Vulnerabilities (CVE)

Vendor filter

Filter

58 total CVE
CVE Vendors Products Updated CVSS
CVE-2017-16611 3 X, Canonical, Debian 3 Libxfont, Ubuntu Linux, Debian Linux 2019-10-03 2.1
In libXfont before 1.5.4 and libXfont2 before 2.0.3, a local attacker can open (but not read) files on the system as root, triggering tape rewinds, watchdogs, or similar mechanisms that can be triggered by opening files.
CVE-2015-9262 4 X, Canonical, Debian and 1 more 7 Libxcursor, Ubuntu Linux, Debian Linux and 4 more 2019-04-16 7.5
_XcursorThemeInherits in library.c in libXcursor before 1.1.15 allows remote attackers to cause denial of service or potentially code execution via a one-byte heap overflow.
CVE-2013-2064 7 X, Oracle, Canonical and 4 more 7 Ubuntu Linux, Debian Linux, Fedora and 4 more 2018-10-30 6.8
Integer overflow in X.org libxcb 1.9 and earlier allows X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the read_packet function.
CVE-2013-1987 4 X, Canonical, Novell and 1 more 4 Ubuntu Linux, Libxrender, Opensuse and 1 more 2018-10-30 6.8
Multiple integer overflows in X.org libXrender 0.9.7 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) XRenderQueryFilters, (2) XRenderQueryFormats, and (3)...
CVE-2008-2362 1 X 1 X11 2018-10-11 10.0
Multiple integer overflows in the Render extension in the X server 1.4 in X.Org X11R7.3 allow context-dependent attackers to execute arbitrary code via a (1) SProcRenderCreateLinearGradient, (2) SProcRenderCreateRadialGradient, or (3)...
CVE-2008-2360 1 X 1 X11 2018-10-11 9.0
Integer overflow in the AllocateGlyph function in the Render extension in the X server 1.4 in X.Org X11R7.3 allows context-dependent attackers to execute arbitrary code via unspecified request fields that are used to calculate a heap buffer size,...
CVE-2008-1379 1 X 1 X11 2018-10-11 6.8
Integer overflow in the fbShmPutImage function in the MIT-SHM extension in the X server 1.4 in X.Org X11R7.3 allows context-dependent attackers to read arbitrary process memory via crafted values for a Pixmap width and height.
CVE-2008-1377 1 X 1 X11 2018-10-11 9.0
The (1) SProcRecordCreateContext and (2) SProcRecordRegisterClients functions in the Record extension and the (3) SProcSecurityGenerateAuthorization function in the Security extension in the X server 1.4 in X.Org X11R7.3 allow context-dependent...
CVE-2014-0211 2 X, Canonical 2 Ubuntu Linux, Libxfont 2018-10-09 7.5
Multiple integer overflows in the (1) fs_get_reply, (2) fs_alloc_glyphs, and (3) fs_read_extent_info functions in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 allow remote font servers to execute arbitrary code via a crafted xfs...
CVE-2014-0210 2 X, Canonical 2 Ubuntu Linux, Libxfont 2018-10-09 7.5
Multiple buffer overflows in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 allow remote font servers to execute arbitrary code via a crafted xfs protocol reply to the (1) _fs_recv_conn_setup, (2) fs_read_open_font, (3)...
CVE-2014-0209 2 X, Canonical 2 Ubuntu Linux, Libxfont 2018-10-09 4.6
Multiple integer overflows in the (1) FontFileAddEntry and (2) lexAlias functions in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 might allow local users to gain privileges by adding a directory with a large fonts.dir or fonts.alias...
CVE-2017-16612 3 X, Canonical, Debian 3 Libxcursor, Ubuntu Linux, Debian Linux 2018-04-11 5.0
libXcursor before 1.1.15 has various integer overflows that could lead to heap buffer overflows when processing malicious cursors, e.g., with programs like GIMP. It is also possible that an attack vector exists against the related code in...
CVE-2013-6424 1 X 1 X Server 2017-10-31 5.0
Integer underflow in the xTrapezoidValid macro in render/picture.h in X.Org allows context-dependent attackers to cause a denial of service (crash) via a negative bottom value.
CVE-2012-1699 2 X, Xfree86 2 X.org X11, Xfree86 2017-09-19 3.6
The ProcSetEventMask function in difs/events.c in the xfs font server for X.Org X11R6 through X11R6.6 and XFree86 before 3.3.3 calls the SendErrToClient function with a mask value instead of a pointer, which allows local users to cause a denial...
CVE-2010-1166 1 X 1 X.org 2017-09-19 7.1
The fbComposite function in fbpict.c in the Render extension in the X server in X.Org X11R7.1 allows remote authenticated users to cause a denial of service (memory corruption and daemon crash) or possibly execute arbitrary code via a crafted...
CVE-2014-4910 1 X 1 Xf86-video-intel 2017-08-29 4.6
Directory traversal vulnerability in tools/backlight_helper.c in X.Org xf86-video-intel 2.99.911 allows remote attackers to create or overwrite arbitrary files via a .. (dot dot) in the interface name.
CVE-2013-6462 1 X 1 Libxfont 2017-08-29 9.3
Stack-based buffer overflow in the bdfReadCharacters function in bitmap/bdfread.c in X.Org libXfont 1.1 through 1.4.6 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long string in a character...
CVE-2011-2895 5 X, Freetype, Openbsd and 2 more 5 Libxfont, Freebsd, Netbsd and 2 more 2017-08-29 9.3
The LZW decompressor in (1) the BufCompressedFill function in fontfile/decompress.c in X.Org libXfont before 1.4.4 and (2) compress/compress.c in 4.3BSD, as used in zopen.c in OpenBSD before 3.8, FreeBSD, NetBSD 4.0.x and 5.0.x before 5.0.3 and...
CVE-2011-0465 2 X, Matthias Hopf 2 X11, Xrdb 2017-08-17 9.3
xrdb.c in xrdb before 1.0.9 in X.Org X11R7.6 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in a hostname obtained from a (1) DHCP or (2) XDMCP message.
CVE-2013-2005 1 X 1 Libxt 2017-04-21 6.8
X.org libXt 1.1.3 and earlier does not check the return value of the XGetWindowProperty function, which allows X servers to trigger use of an uninitialized pointer and memory corruption via vectors related to the (1) ReqCleanup, (2)...