Amazon Linux 2023 : xorg-x11-server-common, xorg-x11-server-devel, xorg-x11-server-source (ALAS2023-2026-1614)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1614 advisory. XKB Integer Underflow in XkbSetCompatMap CVE-2026-33999 XKB Out-of-bounds Read in CheckSetGeom CVE-2026-34000 XSYNC Use-after-free in miSyncTriggerFence CVE-2026-34001 XKB Out-of-bounds read i...

CVE-2025-36936

In GetTachyonCommand of tachyonservercommon.h, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2025-36927

In GetTachyonCommand of tachyonservercommon.h, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

Google Pixel 安全漏洞

Google Pixel is a smartphone from Google, an American company. A security vulnerability exists in Google Pixel that stems from a lack of bounds checking in GetTachyonCommand in tachyonservercommon.h, which could lead to local elevation of privilege...

Oracle Linux 9 : ipa (ELSA-2025-20928)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-20928 advisory. 4.12.2-22.0.1.1 - Set IPAPLATFORM=rhel when build on Oracle Linux Orabug: 29516674 - Add bind to ipa-server-common Requires Orabug: 36518596 4.12.2-22.1 -...

ipa security update

4.12.2-22.0.1.1 - Set IPAPLATFORM=rhel when build on Oracle Linux Orabug: 29516674 - Add bind to ipa-server-common Requires Orabug: 36518596 4.12.2-22.1 - Resolves: RHEL-118449 ipa: Privilege escalation from host to domain admin in FreeIPA 4.12.2-22 - Resolves: RHEL-107483 ipa-ca-install fails on...

ipa security update

4.12.2-14.0.1.5 - Set IPAPLATFORM=rhel when build on Oracle Linux Orabug: 29516674 - Add bind to ipa-server-common Requires Orabug: 36518596 4.12.2-14.5 - Resolves: RHEL-110068 EMBARGOED CVE-2025-7493 ipa: Privilege escalation from host to domain admin in FreeIPA 4.12.2-14.4 - Resolves: RHEL-1100...

ipa security update

4.12.2-1.0.1.3 - Set IPAPLATFORM=rhel when build on Oracle Linux Orabug: 29516674 - Add bind to ipa-server-common Requires Orabug: 36518596 4.12.2-1.3 - Resolves: RHEL-69928 add support for python cryptography 44.0.0 - Resolves: RHEL-70258 Upgrade to ipa-server-4.12.2-1.el9 OTP-based bind to LDAP...

Amazon Linux 2023 : xorg-x11-server-common, xorg-x11-server-devel, xorg-x11-server-source (ALAS2023-2024-583)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2024-583 advisory. A heap-based buffer over-read vulnerability was found in the X.org server's ProcXIGetSelectedEvents function. This issue occurs when byte-swapped length values are used in replies, potentially...

CentOS: Security Advisory for xorg-x11-server-common (CESA-2024:0320)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CentOS: Security Advisory for xorg-x11-server-common (CESA-2024:0009)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Amazon Linux 2023 : xorg-x11-server-common, xorg-x11-server-devel, xorg-x11-server-source (ALAS2023-2023-102)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-102 advisory. A flaw was found in the Xorg-x11-server. An out-of-bounds access issue can occur in the SProcRenderCompositeGlyphs function due to improper validation of the request length. CVE-2021-4008 A fla...

CentOS: Security Advisory for xorg-x11-server-common (CESA-2023:0675)

The remote host is missing an update for the Copyright C 2023 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CentOS: Security Advisory for xorg-x11-server-common (CESA-2023:0046)

The remote host is missing an update for the Copyright C 2023 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CentOS: Security Advisory for xorg-x11-server-common (CESA-2022:8491)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CentOS: Security Advisory for xorg-x11-server-common (CESA-2022:5905)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

ai.starlake:starlake-spark2_2.11 (>=0.2.7 <=0.2.8), ai.starlake:starlake-spark3_2.12 (>=0.2.7 <=0.2.10) +83 more potentially affected by CVE-2021-33036 via org.apache.hadoop:hadoop-yarn-server-common (>=3.3.0 <=3.3.1)

org.apache.hadoop:hadoop-yarn-server-common MAVEN version =3.3.0, =0.2.7, =0.2.7, =0.1.30, =0.1.30, =0.1.28, =0.9.0, =2.8.2, =2.8.2, =304, =3.3.0, =3.3.0, =3.3.0, =3.3.0, =3.3.0, =3.3.0, =3.3.1 and more Source cves: CVE-2021-33036 Source advisory: OSV:GHSA-58JX-F5RF-QGQF...

org.apache.camel:camel-jbpm (>=2.23.0 <=3.0.0-M2), org.apache.camel:camel-jbpm-starter (>=2.23.0 <=3.0.0-M2) +113 more potentially affected by CVE-2016-7043 via org.kie.server:kie-server-common (>=7.0.0.Beta3 <=7.20.0.Final)

org.kie.server:kie-server-common MAVEN version =7.0.0.Beta3, =2.23.0, =2.23.0, =7.14.0.Final, =7.16.0.Final, =7.10.0.Final, =7.10.0.Final, =7.0.0.Beta3, =7.0.0.Beta3, =7.0.0.Beta3, =7.0.0.Beta3, =7.0.0.Beta3, =7.0.0.Beta3, =7.0.0.Beta5 and more Source cves: CVE-2016-7043 Source advisory:...

ca.uhn.hapi.fhir:hapi-fhir-testpage-overlay (>=0.4 <=0.5), ch.ralscha:extdirectspring (=1.4.0) +75 more potentially affected by CVE-2014-0054 via org.springframework:spring-webmvc (>=4.0.0.RELEASE <=4.0.1.RELEASE)

org.springframework:spring-webmvc MAVEN version =4.0.0.RELEASE, =0.4, =0.1.1-alpha, =0.2-alpha, =1.0.0, =2.0.3.2.1, =2.1.3.10.1, =2.0.3.6, =2.0.3.6, =2.1.2.7.1, =2.0.3.1, =2.1.4.19 and more Source cves: CVE-2014-0054 Source advisory: OSV:GHSA-8CMM-QJ8G-FCP6...

CentOS: Security Advisory for xorg-x11-server-common (CESA-2021:2033)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...