VYPR

Xorg Server

by Xorg

CVEs (60)

  • CVE-2021-4008Dec 17, 2021
    risk 0.00cvss epss 0.01

    A flaw was found in xorg-x11-server in versions before 21.1.2 and before 1.20.14. An out-of-bounds access can occur in the SProcRenderCompositeGlyphs function. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

  • CVE-2021-4010Dec 17, 2021
    risk 0.00cvss epss 0.01

    A flaw was found in xorg-x11-server in versions before 21.1.2 and before 1.20.14. An out-of-bounds access can occur in the SProcScreenSaverSuspend function. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

  • CVE-2020-25697May 26, 2021
    risk 0.00cvss epss 0.00

    A privilege escalation flaw was found in the Xorg-x11-server due to a lack of authentication for X11 clients. This flaw allows an attacker to take control of an X application by impersonating the server it is expecting to connect to.

  • CVE-2020-14360Jan 20, 2021
    risk 0.00cvss epss 0.00

    A flaw was found in the X.Org Server before version 1.20.10. An out-of-bounds access in the XkbSetMap function may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

  • CVE-2020-25712Dec 15, 2020
    risk 0.00cvss epss 0.00

    A flaw was found in xorg-x11-server before 1.20.10. A heap-buffer overflow in XkbSetDeviceInfo may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

  • CVE-2020-14345Sep 15, 2020
    risk 0.00cvss epss 0.01

    A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Out-Of-Bounds access in XkbSetNames function may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

  • CVE-2020-14346Sep 15, 2020
    risk 0.00cvss epss 0.01

    A flaw was found in xorg-x11-server before 1.20.9. An integer underflow in the X input extension protocol decoding in the X server may lead to arbitrary access of memory contents. The highest threat from this vulnerability is to data confidentiality and integrity as well as…

  • CVE-2020-14362Sep 15, 2020
    risk 0.00cvss epss 0.01

    A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Integer underflow leading to heap-buffer overflow may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system…

  • CVE-2020-14361Sep 15, 2020
    risk 0.00cvss epss 0.01

    A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Integer underflow leading to heap-buffer overflow may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system…

  • CVE-2017-12187CriJan 24, 2018
    risk 0.00cvss 9.8epss 0.03

    xorg-x11-server before 1.19.5 was missing length validation in RENDER extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.

  • CVE-2017-12186CriJan 24, 2018
    risk 0.00cvss 9.8epss 0.04

    xorg-x11-server before 1.19.5 was missing length validation in X-Resource extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.

  • CVE-2017-12185CriJan 24, 2018
    risk 0.00cvss 9.8epss 0.04

    xorg-x11-server before 1.19.5 was missing length validation in MIT-SCREEN-SAVER extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.

  • CVE-2017-12184CriJan 24, 2018
    risk 0.00cvss 9.8epss 0.04

    xorg-x11-server before 1.19.5 was missing length validation in XINERAMA extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.

  • CVE-2017-12183CriJan 24, 2018
    risk 0.00cvss 9.8epss 0.04

    xorg-x11-server before 1.19.5 was missing length validation in XFIXES extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.

  • CVE-2017-12182CriJan 24, 2018
    risk 0.00cvss 9.8epss 0.04

    xorg-x11-server before 1.19.5 was missing length validation in XFree86 DRI extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.

  • CVE-2017-12181CriJan 24, 2018
    risk 0.00cvss 9.8epss 0.04

    xorg-x11-server before 1.19.5 was missing length validation in XFree86 DGA extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.

  • CVE-2017-12180CriJan 24, 2018
    risk 0.00cvss 9.8epss 0.04

    xorg-x11-server before 1.19.5 was missing length validation in XFree86 VidModeExtension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.

  • CVE-2017-12179CriJan 24, 2018
    risk 0.00cvss 9.8epss 0.04

    xorg-x11-server before 1.19.5 was vulnerable to integer overflow in (S)ProcXIBarrierReleasePointer functions allowing malicious X client to cause X server to crash or possibly execute arbitrary code.

  • CVE-2017-12178CriJan 24, 2018
    risk 0.00cvss 9.8epss 0.04

    xorg-x11-server before 1.19.5 had wrong extra length check in ProcXIChangeHierarchy function allowing malicious X client to cause X server to crash or possibly execute arbitrary code.

  • CVE-2017-12177CriJan 24, 2018
    risk 0.00cvss 9.8epss 0.04

    xorg-x11-server before 1.19.5 was vulnerable to integer overflow in ProcDbeGetVisualInfo function allowing malicious X client to cause X server to crash or possibly execute arbitrary code.