EUVD-2017-3762

Malware in sbrugna...

RHEL 6 : xorg-x11-server (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - xorg-x11-server: unvalidated lengths in RENDER extension CVE-2017-12187 - In the X.Org X server before...

RHEL 7 : xorg-x11-server (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - xorg-x11-server: unvalidated lengths in RENDER extension CVE-2017-12187 - The ProcPutImage function in...

openSUSE: Security Advisory for rxvt (openSUSE-SU-2023:0306-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE CVE-2006-1526

Buffer overflow in the X render Xrender extension in X.org X server 6.8.0 up to allows attackers to cause a denial of service crash, as demonstrated by the 1 XRenderCompositeTriStrip and 2 XRenderCompositeTriFan requests in the rendertest from XCB xcb/xcb-demo, which leads to an incorrect memory...

SUSE CVE-2006-6101

Integer overflow in the ProcRenderAddGlyphs function in the Render extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree86 X server, allows local users to execute arbitrary code via a crafted X protocol request that triggers memory corruption during processing of glyph management data...

SUSE CVE-2008-2360

Integer overflow in the AllocateGlyph function in the Render extension in the X server 1.4 in X.Org X11R7.3 allows context-dependent attackers to execute arbitrary code via unspecified request fields that are used to calculate a heap buffer size, which triggers a heap-based buffer overflow...

SUSE CVE-2008-2361

Integer overflow in the ProcRenderCreateCursor function in the Render extension in the X server 1.4 in X.Org X11R7.3 allows context-dependent attackers to cause a denial of service daemon crash via unspecified request fields that are used to calculate a glyph buffer size, which triggers a...

SUSE CVE-2008-2362

Multiple integer overflows in the Render extension in the X server 1.4 in X.Org X11R7.3 allow context-dependent attackers to execute arbitrary code via a 1 SProcRenderCreateLinearGradient, 2 SProcRenderCreateRadialGradient, or 3 SProcRenderCreateConicalGradient request with an invalid field...

SUSE CVE-2010-1166

The fbComposite function in fbpict.c in the Render extension in the X server in X.Org X11R7.1 allows remote authenticated users to cause a denial of service memory corruption and daemon crash or possibly execute arbitrary code via a crafted request, related to an incorrect macro definition...

SUSE CVE-2010-4819

The ProcRenderAddGlyphs function in the Render extension render/render.c in X.Org xserver 1.7.7 and earlier allows local users to read arbitrary memory and possibly cause a denial of service server crash via unspecified vectors related to an "input sanitization flaw."...

SUSE CVE-2014-8100

The Render extension in XFree86 4.0.1, X.Org X Window System aka X11 or X X11R6.7, and X.Org Server aka xserver and xorg-server before 1.16.3 allows remote authenticated users to cause a denial of service out-of-bounds read or write or possibly execute arbitrary code via a crafted length or index...

SUSE CVE-2017-12187

xorg-x11-server before 1.19.5 was missing length validation in RENDER extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code...

OESA-2021-1468 xorg-x11-server security update

Xorg server common files. Security Fixes: A security issue has been found in X.Org before version 21.1.2 and Xwayland before version 21.1.4. The handler for the CompositeGlyphs request of the Render extension does not properly validate the request length leading to out of bounds memory write. Thi...

Updated x11-server packages fix security vulnerabilities

Updated x11-server packages fix security vulnerabilities: The handler for the CompositeGlyphs request of the Render extension does not properly validate the request length leading to out of bounds memory write CVE-2021-4008. The handler for the CreatePointerBarrier request of the XFixes extension...

Denial Of Service (DoS)

X.Org is vulnerable to Denial of Service DoS. Due to an incorrect calculation flaw in the X.Org Render extension, a malicious, authorized client can crash the X.Org server or, potentially, execute arbitrary code with root privileges...

Denial Of Service (DoS)

xorg-x11-server is vulnerable to denial of service. Multiple integer overflow flaws were found in X.org's Render extension. A malicious authorized client could exploit these issues to cause a denial of service crash or, potentially, execute arbitrary code with root privileges on the X.Org server...

xorg-x11-server denial of service vulnerability (CNVD-2018-03105)

The xorg-x11-server is an X Window System display server bundled with multiple vendor operating systems. A security vulnerability exists in the RENDER extension in xorg-x11-server versions prior to 1.19.5, which stems from a lack of length detection in the program. An attacker can exploit this...

CVE-2017-12187

xorg-x11-server before 1.19.5 was missing length validation in RENDER extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code...

CVE-2017-12187

xorg-x11-server before 1.19.5 was missing length validation in RENDER extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code...