Max CVSS | 7.5 | Min CVSS | 1.9 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2013-6424 | 5.0 |
Integer underflow in the xTrapezoidValid macro in render/picture.h in X.Org allows context-dependent attackers to cause a denial of service (crash) via a negative bottom value.
|
13-02-2023 - 04:49 | 18-01-2014 - 19:55 | |
CVE-2013-1994 | 6.8 |
Multiple integer overflows in X.org libchromeXvMC and libchromeXvMCPro in openChrome 0.3.2 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) uniDRIOpenConnection and (2) uniD
|
13-02-2023 - 04:42 | 15-06-2013 - 19:55 | |
CVE-2014-8103 | 6.5 |
X.Org Server (aka xserver and xorg-server) 1.15.0 through 1.16.x before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the
|
13-02-2023 - 00:42 | 10-12-2014 - 15:59 | |
CVE-2020-14362 | 4.6 |
A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Integer underflow leading to heap-buffer overflow may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity
|
03-11-2022 - 20:04 | 15-09-2020 - 19:15 | |
CVE-2020-25712 | 4.6 |
A flaw was found in xorg-x11-server before 1.20.10. A heap-buffer overflow in XkbSetDeviceInfo may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system ava
|
16-12-2020 - 21:42 | 15-12-2020 - 17:15 | |
CVE-2011-4029 | 1.9 |
The LockServer function in os/utils.c in X.Org xserver before 1.11.2 allows local users to change the permissions of arbitrary files to 444, read those files, and possibly cause a denial of service (removed execution permission) via a symlink attack
|
24-08-2020 - 17:14 | 03-07-2012 - 19:55 | |
CVE-2018-14665 | 7.2 |
A flaw was found in xorg-x11-server before 1.20.3. An incorrect permission check for -modulepath and -logfile options when starting Xorg. X server allows unprivileged users with the ability to log in to the system via physical console to escalate the
|
22-10-2019 - 23:15 | 25-10-2018 - 20:29 | |
CVE-2018-15864 | 2.1 |
Unchecked NULL pointer usage in resolve_keysym in xkbcomp/parser.y in xkbcommon before 0.8.2 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file, because a map access attempt ca
|
06-08-2019 - 17:15 | 25-08-2018 - 21:29 | |
CVE-2015-9262 | 7.5 |
_XcursorThemeInherits in library.c in libXcursor before 1.1.15 allows remote attackers to cause denial of service or potentially code execution via a one-byte heap overflow.
|
16-04-2019 - 19:08 | 01-08-2018 - 23:29 | |
CVE-2015-0255 | 6.4 |
X.Org Server (aka xserver and xorg-server) before 1.16.3 and 1.17.x before 1.17.1 allows remote attackers to obtain sensitive information from process memory or cause a denial of service (crash) via a crafted string length value in a XkbSetGeometry r
|
30-10-2018 - 16:27 | 13-02-2015 - 15:59 | |
CVE-2015-3418 | 5.0 |
The ProcPutImage function in dix/dispatch.c in X.Org Server (aka xserver and xorg-server) before 1.16.4 allows attackers to cause a denial of service (divide-by-zero and crash) via a zero-height PutImage request.
|
30-01-2018 - 02:29 | 13-12-2016 - 16:59 | |
CVE-2013-4396 | 6.5 |
Use-after-free vulnerability in the doImageText function in dix/dixfonts.c in the xorg-server module before 1.14.4 in X.Org X11 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a cra
|
28-11-2016 - 19:09 | 10-10-2013 - 10:55 | |
CVE-2013-1940 | 2.1 |
X.Org X server before 1.13.4 and 1.4.x before 1.14.1 does not properly restrict access to input events when adding a new hot-plug device, which might allow physically proximate attackers to obtain sensitive information, as demonstrated by reading pas
|
21-06-2013 - 03:17 | 13-05-2013 - 23:55 | |
CVE-2010-4819 | 3.6 |
The ProcRenderAddGlyphs function in the Render extension (render/render.c) in X.Org xserver 1.7.7 and earlier allows local users to read arbitrary memory and possibly cause a denial of service (server crash) via unspecified vectors related to an "inp
|
13-09-2012 - 04:00 | 05-09-2012 - 23:55 |