The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of X.Org Bundle ~ not comprehensive

X.Org Xserver: information disclosure via AllocatePixmap
A local attacker can read a memory fragment via AllocatePixmap() of X.Org Xserver, in order to obtain sensitive information...
CVE-2020-14347, DLA-2359-1, DSA-4758-1, openSUSE-SU-2020:1279-1, openSUSE-SU-2020:1302-1, SUSE-SU-2020:14463-1, SUSE-SU-2020:2240-1, SUSE-SU-2020:2241-1, SUSE-SU-2020:2242-1, SUSE-SU-2020:2325-1, SUSE-SU-2020:2326-1, SUSE-SU-2020:2331-1, USN-4488-1, USN-4488-2, VIGILANCE-VUL-32990, ZDI-20-934
X.Org X Server: buffer overflow via XQueryKeymap
An attacker can trigger a buffer overflow via XQueryKeymap of X.Org X Server, in order to trigger a denial of service, and possibly to run code...
CVE-2019-17624, VIGILANCE-VUL-30644
X.Org Server: privilege escalation via modulepath/logfile
An attacker can bypass restrictions via modulepath/logfile of X.Org Server, in order to escalate his privileges...
bulletinoct2018, CVE-2018-14665, DSA-4328-1, FEDORA-2018-4ab08fedd6, FEDORA-2018-839720583a, openSUSE-SU-2018:3800-1, RHSA-2018:3410-01, SUSE-SU-2018:3456-1, SUSE-SU-2018:3680-1, USN-3802-1, VIGILANCE-VUL-27616
libXcursor: buffer overflow via Theme Files
An attacker can generate a buffer overflow via Theme Files of libXcursor, in order to trigger a denial of service, and possibly to run code...
CVE-2015-9262, DLA-1469-1, DSA-2020-030, openSUSE-SU-2018:2487-1, RHSA-2018:3059-01, SUSE-SU-2018:2791-1, SUSE-SU-2018:2841-1, USN-3729-1, VIGILANCE-VUL-27063
libX11: three vulnerabilities
An attacker can use several vulnerabilities of libX11...
bulletinoct2018, CERTFR-2018-AVI-490, CVE-2018-14598, CVE-2018-14599, CVE-2018-14600, DLA-1482-1, DSA-2019-131, DSA-2019-197, FEDORA-2019-6a756fe3a5, openSUSE-SU-2018:2567-1, openSUSE-SU-2018:3012-1, RHSA-2019:2079-01, SSA:2018-233-01, SUSE-SU-2018:2934-1, SUSE-SU-2018:2955-1, SUSE-SU-2018:3102-1, USN-3758-1, USN-3758-2, VIGILANCE-VUL-27057
libXcursor: buffer overflow via Comments
An attacker can generate a buffer overflow via Comments of libXcursor, in order to trigger a denial of service, and possibly to run code...
bulletinapr2018, CVE-2017-16612, DLA-1201-1, DSA-4059-1, FEDORA-2018-0eed1be1c0, FEDORA-2018-1c5dada34b, openSUSE-SU-2018:0504-1, USN-3501-1, USN-3622-1, VIGILANCE-VUL-24559
libXfont: file corruption via fonts.dir/fonts.alias
A local attacker can create a symbolic link named fonts.dir/fonts.alias, in order to alter the pointed file, with privileges of libXfont...
bulletinapr2018, CVE-2017-16611, FEDORA-2018-05b078c373, FEDORA-2018-4f5a3e792f, FEDORA-2018-5a7cd68500, FEDORA-2018-e27b435a7f, USN-3500-1, VIGILANCE-VUL-24558
X.Org Server: multiple vulnerabilities
An attacker can use several vulnerabilities of X.Org Server...
bulletinoct2018, CVE-2017-12176, CVE-2017-12177, CVE-2017-12178, CVE-2017-12179, CVE-2017-12180, CVE-2017-12181, CVE-2017-12182, CVE-2017-12183, CVE-2017-12184, CVE-2017-12185, CVE-2017-12186, CVE-2017-12187, DLA-1186-1, DSA-4000-1, openSUSE-SU-2017:2823-1, SSA:2017-291-03, USN-3456-1, VIGILANCE-VUL-24130
libxfont: out-of-bounds memory reading via PCF
An attacker can force a read at an invalid address via PCF of libxfont, in order to trigger a denial of service, or to obtain sensitive information...
CVE-2017-13722, DLA-1126-1, DSA-3995-1, FEDORA-2017-2783ef2c63, FEDORA-2017-b7c4334524, FEDORA-2017-f44afd1f34, openSUSE-SU-2017:3256-1, openSUSE-SU-2018:0343-1, USN-3442-1, VIGILANCE-VUL-24047
libxfont: out-of-bounds memory reading via Question Character
An attacker can force a read at an invalid address via Question Character of libxfont, in order to trigger a denial of service, or to obtain sensitive information...
CVE-2017-13720, DLA-1126-1, DSA-3995-1, FEDORA-2017-2783ef2c63, FEDORA-2017-b7c4334524, FEDORA-2017-f44afd1f34, openSUSE-SU-2017:3256-1, openSUSE-SU-2018:0343-1, USN-3442-1, VIGILANCE-VUL-24046
Our database contains other pages. You can request a free trial to read them.

Display information about X.Org Bundle ~ not comprehensive: