16 matches found
EUVD-2006-0751
Malware in sbrugna...
EUVD-2017-5240
Malware in sbrugna...
EUVD-2023-59026
Malicious code in bioql PyPI...
EUVD-2022-42916
Malicious code in bioql PyPI...
X.Org Server ChangeWindowAttributes Use-After-Free Privilege Escalation Vulnerability
This vulnerability allows local attackers to escalate privileges on affected installations of X.Org Server. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of the roo...
X.Org Server XkbSizeKeySyms Heap-based Buffer Overflow Privilege Escalation Vulnerability
This vulnerability allows local attackers to escalate privileges on affected installations of X.Org Server. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the XkbSizeKeySyms...
X.Org Server XkbVModMaskText Stack-based Buffer Overflow Privilege Escalation Vulnerability
This vulnerability allows local attackers to escalate privileges on affected installations of X.Org Server. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the XkbVModMaskText...
X.Org Server PlayReleasedEvents Use-After-Free Local Privilege Escalation Vulnerability
This vulnerability allows local attackers to escalate privileges on affected installations of X.Org Server. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of device...
X.Org Server SyncInitTrigger Use-After-Free Local Privilege Escalation Vulnerability
This vulnerability allows local attackers to escalate privileges on affected installations of X.Org Server. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of counter...
PT-2024-1121
Name of the Vulnerable Software and Affected Versions X.Org Server affected versions not specified Description A flaw was found in the X.Org server, specifically in the DeviceFocusEvent and XIQueryPointer functions, which can lead to a heap overflow. This issue is caused by the server allocating...
PT-2024-1267 · X.Org +11 · X.Org Server +11
Name of the Vulnerable Software and Affected Versions: X.Org Server affected versions not specified Description: An out-of-bounds memory access flaw was found in the X.Org server. This issue can be triggered when a device frozen by a sync grab is reattached to a different master device. The issue...
PT-2024-1266 · Unknown +12 · X.Org Server +12
Name of the Vulnerable Software and Affected Versions: X.Org Server versions prior to 21.1.11 Xwayland versions prior to 23.2.4 xorg-server versions prior to 1.20.8-alt12 xorg-server versions prior to 1.20.14-alt11 xorg-xwayland versions prior to 23.1.1-alt4 Description: A heap buffer overflow fl...
CVE-2022-3553 X.org Server xquartz X11Controller.m denial of service
A vulnerability, which was classified as problematic, was found in X.org Server. This affects an unknown part of the file hw/xquartz/X11Controller.m of the component xquartz. The manipulation leads to denial of service. It is recommended to apply a patch to fix this issue. The identifier VDB-2110...
Arbitrary Code Execution
X.Org server is vulnerable to arbitrary code execution. Multiple out-of-bounds access flaws were found in the way the X.Org server calculated memory requirements for certain requests. A malicious, authenticated client could use either of these flaws to crash the X.Org server...
CVE-2014-8103
X.Org Server aka xserver and xorg-server 1.15.0 through 1.16.x before 1.16.3 allows remote authenticated users to cause a denial of service out-of-bounds read or write or possibly execute arbitrary code via a crafted length or index value to the 1 sprocdri3queryversion, 2 sprocdri3open, 3...
CVE-2006-0745
X.Org server xorg-server 1.0.0 and later, X11R6.9.0, and X11R7.0 inadvertently treats the address of the geteuid function as if it is the return value of a call to geteuid, which allows local users to bypass intended restrictions and 1 execute arbitrary code via the -modulepath command line optio...