Search CVE reports
41 – 50 of 54 results
xorg-x11-server before 1.19.5 was missing length validation in XINERAMA extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.
8 affected packages
xorg-server-lts-utopic, xorg-server-lts-vivid, xorg-server-lts-wily, xorg-server-lts-xenial, xorg...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| xorg-server-lts-utopic | — | — | — | — |
| xorg-server-lts-vivid | — | — | — | — |
| xorg-server-lts-wily | — | — | — | — |
| xorg-server-lts-xenial | — | — | — | — |
| xorg | — | — | — | — |
| xorg-hwe-16.04 | — | — | — | — |
| xorg-server | — | — | — | — |
| xorg-server-hwe-16.04 | — | — | — | — |
xorg-x11-server before 1.19.5 was missing length validation in XFIXES extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.
8 affected packages
xorg, xorg-hwe-16.04, xorg-server, xorg-server-hwe-16.04, xorg-server-lts-utopic...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| xorg | — | — | — | — |
| xorg-hwe-16.04 | — | — | — | — |
| xorg-server | — | — | — | — |
| xorg-server-hwe-16.04 | — | — | — | — |
| xorg-server-lts-utopic | — | — | — | — |
| xorg-server-lts-vivid | — | — | — | — |
| xorg-server-lts-xenial | — | — | — | — |
| xorg-server-lts-wily | — | — | — | — |
xorg-x11-server before 1.19.5 was missing length validation in XFree86 DRI extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.
8 affected packages
xorg-server, xorg-server-lts-wily, xorg-server-lts-xenial, xorg, xorg-hwe-16.04...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| xorg-server | — | — | — | — |
| xorg-server-lts-wily | — | — | — | — |
| xorg-server-lts-xenial | — | — | — | — |
| xorg | — | — | — | — |
| xorg-hwe-16.04 | — | — | — | — |
| xorg-server-hwe-16.04 | — | — | — | — |
| xorg-server-lts-utopic | — | — | — | — |
| xorg-server-lts-vivid | — | — | — | — |
xorg-x11-server before 1.19.5 was missing length validation in XFree86 DGA extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.
8 affected packages
xorg-hwe-16.04, xorg-server, xorg-server-hwe-16.04, xorg-server-lts-utopic, xorg-server-lts-vivid...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| xorg-hwe-16.04 | — | — | — | — |
| xorg-server | — | — | — | — |
| xorg-server-hwe-16.04 | — | — | — | — |
| xorg-server-lts-utopic | — | — | — | — |
| xorg-server-lts-vivid | — | — | — | — |
| xorg-server-lts-wily | — | — | — | — |
| xorg-server-lts-xenial | — | — | — | — |
| xorg | — | — | — | — |
xorg-x11-server before 1.19.5 was missing length validation in XFree86 VidModeExtension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.
8 affected packages
xorg, xorg-server, xorg-server-hwe-16.04, xorg-server-lts-xenial, xorg-hwe-16.04...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| xorg | — | — | — | — |
| xorg-server | — | — | — | — |
| xorg-server-hwe-16.04 | — | — | — | — |
| xorg-server-lts-xenial | — | — | — | — |
| xorg-hwe-16.04 | — | — | — | — |
| xorg-server-lts-utopic | — | — | — | — |
| xorg-server-lts-vivid | — | — | — | — |
| xorg-server-lts-wily | — | — | — | — |
xorg-x11-server before 1.19.5 was vulnerable to integer overflow in (S)ProcXIBarrierReleasePointer functions allowing malicious X client to cause X server to crash or possibly execute arbitrary code.
8 affected packages
xorg-server-lts-utopic, xorg-server-lts-vivid, xorg-server-lts-wily, xorg-server-lts-xenial, xorg...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| xorg-server-lts-utopic | — | — | — | — |
| xorg-server-lts-vivid | — | — | — | — |
| xorg-server-lts-wily | — | — | — | — |
| xorg-server-lts-xenial | — | — | — | — |
| xorg | — | — | — | — |
| xorg-hwe-16.04 | — | — | — | — |
| xorg-server | — | — | — | — |
| xorg-server-hwe-16.04 | — | — | — | — |
xorg-x11-server before 1.19.5 had wrong extra length check in ProcXIChangeHierarchy function allowing malicious X client to cause X server to crash or possibly execute arbitrary code.
8 affected packages
xorg, xorg-hwe-16.04, xorg-server, xorg-server-hwe-16.04, xorg-server-lts-utopic...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| xorg | — | — | — | — |
| xorg-hwe-16.04 | — | — | — | — |
| xorg-server | — | — | — | — |
| xorg-server-hwe-16.04 | — | — | — | — |
| xorg-server-lts-utopic | — | — | — | — |
| xorg-server-lts-vivid | — | — | — | — |
| xorg-server-lts-xenial | — | — | — | — |
| xorg-server-lts-wily | — | — | — | — |
xorg-x11-server before 1.19.5 was vulnerable to integer overflow in ProcDbeGetVisualInfo function allowing malicious X client to cause X server to crash or possibly execute arbitrary code.
8 affected packages
xorg-server, xorg-server-lts-wily, xorg-server-lts-xenial, xorg, xorg-hwe-16.04...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| xorg-server | — | — | — | — |
| xorg-server-lts-wily | — | — | — | — |
| xorg-server-lts-xenial | — | — | — | — |
| xorg | — | — | — | — |
| xorg-hwe-16.04 | — | — | — | — |
| xorg-server-hwe-16.04 | — | — | — | — |
| xorg-server-lts-utopic | — | — | — | — |
| xorg-server-lts-vivid | — | — | — | — |
xorg-x11-server before 1.19.5 was missing extra length validation in ProcEstablishConnection function allowing malicious X client to cause X server to crash or possibly execute arbitrary code.
8 affected packages
xorg-server, xorg-server-hwe-16.04, xorg-server-lts-utopic, xorg-server-lts-vivid, xorg-server-lts-wily...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| xorg-server | — | — | — | — |
| xorg-server-hwe-16.04 | — | — | — | — |
| xorg-server-lts-utopic | — | — | — | — |
| xorg-server-lts-vivid | — | — | — | — |
| xorg-server-lts-wily | — | — | — | — |
| xorg-server-lts-xenial | — | — | — | — |
| xorg | — | — | — | — |
| xorg-hwe-16.04 | — | — | — | — |
Some fixes available 5 of 6
Uninitialized data in endianness conversion in the XEvent handling of the X.Org X Server before 2017-06-19 allowed authenticated malicious users to access potentially privileged data from the X server.
8 affected packages
xorg-server, xorg-server-hwe-16.04, xorg-server-lts-utopic, xorg-server-lts-vivid, xorg-server-lts-wily...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| xorg-server | — | — | — | — |
| xorg-server-hwe-16.04 | — | — | — | — |
| xorg-server-lts-utopic | — | — | — | — |
| xorg-server-lts-vivid | — | — | — | — |
| xorg-server-lts-wily | — | — | — | — |
| xorg-server-lts-xenial | — | — | — | — |
| xorg | — | — | — | — |
| xorg-hwe-16.04 | — | — | — | — |