Search CVE reports
1 – 10 of 124 results
Some fixes available 13 of 14
A flaw was found in the RandR extension, where the RRChangeProviderProperty function does not properly validate input. This issue leads to an integer overflow when computing the total size to allocate.
7 affected packages
xorg, xorg-hwe-16.04, xorg-hwe-18.04, xorg-server, xorg-server-hwe-16.04...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| xorg | Not affected | Not affected | Not affected | Not affected |
| xorg-hwe-16.04 | Not in release | Not in release | — | — |
| xorg-hwe-18.04 | Not in release | Not in release | — | Not affected |
| xorg-server | Fixed | Fixed | Fixed | Fixed |
| xorg-server-hwe-16.04 | Not in release | Not in release | — | — |
| xorg-server-hwe-18.04 | Not in release | Not in release | — | Fixed |
| xwayland | Fixed | Fixed | — | — |
Some fixes available 13 of 14
A flaw was found in the X Record extension. The RecordSanityCheckRegisterClients function does not check for an integer overflow when computing request length, which allows a client to bypass length checks.
7 affected packages
xorg, xorg-hwe-16.04, xorg-hwe-18.04, xorg-server, xorg-server-hwe-16.04...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| xorg | Not affected | Not affected | Not affected | Not affected |
| xorg-hwe-16.04 | Not in release | Not in release | — | — |
| xorg-hwe-18.04 | Not in release | Not in release | — | Not affected |
| xorg-server | Fixed | Fixed | Fixed | Fixed |
| xorg-server-hwe-16.04 | Not in release | Not in release | — | — |
| xorg-server-hwe-18.04 | Not in release | Not in release | — | Fixed |
| xwayland | Fixed | Fixed | — | — |
Some fixes available 13 of 14
A flaw was found in the X server's request handling. Non-zero 'bytes to ignore' in a client's request can cause the server to skip processing another client's request, potentially leading to a denial of service.
7 affected packages
xorg, xorg-hwe-16.04, xorg-hwe-18.04, xorg-server, xorg-server-hwe-16.04...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| xorg | Not affected | Not affected | Not affected | Not affected |
| xorg-hwe-16.04 | Not in release | Not in release | — | — |
| xorg-hwe-18.04 | Not in release | Not in release | — | Not affected |
| xorg-server | Fixed | Fixed | Fixed | Fixed |
| xorg-server-hwe-16.04 | Not in release | Not in release | — | — |
| xorg-server-hwe-18.04 | Not in release | Not in release | — | Fixed |
| xwayland | Fixed | Fixed | — | — |
Some fixes available 8 of 14
A flaw was found in the XFIXES extension. The XFixesSetClientDisconnectMode handler does not validate the request length, allowing a client to read unintended memory from previous requests.
7 affected packages
xorg, xorg-hwe-16.04, xorg-hwe-18.04, xorg-server, xorg-server-hwe-16.04...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| xorg | Not affected | Not affected | Not affected | Not affected |
| xorg-hwe-16.04 | Not in release | Not in release | — | — |
| xorg-hwe-18.04 | Not in release | Not in release | — | Not affected |
| xorg-server | Fixed | Fixed | Needs evaluation | Needs evaluation |
| xorg-server-hwe-16.04 | Not in release | Not in release | — | — |
| xorg-server-hwe-18.04 | Not in release | Not in release | — | Needs evaluation |
| xwayland | Fixed | Fixed | — | — |
Some fixes available 13 of 14
A flaw was found in the Big Requests extension. The request length is multiplied by 4 before checking against the maximum allowed size, potentially causing an integer overflow and bypassing the size check.
7 affected packages
xorg, xorg-hwe-16.04, xorg-hwe-18.04, xorg-server, xorg-server-hwe-16.04...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| xorg | Not affected | Not affected | Not affected | Not affected |
| xorg-hwe-16.04 | Not in release | Not in release | — | — |
| xorg-hwe-18.04 | Not in release | Not in release | — | Not affected |
| xorg-server | Fixed | Fixed | Fixed | Fixed |
| xorg-server-hwe-16.04 | Not in release | Not in release | — | — |
| xorg-server-hwe-18.04 | Not in release | Not in release | — | Fixed |
| xwayland | Fixed | Fixed | — | — |
Some fixes available 13 of 14
A flaw was found in the X Rendering extension's handling of animated cursors. If a client provides no cursors, the server assumes at least one is present, leading to an out-of-bounds read and potential crash.
