867 matches found
ALPINE-CVE-2016-5407
The 1 XvQueryAdaptors and 2 XvQueryEncodings functions in X.org libXv before 1.0.11 allow remote X servers to trigger out-of-bounds memory access operations via vectors involving length specifications in received data...
UBUNTU-CVE-2016-7951
Multiple integer overflows in X.org libXtst before 1.2.3 allow remote X servers to trigger out-of-bounds memory access operations by leveraging the lack of range checks...
UBUNTU-CVE-2016-7945
Multiple integer overflows in X.org libXi before 1.7.7 allow remote X servers to cause a denial of service out-of-bounds memory access or infinite loop via vectors involving length fields...
UBUNTU-CVE-2016-7944
Integer overflow in X.org libXfixes before 5.0.3 on 32-bit platforms might allow remote X servers to gain privileges via a length value of INTMAX, which triggers the client to stop reading data and get out of sync...
UBUNTU-CVE-2016-7943
The XListFonts function in X.org libX11 before 1.6.4 might allow remote X servers to gain privileges via vectors involving length fields, which trigger out-of-bounds write operations...
openSUSE Security Update : X Window System client libraries (openSUSE-2016-1420)
This update for X Window System client libraries fixes a class of privilege escalation issues. A malicious X server could send specially crafted data to X clients, which allowed for triggering crashes, or privilege escalation if this relationship was untrusted or crossed user or permission level...
SUSE-SU-2016:2828-1 Security update for X Window System client libraries
This update for the X Window System client libraries fixes a class of privilege escalation issues. A malicious X Server could send specially crafted data to X clients, which allowed for triggering crashes, or privilege escalation if this relationship was untrusted or crossed user or permission...
SUSE SLED12 / SLES12 Security Update : X Window System client libraries (SUSE-SU-2016:2828-1)
This update for the X Window System client libraries fixes a class of privilege escalation issues. A malicious X Server could send specially crafted data to X clients, which allowed for triggering crashes, or privilege escalation if this relationship was untrusted or crossed user or permission...
The vulnerability of the X Window System graphical server allows a perpetrator to alter file access rights or cause a service failure.
The vulnerability of the LockServer function os/utils.c in the X Window System graphical server arises due to synchronization errors when using a shared resource. Exploiting this vulnerability allows an attacker acting locally to change file access rights to “444” or to cause a service failure by...
openSUSE Security Update : X Window System client libraries (openSUSE-2016-1214)
This update for the X Window System client libraries fixes a class of privilege escalation issues. A malicious X Server could send specially crafted data to X clients, which allowed for triggering crashes, or privilege escalation if this relationship was untrusted or crossed user or permission...
SUSE SLED12 / SLES12 Security Update : X Window System client libraries (SUSE-SU-2016:2505-1)
This update for the X Window System client libraries fixes a class of privilege escalation issues. A malicious X Server could send specially crafted data to X clients, which allowed for triggering crashes, or privilege escalation if this relationship was untrusted or crossed user or permission...
SUSE-SU-2016:2505-1 Security update for X Window System client libraries
This update for the X Window System client libraries fixes a class of privilege escalation issues. A malicious X Server could send specially crafted data to X clients, which allowed for triggering crashes, or privilege escalation if this relationship was untrusted or crossed user or permission...
X.Org libXrandr Privilege Bypass Vulnerability
X.Org libXrandr is an X11 RandR extension library operated by the X.Org Foundation. A security vulnerability exists in X.Org libXrandr 1.5.0 and earlier versions that can be exploited by an attacker to bypass security restrictions and perform unauthorized operations...
PT-2016-7439 · X.Org +3 · Libxi +3
Name of the Vulnerable Software and Affected Versions: X.org libXi versions prior to 1.7.7 Description: The issue allows remote X servers to cause a denial of service, resulting in an infinite loop. This is achieved through vectors involving length fields. Recommendations: For versions prior to...
Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information
The x-window-system-dev package in the Debian GNU/Linux operating system has multiple vulnerabilities. Exploiting these vulnerabilities can lead to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...
Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information
The multiple vulnerabilities in the x-window-system package of the Debian GNU/Linux operating system may be exploited, leading to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...
Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information
The multiple vulnerabilities in the x-window-system-core package of the Debian GNU/Linux operating system may lead to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...
ImageMagick security update
CentOS Errata and Security Advisory CESA-2016:1237 An update for ImageMagick is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base...
ImageMagick security update
CentOS Errata and Security Advisory CESA-2016:0726 An update for ImageMagick is now available for Red Hat Enterprise Linux 6 and Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base...
openssh: missing sanitisation of input for X11 forwarding
It was discovered that the OpenSSH server did not sanitize data received in requests to enable X11 forwarding. An authenticated client with restricted SSH access could possibly use this flaw to bypass intended restrictions...