CVE search results

131 – 140 of 149 results

Detailed view

Sort by:

CVE-2006-4447

Medium priority

Some fixes available 9 of 11

X.Org and XFree86, including libX11, xdm, xf86dga, xinit, xload, xtrans, and xterm, does not check the return values for setuid and seteuid calls when attempting to drop privileges, which might allow local users to gain privileges...

2 affected packages

beast, xorg-server

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
beast	—	—	—	—
xorg-server	—	—	—	—

CVE-2006-3467

Medium priority

Some fixes available 17 of 18

Integer overflow in FreeType before 2.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PCF file, as demonstrated by the Red Hat bad1.pcf test file, due to a partial...

4 affected packages

xorg, freetype, libxfont, ia32-libs

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
xorg	—	—	—	—
freetype	—	—	—	—
libxfont	—	—	—	—
ia32-libs	—	—	—	—

CVE-2006-1526

Medium priority

Fixed

Buffer overflow in the X render (Xrender) extension in X.org X server 6.8.0 up to allows attackers to cause a denial of service (crash), as demonstrated by the (1) XRenderCompositeTriStrip and (2) XRenderCompositeTriFan requests...

2 affected packages

xorg, xorg-server

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
xorg	—	—	—	—
xorg-server	—	—	—	—

CVE-2006-0745

Medium priority

Fixed

X.Org server (xorg-server) 1.0.0 and later, X11R6.9.0, and X11R7.0 inadvertently treats the address of the geteuid function as if it is the return value of a call to geteuid, which allows local users to bypass intended...

1 affected package

xorg-server

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
xorg-server	—	—	—	—

CVE-2005-2495

Medium priority

Not affected

Multiple integer overflows in XFree86 before 4.3.0 allow user-assisted attackers to execute arbitrary code via a crafted pixmap image.

1 affected package

xorg

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
xorg	—	—	—	—

CVE-2005-0605

Medium priority

Fixed

scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow.

5 affected packages

lesstif1-1, lesstif2, openmotif, xorg, xterm

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
lesstif1-1	—	—	—	—
lesstif2	—	—	—	—
openmotif	—	—	—	—
xorg	—	—	—	—
xterm	—	—	—	—

CVE-2004-0914

Medium priority

Fixed

Multiple vulnerabilities in libXpm for 6.8.1 and earlier, as used in XFree86 and other packages, include (1) multiple integer overflows, (2) out-of-bounds memory accesses, (3) directory traversal, (4) shell metacharacter, (5)...

4 affected packages

xorg, lesstif1-1, lesstif2, openmotif

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
xorg	—	—	—	—
lesstif1-1	—	—	—	—
lesstif2	—	—	—	—
openmotif	—	—	—	—

CVE-2004-0688

Medium priority

Fixed

Multiple integer overflows in (1) the xpmParseColors function in parse.c, (2) XpmCreateImageFromXpmImage, (3) CreateXImage, (4) ParsePixels, and (5) ParseAndPutPixels for libXpm before 6.8.1 may allow remote attackers to execute...

4 affected packages

lesstif1-1, lesstif2, openmotif, xorg

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
lesstif1-1	—	—	—	—
lesstif2	—	—	—	—
openmotif	—	—	—	—
xorg	—	—	—	—

CVE-2004-0687

Medium priority

Fixed

Multiple stack-based buffer overflows in (1) xpmParseColors in parse.c, (2) ParseAndPutPixels in create.c, and (3) ParsePixels in parse.c for libXpm before 6.8.1 allow remote attackers to execute arbitrary code via a malformed XPM...

2 affected packages

openmotif, xorg

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
openmotif	—	—	—	—
xorg	—	—	—	—

CVE-2004-0419

Medium priority

Fixed

XDM in XFree86 opens a chooserFd TCP socket even when DisplayManager.requestPort is 0, which could allow remote attackers to connect to the port, in violation of the intended restrictions.

1 affected package

xorg

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
xorg	—	—	—	—

Export to JSON

Results by page:

Search CVE reports