Show filters
146 Total Results
Displaying 81-90 of 146
Sort by:
Attacker Value
Unknown

CVE-2016-7943

Disclosure Date: December 13, 2016 (last updated November 08, 2023)
The XListFonts function in X.org libX11 before 1.6.4 might allow remote X servers to gain privileges via vectors involving length fields, which trigger out-of-bounds write operations.
0
0
Attacker Value
Unknown

CVE-2016-7947

Disclosure Date: December 13, 2016 (last updated November 08, 2023)
Multiple integer overflows in X.org libXrandr before 1.5.1 allow remote X servers to trigger out-of-bounds write operations via a crafted response.
0
0
Attacker Value
Unknown

CVE-2016-7950

Disclosure Date: December 13, 2016 (last updated November 08, 2023)
The XRenderQueryFilters function in X.org libXrender before 0.9.10 allows remote X servers to trigger out-of-bounds write operations via vectors involving filter name lengths.
0
0
Attacker Value
Unknown

CVE-2016-7944

Disclosure Date: December 13, 2016 (last updated November 08, 2023)
Integer overflow in X.org libXfixes before 5.0.3 on 32-bit platforms might allow remote X servers to gain privileges via a length value of INT_MAX, which triggers the client to stop reading data and get out of sync.
0
0
Attacker Value
Unknown

CVE-2015-3418

Disclosure Date: December 13, 2016 (last updated November 08, 2023)
The ProcPutImage function in dix/dispatch.c in X.Org Server (aka xserver and xorg-server) before 1.16.4 allows attackers to cause a denial of service (divide-by-zero and crash) via a zero-height PutImage request.
0
0
Attacker Value
Unknown

CVE-2015-3164

Disclosure Date: July 01, 2015 (last updated October 05, 2023)
The authentication setup in XWayland 1.16.x and 1.17.x before 1.17.2 starts the server in non-authenticating mode, which allows local users to read from or send information to arbitrary X11 clients via vectors involving a UNIX socket.
0
0
Attacker Value
Unknown

CVE-2013-7439

Disclosure Date: April 16, 2015 (last updated October 05, 2023)
Multiple off-by-one errors in the (1) MakeBigReq and (2) SetReqLen macros in include/X11/Xlibint.h in X11R6.x and libX11 before 1.6.0 allow remote attackers to have unspecified impact via a crafted request, which triggers a buffer overflow.
0
0
Attacker Value
Unknown

CVE-2015-0255

Disclosure Date: February 13, 2015 (last updated October 05, 2023)
X.Org Server (aka xserver and xorg-server) before 1.16.3 and 1.17.x before 1.17.1 allows remote attackers to obtain sensitive information from process memory or cause a denial of service (crash) via a crafted string length value in a XkbSetGeometry request.
0
0
Attacker Value
Unknown

CVE-2014-8092

Disclosure Date: December 10, 2014 (last updated October 05, 2023)
Multiple integer overflows in X.Org X Window System (aka X11 or X) X11R1 and X.Org Server (aka xserver and xorg-server) before 1.16.3 allow remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted request to the (1) ProcPutImage, (2) GetHosts, (3) RegionSizeof, or (4) REQUEST_FIXED_SIZE function, which triggers an out-of-bounds read or write.
0
0
Attacker Value
Unknown

CVE-2014-8096

Disclosure Date: December 10, 2014 (last updated October 05, 2023)
The SProcXCMiscGetXIDList function in the XC-MISC extension in X.Org X Window System (aka X11 or X) X11R6.0 and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value.
0
0
View More Topics  < Previous  Next >