EulerOS Virtualization for ARM 64 3.0.2.0 : libX11 (EulerOS-SA-2019-1948)

According to the versions of the libX11 packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - It was discovered that libX11 does not properly validate input coming from the server, causing XListExtensions and...

libX11: Crash on invalid reply in XListExtensions in ListExt.c

It was discovered that libX11 does not properly validate input coming from the server, causing XListExtensions and XGetFontPath functions to produce an invalid list of elements that in turn make XFreeExtensionsList and XFreeFontPath access invalid memory. An attacker who can either configure a...

libX11: Out of Bounds write in XListExtensions in ListExt.c

An out of bounds write, limited to NULL bytes, was discovered in libX11 in functions XListExtensions and XGetFontPath. The length field is considered as a signed value, which makes the library access memory before the intended buffer. An attacker who can either configure a malicious X server or...

CVE-2018-14600

An out of bounds write, limited to NULL bytes, was discovered in libX11 in functions XListExtensions and XGetFontPath. The length field is considered as a signed value, which makes the library access memory before the intended buffer. An attacker who can either configure a malicious X server or...

CVE-2018-14598

It was discovered that libX11 does not properly validate input coming from the server, causing XListExtensions and XGetFontPath functions to produce an invalid list of elements that in turn make XFreeExtensionsList and XFreeFontPath access invalid memory. An attacker who can either configure a...

Out-Of-Bounds Write

libX11.so is vulnerable to an out-of-bounds write. This is due to the length value in XGetFontPath and XListExtensions being interpreted as a signed character on different systems, which can lead to an out-of-bounds write of up to 128 bytes in front of the allocated storage...

Out-Of-Bounds Write

libX11.so is vulnerable to an out-of-bounds write. The server response consisting of a length byte followed by the actual string is not NULL-terminated, which could lead to an off-by-one override in the functions XGetFontPath, XListExtensions and XListFonts, and result in an out-of-bounds write...

CVE-2013-1997

Multiple buffer overflows in X.org libX11 1.5.99.901 1.6 RC1 and earlier allow X servers to cause a denial of service crash and possibly execute arbitrary code via crafted length or index values to the 1 XAllocColorCells, 2 XkbReadGetDeviceInfoReply, 3 XkbReadGeomShapes, 4 XkbReadGetGeometryReply...