VYPR

rpm package

suse/libX11&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP2

pkg:rpm/suse/libX11&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP2

Vulnerabilities (14)

  • CVE-2020-14363Sep 11, 2020
    affected < 1.6.2-12.15.1fixed 1.6.2-12.15.1

    An integer overflow vulnerability leading to a double-free was found in libX11. This flaw allows a local privileged attacker to cause an application compiled with libX11 to crash, or in some cases, result in arbitrary code execution. The highest threat from this flaw is to confid

  • CVE-2020-14344Aug 5, 2020
    affected < 1.6.2-12.8.1fixed 1.6.2-12.8.1

    An integer overflow leading to a heap-buffer overflow was found in The X Input Method (XIM) client was implemented in libX11 before version 1.6.10. As per upstream this is security relevant when setuid programs call XIM client functions while running with elevated privileges. No

  • CVE-2016-7953CriDec 13, 2016
    affected < 1.6.2-8.1fixed 1.6.2-8.1

    Buffer underflow in X.org libXvMC before 1.0.10 allows remote X servers to have unspecified impact via an empty string.

  • CVE-2016-7952HigDec 13, 2016
    affected < 1.6.2-8.1fixed 1.6.2-8.1

    X.org libXtst before 1.2.3 allows remote X servers to cause a denial of service (infinite loop) via a reply in the (1) XRecordStartOfData, (2) XRecordEndOfData, or (3) XRecordClientDied category without a client sequence and with attached data.

  • CVE-2016-7951CriDec 13, 2016
    affected < 1.6.2-8.1fixed 1.6.2-8.1

    Multiple integer overflows in X.org libXtst before 1.2.3 allow remote X servers to trigger out-of-bounds memory access operations by leveraging the lack of range checks.

  • CVE-2016-7950CriDec 13, 2016
    affected < 1.6.2-8.1fixed 1.6.2-8.1

    The XRenderQueryFilters function in X.org libXrender before 0.9.10 allows remote X servers to trigger out-of-bounds write operations via vectors involving filter name lengths.

  • CVE-2016-7949CriDec 13, 2016
    affected < 1.6.2-8.1fixed 1.6.2-8.1

    Multiple buffer overflows in the (1) XvQueryAdaptors and (2) XvQueryEncodings functions in X.org libXrender before 0.9.10 allow remote X servers to trigger out-of-bounds write operations via vectors involving length fields.

  • CVE-2016-7948CriDec 13, 2016
    affected < 1.6.2-8.1fixed 1.6.2-8.1

    X.org libXrandr before 1.5.1 allows remote X servers to trigger out-of-bounds write operations by leveraging mishandling of reply data.

  • CVE-2016-7947CriDec 13, 2016
    affected < 1.6.2-8.1fixed 1.6.2-8.1

    Multiple integer overflows in X.org libXrandr before 1.5.1 allow remote X servers to trigger out-of-bounds write operations via a crafted response.

  • CVE-2016-7946HigDec 13, 2016
    affected < 1.6.2-8.1fixed 1.6.2-8.1

    X.org libXi before 1.7.7 allows remote X servers to cause a denial of service (infinite loop) via vectors involving length fields.

  • CVE-2016-7945HigDec 13, 2016
    affected < 1.6.2-8.1fixed 1.6.2-8.1

    Multiple integer overflows in X.org libXi before 1.7.7 allow remote X servers to cause a denial of service (out-of-bounds memory access or infinite loop) via vectors involving length fields.

  • CVE-2016-7944CriDec 13, 2016
    affected < 1.6.2-8.1fixed 1.6.2-8.1

    Integer overflow in X.org libXfixes before 5.0.3 on 32-bit platforms might allow remote X servers to gain privileges via a length value of INT_MAX, which triggers the client to stop reading data and get out of sync.

  • CVE-2016-7942CriDec 13, 2016
    affected < 1.6.2-8.1fixed 1.6.2-8.1

    The XGetImage function in X.org libX11 before 1.6.4 might allow remote X servers to gain privileges via vectors involving image type and geometry, which triggers out-of-bounds read operations.

  • CVE-2016-5407CriDec 13, 2016
    affected < 1.6.2-8.1fixed 1.6.2-8.1

    The (1) XvQueryAdaptors and (2) XvQueryEncodings functions in X.org libXv before 1.0.11 allow remote X servers to trigger out-of-bounds memory access operations via vectors involving length specifications in received data.