OPENSUSE-SU-2024:12993-1 xtrans-1.5.0-1.1 on GA media

These are all security issues fixed in the xtrans-1.5.0-1.1 package on the GA media of openSUSE Tumbleweed...

openSUSE: Security Advisory for xtrans (SUSE-SU-2023:3190-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES12 Security Update : xtrans (SUSE-SU-2023:3189-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2023:3189-1 advisory. - A privilege escalation flaw was found in the Xorg-x11-server due to a lack of authentication for X11 clients. This flaw allows an attacker...

SUSE-SU-2023:3190-1 Security update for xtrans

This update for xtrans fixes the following issues: - CVE-2020-25697: Fixed local privilege escalation via TRANSABSTRACT on the client side bsc1178613...

SUSE-SU-2023:3189-1 Security update for xtrans

This update for xtrans fixes the following issues: - CVE-2020-25697: Fixed local privilege escalation via TRANSABSTRACT on the client side bsc1178613...

SUSE CVE-2017-16910

An error within the "LibRaw::xtransinterpolate" function internal/dcrawcommon.cpp in LibRaw versions prior to 0.18.6 can be exploited to cause an invalid read memory access and subsequently a Denial of Service condition...

xorg-x11-server and xorg-x11-server-Xwayland security and bug fix update

xorg-x11-server 1.20.11-9 - CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070 Resolves: rhbz2108156, rhbz2108161 1.20.11-8 - Rebuild again for ipv6 xtrans fix Related: 2075132 1.20.11-6 - Rebuild for ipv6 xtrans fix Related: 2075132 xorg-x11-server-Xwayland 21.1.3-6 - CVE fix...

PT-2022-36716 · Libraw · Libraw

Name of the Vulnerable Software and Affected Versions: LibRaw affected versions not specified Description: The issue is related to a stack-buffer-overflow error. Technical details about the error include the function names xtrans interpolate and dcraw process, which are part of the LibRaw library...

LibRaw 'LibRaw::xtrans_interpolate()' function denial of service vulnerability

LibRaw is a C++ library developed by the LibRaw team for processing RAW CRW/CR2, NEF, RAF, DNG and others format images. A security vulnerability exists in the 'LibRaw::xtransinterpolate' function in the internal/dcrawcommon.cpp file in LibRaw versions prior to 0.18.6. A remote attacker can explo...

DEBIAN-CVE-2017-16910

An error within the "LibRaw::xtransinterpolate" function internal/dcrawcommon.cpp in LibRaw versions prior to 0.18.6 can be exploited to cause an invalid read memory access and subsequently a Denial of Service condition...

LibRaw Buffer Overflow Vulnerability (CNVD-2017-33276)

LibRaw is a C++ library developed by the LibRaw team for processing RAW CRW/CR2, NEF, RAF, DNG and others format images. A xtransinterpolate stack buffer overflow vulnerability in the internal/dcrawcommon.cpp file in versions of LibRaw prior to 0.18.3. A remote attacker can exploit this...

ALPINE-CVE-2017-14265

A Stack-based Buffer Overflow was discovered in xtransinterpolate in internal/dcrawcommon.cpp in LibRaw before 0.18.3. It could allow a remote denial of service or code execution attack...

Gentoo Security Advisory GLSA 200608-25 (xorg-x11,xorg-server,xtrans,xload,xinit,xterm,xf86dga,xdm,libX11)

The remote host is missing updates announced in advisory GLSA 200608-25. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Gentoo Security Advisory GLSA 200608-25 (xorg-x11, xorg-server, xtrans, xload, xinit, xterm, xf86dga, xdm, libX11)

The remote host is missing updates announced in advisory GLSA 200608-25. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Core 5 : xorg-x11-server-1.0.1-9.fc5.7 (2007-424)

Sun Apr 8 2007 Adam Jackson 1.0.1-9.fc5.7 - xserver-CVE-2007-1003.patch: Fix CVE-2007-1003 in XC-MISC extension. - xorg-x11-server-1.0.1-intel-bridge-fix.patch: Backport an Intel PCI bridge fix from FC6. - Tue Jan 9 2007 Adam Jackson 1.0.1-9.fc5.6 - xorg-xserver-1.0.1-dbe-render.diff: CVE...

Fedora Core 5 : xorg-x11-server-1.0.1-9.fc5.6 (2007-036)

Tue Jan 9 2007 Adam Jackson 1.0.1-9.fc5.6 - xorg-xserver-1.0.1-dbe-render.diff: CVE 2006-6101. - Fri Jun 30 2006 Mike A. Harris 1.0.1-9.fc5.5 - Standardize on using lowercase 'fcN' in Release field to denote the OS release the package is being built for in all erratum from now on, as this is the...

CVE-2006-4447

X.Org and XFree86, including libX11, xdm, xf86dga, xinit, xload, xtrans, and xterm, does not check the return values for setuid and seteuid calls when attempting to drop privileges, which might allow local users to gain privileges by causing those calls to fail, such as by exceeding a ulimit...

CVE-2006-4447

Summary: CVE-2006-4447 affects X.Org and XFree86 components (libX11, xdm, xf86dga, xinit, xload, xtrans, xterm) where setuid/seteuid return values are not checked when dropping privileges. This may enable local privilege escalation if those calls fail (e.g., due to ulimit). What is affected: X.Or...

X.org and some X.org libraries: Local privilege escalations

Background X.org is an implementation of the X Window System. Description Several X.org libraries and X.org itself contain system calls to setuid functions, without checking their result. Impact Local users could deliberately exceed their assigned resource limits and elevate their privileges afte...