11 matches found
SUSE CVE-2015-4497
Use-after-free vulnerability in the CanvasRenderingContext2D implementation in Mozilla Firefox before 40.0.3 and Firefox ESR 38.x before 38.2.1 allows remote attackers to execute arbitrary code by leveraging improper interaction between resize events and changes to Cascading Style Sheets CSS toke...
GHSA-2QJP-425J-52J9 containerd CRI stream server vulnerable to host memory exhaustion via terminal
Impact A bug was found in containerd's CRI implementation where a user can exhaust memory on the host. In the CRI stream server, a goroutine is launched to handle terminal resize events if a TTY is requested. If the user's process fails to launch due to, for example, a faulty command, the gorouti...
The vulnerability of Thunderbird email client, as well as Firefox and Firefox ESR browsers, is related to improper handling of events triggered by window resize operations. This allows attackers to carry out spoofing attacks.
The vulnerability of the Thunderbird email client, as well as browsers Firefox and Firefox ESR, is related to improper handling of events related to the change in the size of the pop-up window. Exploiting this vulnerability allows a remote attacker to carry out spoofing attacks using a specially...
LSN-0068-1: Kernel Live Patch Security Notice
It was discovered that the virtual terminal implementation in the Linux kernel did not properly handle resize events. A local attacker could use this to expose sensitive information. CVE-2020-8647 It was discovered that the virtual terminal implementation in the Linux kernel contained a race...
LSN-0066-1: Kernel Live Patch Security Notice
It was discovered that the virtual terminal implementation in the Linux kernel did not properly handle resize events. A local attacker could use this to expose sensitive information. CVE-2020-8647 It was discovered that the virtual terminal implementation in the Linux kernel contained a race...
Mozilla Firefox Multiple Vulnerabilities - Mac OS X
Mozilla Firefox is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefox";...
CVE-2015-4497
Use-after-free vulnerability in the CanvasRenderingContext2D implementation in Mozilla Firefox before 40.0.3 and Firefox ESR 38.x before 38.2.1 allows remote attackers to execute arbitrary code by leveraging improper interaction between resize events and changes to Cascading Style Sheets CSS toke...
CVE-2015-4497
Use-after-free vulnerability in the CanvasRenderingContext2D implementation in Mozilla Firefox before 40.0.3 and Firefox ESR 38.x before 38.2.1 allows remote attackers to execute arbitrary code by leveraging improper interaction between resize events and changes to Cascading Style Sheets CSS toke...
CVE-2009-3432
Unspecified vulnerability in xscreensaver in Sun Solaris 10, and OpenSolaris before snv112, when Xorg or Xnewt is used and RandR is enabled, allows physically proximate attackers to read a locked screen via unknown vectors related to XRandR resize events...
Design/Logic Flaw
Unspecified vulnerability in xscreensaver in Sun Solaris 10, and OpenSolaris before snv112, when Xorg or Xnewt is used and RandR is enabled, allows physically proximate attackers to read a locked screen via unknown vectors related to XRandR resize events...
CVE-2009-3432
Unspecified vulnerability in xscreensaver in Sun Solaris 10, and OpenSolaris before snv112, when Xorg or Xnewt is used and RandR is enabled, allows physically proximate attackers to read a locked screen via unknown vectors related to XRandR resize events...