7 affected packages
xorg, xorg-hwe-16.04, xorg-hwe-18.04, xorg-server, xorg-server-hwe-16.04...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| xorg | Not affected | Not affected | Not affected | Not affected |
| xorg-hwe-16.04 | Not in release | Not in release | — | — |
| xorg-hwe-18.04 | Not in release | Not in release | — | Not affected |
| xorg-server | Fixed | Fixed | Fixed | Fixed |
| xorg-server-hwe-16.04 | Not in release | Not in release | — | — |
| xorg-server-hwe-18.04 | Not in release | Not in release | — | Fixed |
| xwayland | Fixed | Fixed | — | — |
In X.Org X server 20.11 through 21.1.16, when a client application uses easystroke for mouse gestures, the main thread modifies various data structures used by the input thread without acquiring a lock, aka a race condition. In...
7 affected packages
xorg, xorg-hwe-16.04, xorg-hwe-18.04, xorg-server, xorg-server-hwe-16.04...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| xorg | Not affected | Not affected | Not affected | Not affected |
| xorg-hwe-16.04 | Not in release | Not in release | Not in release | — |
| xorg-hwe-18.04 | Not in release | Not in release | Not in release | Not affected |
| xorg-server | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| xorg-server-hwe-16.04 | Not in release | Not in release | Not in release | — |
| xorg-server-hwe-18.04 | Not in release | Not in release | Not in release | Needs evaluation |
| xwayland | Needs evaluation | Needs evaluation | Not in release | — |
Some fixes available 13 of 14
A use-after-free flaw was found in X.Org and Xwayland. When changing an alarm, the values of the change mask are evaluated one after the other, changing the trigger values as requested, and eventually, SyncInitTrigger() is called....
7 affected packages
xorg, xorg-hwe-16.04, xorg-hwe-18.04, xorg-server, xorg-server-hwe-16.04...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| xorg | Not affected | Not affected | Not affected | Not affected |
| xorg-hwe-16.04 | Not in release | Not in release | Not in release | — |
| xorg-hwe-18.04 | Not in release | Not in release | Not in release | Not affected |
| xorg-server | Fixed | Fixed | Fixed | Fixed |
| xorg-server-hwe-16.04 | Not in release | Not in release | Not in release | — |
| xorg-server-hwe-18.04 | Not in release | Not in release | Not in release | Fixed |
| xwayland | Fixed | Fixed | Not in release | — |
Some fixes available 13 of 14
A use-after-free flaw was found in X.Org and Xwayland. When a device is removed while still frozen, the events queued for that device remain while the device is freed. Replaying the events will cause a use-after-free.
7 affected packages
xorg, xorg-hwe-16.04, xorg-hwe-18.04, xorg-server, xorg-server-hwe-16.04...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| xorg | Not affected | Not affected | Not affected | Not affected |
| xorg-hwe-16.04 | Not in release | Not in release | Not in release | — |
| xorg-hwe-18.04 | Not in release | Not in release | Not in release | Not affected |
| xorg-server | Fixed | Fixed | Fixed | Fixed |
| xorg-server-hwe-16.04 | Not in release | Not in release | Not in release | — |
| xorg-server-hwe-18.04 | Not in release | Not in release | Not in release | Fixed |
| xwayland | Fixed | Fixed | Not in release | — |
Some fixes available 13 of 14
An access to an uninitialized pointer flaw was found in X.Org and Xwayland. The function compCheckRedirect() may fail if it cannot allocate the backing pixmap. In that case, compRedirectWindow() will return a BadAlloc...
7 affected packages
xorg, xorg-hwe-16.04, xorg-hwe-18.04, xorg-server, xorg-server-hwe-16.04...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| xorg | Not affected | Not affected | Not affected | Not affected |
| xorg-hwe-16.04 | Not in release | Not in release | Not in release | — |
| xorg-hwe-18.04 | Not in release | Not in release | Not in release | Not affected |
| xorg-server | Fixed | Fixed | Fixed | Fixed |
| xorg-server-hwe-16.04 | Not in release | Not in release | Not in release | — |
| xorg-server-hwe-18.04 | Not in release | Not in release | Not in release | Fixed |
| xwayland | Fixed | Fixed | Not in release | — |