProcRenderAddGlyphs in the Render extension. Impac...
X.Org DBE和Render扩展多个整数溢出漏洞
X.Org是X.Org Foundation对X窗口系统的开源实现。 X.Org Render扩展的ProcRenderAddGlyphs函数及DBE扩展的ProcDbeGetVisualInfo和ProcDbeSwapBuffers函数没有正确验证用户输入,允许攻击者通过向X服务器发送特制的X请求触发整数溢出,本地攻击者可能利用此漏洞获取root用户权限。 X.org X11R6 6.9.0 X.org X11R7 7.1 X.org X11R7 7.0 临时解决方法:...