rpm package
opensuse/xorg-x11-server&distro=openSUSE Leap 15.2
pkg:rpm/opensuse/xorg-x11-server&distro=openSUSE%20Leap%2015.2
Vulnerabilities (12)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-4011 | — | < 1.20.3-lp152.8.36.1 | 1.20.3-lp152.8.36.1 | Dec 17, 2021 | A flaw was found in xorg-x11-server in versions before 21.1.2 and before 1.20.14. An out-of-bounds access can occur in the SwapCreateRegister function. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. | ||
| CVE-2021-4010 | — | < 1.20.3-lp152.8.36.1 | 1.20.3-lp152.8.36.1 | Dec 17, 2021 | A flaw was found in xorg-x11-server in versions before 21.1.2 and before 1.20.14. An out-of-bounds access can occur in the SProcScreenSaverSuspend function. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. | ||
| CVE-2021-4009 | — | < 1.20.3-lp152.8.36.1 | 1.20.3-lp152.8.36.1 | Dec 17, 2021 | A flaw was found in xorg-x11-server in versions before 21.1.2 and before 1.20.14. An out-of-bounds access can occur in the SProcXFixesCreatePointerBarrier function. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. | ||
| CVE-2021-4008 | — | < 1.20.3-lp152.8.33.1 | 1.20.3-lp152.8.33.1 | Dec 17, 2021 | A flaw was found in xorg-x11-server in versions before 21.1.2 and before 1.20.14. An out-of-bounds access can occur in the SProcRenderCompositeGlyphs function. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. | ||
| CVE-2021-3472 | — | < 1.20.3-lp152.8.21.1 | 1.20.3-lp152.8.21.1 | Apr 26, 2021 | A flaw was found in xorg-x11-server in versions before 1.20.11. An integer underflow can occur in xserver which can lead to a local privilege escalation. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. | ||
| CVE-2020-14360 | — | < 1.20.3-lp152.8.12.1 | 1.20.3-lp152.8.12.1 | Jan 20, 2021 | A flaw was found in the X.Org Server before version 1.20.10. An out-of-bounds access in the XkbSetMap function may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. | ||
| CVE-2020-25712 | — | < 1.20.3-lp152.8.12.1 | 1.20.3-lp152.8.12.1 | Dec 15, 2020 | A flaw was found in xorg-x11-server before 1.20.10. A heap-buffer overflow in XkbSetDeviceInfo may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. | ||
| CVE-2020-14345 | — | < 1.20.3-lp152.8.3.1 | 1.20.3-lp152.8.3.1 | Sep 15, 2020 | A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Out-Of-Bounds access in XkbSetNames function may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. | ||
| CVE-2020-14362 | — | < 1.20.3-lp152.8.6.1 | 1.20.3-lp152.8.6.1 | Sep 15, 2020 | A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Integer underflow leading to heap-buffer overflow may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availabilit | ||
| CVE-2020-14361 | — | < 1.20.3-lp152.8.6.1 | 1.20.3-lp152.8.6.1 | Sep 15, 2020 | A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Integer underflow leading to heap-buffer overflow may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availabilit | ||
| CVE-2020-14346 | — | < 1.20.3-lp152.8.3.1 | 1.20.3-lp152.8.3.1 | Sep 15, 2020 | A flaw was found in xorg-x11-server before 1.20.9. An integer underflow in the X input extension protocol decoding in the X server may lead to arbitrary access of memory contents. The highest threat from this vulnerability is to data confidentiality and integrity as well as syste | ||
| CVE-2020-14347 | — | < 1.20.3-lp152.8.3.1 | 1.20.3-lp152.8.3.1 | Aug 5, 2020 | A flaw was found in the way xserver memory was not properly initialized. This could leak parts of server memory to the X client. In cases where Xorg server runs with elevated privileges, this could result in possible ASLR bypass. Xorg-server before version 1.20.9 is vulnerable. |
- CVE-2021-4011Dec 17, 2021affected < 1.20.3-lp152.8.36.1fixed 1.20.3-lp152.8.36.1
A flaw was found in xorg-x11-server in versions before 21.1.2 and before 1.20.14. An out-of-bounds access can occur in the SwapCreateRegister function. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
- CVE-2021-4010Dec 17, 2021affected < 1.20.3-lp152.8.36.1fixed 1.20.3-lp152.8.36.1
A flaw was found in xorg-x11-server in versions before 21.1.2 and before 1.20.14. An out-of-bounds access can occur in the SProcScreenSaverSuspend function. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
- CVE-2021-4009Dec 17, 2021affected < 1.20.3-lp152.8.36.1fixed 1.20.3-lp152.8.36.1
A flaw was found in xorg-x11-server in versions before 21.1.2 and before 1.20.14. An out-of-bounds access can occur in the SProcXFixesCreatePointerBarrier function. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
- CVE-2021-4008Dec 17, 2021affected < 1.20.3-lp152.8.33.1fixed 1.20.3-lp152.8.33.1
A flaw was found in xorg-x11-server in versions before 21.1.2 and before 1.20.14. An out-of-bounds access can occur in the SProcRenderCompositeGlyphs function. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
- CVE-2021-3472Apr 26, 2021affected < 1.20.3-lp152.8.21.1fixed 1.20.3-lp152.8.21.1
A flaw was found in xorg-x11-server in versions before 1.20.11. An integer underflow can occur in xserver which can lead to a local privilege escalation. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
- CVE-2020-14360Jan 20, 2021affected < 1.20.3-lp152.8.12.1fixed 1.20.3-lp152.8.12.1
A flaw was found in the X.Org Server before version 1.20.10. An out-of-bounds access in the XkbSetMap function may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
- CVE-2020-25712Dec 15, 2020affected < 1.20.3-lp152.8.12.1fixed 1.20.3-lp152.8.12.1
A flaw was found in xorg-x11-server before 1.20.10. A heap-buffer overflow in XkbSetDeviceInfo may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
- CVE-2020-14345Sep 15, 2020affected < 1.20.3-lp152.8.3.1fixed 1.20.3-lp152.8.3.1
A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Out-Of-Bounds access in XkbSetNames function may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
- CVE-2020-14362Sep 15, 2020affected < 1.20.3-lp152.8.6.1fixed 1.20.3-lp152.8.6.1
A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Integer underflow leading to heap-buffer overflow may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availabilit
- CVE-2020-14361Sep 15, 2020affected < 1.20.3-lp152.8.6.1fixed 1.20.3-lp152.8.6.1
A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Integer underflow leading to heap-buffer overflow may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availabilit
- CVE-2020-14346Sep 15, 2020affected < 1.20.3-lp152.8.3.1fixed 1.20.3-lp152.8.3.1
A flaw was found in xorg-x11-server before 1.20.9. An integer underflow in the X input extension protocol decoding in the X server may lead to arbitrary access of memory contents. The highest threat from this vulnerability is to data confidentiality and integrity as well as syste
- CVE-2020-14347Aug 5, 2020affected < 1.20.3-lp152.8.3.1fixed 1.20.3-lp152.8.3.1
A flaw was found in the way xserver memory was not properly initialized. This could leak parts of server memory to the X client. In cases where Xorg server runs with elevated privileges, this could result in possible ASLR bypass. Xorg-server before version 1.20.9 is vulnerable.