EUVD-2007-6393

Malware in sbrugna...

EUVD-2014-7942

Malware in sbrugna...

SUSE CVE-2007-6427

The XInput extension in X.Org Xserver before 1.4.1 allows context-dependent attackers to execute arbitrary code via requests related to byte swapping and heap corruption within multiple functions, a different vulnerability than CVE-2007-4990...

USN-4905-2: X.Org X Server vulnerability

USN-4905-1 fixed a vulnerability in X.Org. This update provides the corresponding update for Ubuntu 14.04 ESM. Original advisory details: Jan-Niklas Sohn discovered that the X.Org X Server incorrectly handled certain lengths of XInput extension ChangeFeedbackControl requests. An attacker could us...

USN-4905-2 xorg-server vulnerability

USN-4905-1 fixed a vulnerability in X.Org. This update provides the corresponding update for Ubuntu 14.04 ESM. Original advisory details: Jan-Niklas Sohn discovered that the X.Org X Server incorrectly handled certain lengths of XInput extension ChangeFeedbackControl requests. An attacker could us...

GLSA-202104-02 : X.Org X Server: Privilege escalation

The remote host is affected by the vulnerability described in GLSA-202104-02 X.Org X Server: Privilege escalation It was discovered that X.Org X Server did not sufficiently check the length of the XInput extensions ChangeFeedbackControl request. Impact : An authorized attacker could possibly...

X.Org X Server: Privilege escalation

Background The X Window System is a graphical windowing system based on a client/server model. Description It was discovered that X.Org X Server did not sufficiently check the length of the XInput extension’s ChangeFeedbackControl request. Impact An authorized attacker could possibly escalate...

[SECURITY] [DSA 4893-1] xorg-server security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4893-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso April 19, 2021 https://www.debian.org/security/faq -...

MGASA-2021-0190 Updated x11-server packages fix security vulnerability

Insufficient checks on the lengths of the XInput extension ChangeFeedbackControl request can lead to out of bounds memory accesses in the X server. These issues can lead to privilege escalation for authorized clients on systems where the X server is running privileged CVE-2021-3472...

FreeBSD : xorg-server -- Input validation failures in X server XInput extension (465db5b6-9c6d-11eb-8e8a-bc542f4bd1dd)

X.Org server security reports for release 1.20.11 : - Fix XChangeFeedbackControl request underflow . C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright 2003-2021 Jacques Vidrine and contributors...

USN-4905-1: X.Org X Server vulnerability

Jan-Niklas Sohn discovered that the X.Org X Server incorrectly handled certain lengths of XInput extension ChangeFeedbackControl requests. An attacker could use this issue to cause the server to crash, resulting in a denial of service, or possibly execute arbitrary code...

USN-4905-1 xorg-server, xorg-server-hwe-16.04, xorg-server-hwe-18.04 vulnerability

Jan-Niklas Sohn discovered that the X.Org X Server incorrectly handled certain lengths of XInput extension ChangeFeedbackControl requests. An attacker could use this issue to cause the server to crash, resulting in a denial of service, or possibly execute arbitrary code...

SUSE: Security Advisory for xorg-x11-server (SUSE-SU-2015:0045-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SuSE 11.3 Security Update : xorg-x11-server (SAT Patch Number 10108)

The XOrg X11 server was updated to fix 12 security issues : - Denial of service due to unchecked malloc in client authentication. CVE-2014-8091 - Integer overflows calculating memory needs for requests. CVE-2014-8092 - Integer overflows calculating memory needs for requests in GLX extension...

xorg-server: multiple issues

CVE-2014-8091 denial of service X.Org X Window System, when using SUN-DES-1 Secure RPC authentication credentials, does not check the return value of a malloc call, which allows remote attackers to cause a denial of service NULL pointer dereference and server crash via a crafted connection...

xorg-x11-server security update

1.1.1-48.107.0.1.el511 - Added oracle-enterprise-detect.patch - Replaced 'Red Hat' in spec file 1.1.1-48.107 - CVE-2014-8091 denial of service due to unchecked malloc in client authentication 1168680 - CVE-2014-8092 integer overflow in X11 core protocol requests when calculating memory needs for...

CVE-2014-8095

The XInput extension in X.Org X Window System aka X11 or X X11R4 and X.Org Server aka xserver and xorg-server before 1.16.3 allows remote authenticated users to cause a denial of service out-of-bounds read or write or possibly execute arbitrary code via a crafted length or index value to the 1...

Out-of-bounds

The XInput extension in X.Org X Window System aka X11 or X X11R4 and X.Org Server aka xserver and xorg-server before 1.16.3 allows remote authenticated users to cause a denial of service out-of-bounds read or write or possibly execute arbitrary code via a crafted length or index value to the 1...

CVE-2014-8095

CVE-2014-8095 affects X.Org X Server/X11R4 and later up to versions before 1.16.3. A crafted length or index value to a large set of X server/extension handlers (including XInput, DRI2/GLX, Render, XFixes, XI/others) can cause out-of-bounds reads/writes, leading to Denial of Service and potential...

SuSE9 Security Update : XFree86-Xnest (YOU Patch Number 12043)

This update fixes various Xserver security issues. - File existence disclosure vulnerability. CVE-2007-5958 - XInput Extension Memory Corruption Vulnerability IDEF2888 CVE-2007-6427. - TOG-CUP Extension Memory Corruption Vulnerability IDEF2901 CVE-2007-6428. - EVI Extension Integer Overflow...