CVE search results

91 – 100 of 149 results

Detailed view

Sort by:

CVE-2014-8092

Medium priority

Some fixes available 4 of 5

Multiple integer overflows in X.Org X Window System (aka X11 or X) X11R1 and X.Org Server (aka xserver and xorg-server) before 1.16.3 allow remote authenticated users to cause a denial of service (crash) or possibly execute...

2 affected packages

xorg-server, xorg-server-lts-trusty

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
xorg-server	—	—	—	—
xorg-server-lts-trusty	—	—	—	—

CVE-2014-8091

Medium priority

Some fixes available 16 of 17

X.Org X Window System (aka X11 and X) X11R5 and X.Org Server (aka xserver and xorg-server) before 1.16.3, when using SUN-DES-1 (Secure RPC) authentication credentials, does not check the return value of a malloc call, which allows...

6 affected packages

nvidia-graphics-drivers-304, nvidia-graphics-drivers-304-updates, nvidia-graphics-drivers-331, nvidia-graphics-drivers-331-updates, xorg-server, xorg-server-lts-trusty

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
nvidia-graphics-drivers-304	—	—	—	—
nvidia-graphics-drivers-304-updates	—	—	—	—
nvidia-graphics-drivers-331	—	—	—	—
nvidia-graphics-drivers-331-updates	—	—	—	—
xorg-server	—	—	—	—
xorg-server-lts-trusty	—	—	—	—

CVE-2014-4910

Medium priority

Ignored

Directory traversal vulnerability in tools/backlight_helper.c in X.Org xf86-video-intel 2.99.911 allows remote attackers to create or overwrite arbitrary files via a .. (dot dot) in the interface name.

1 affected package

xserver-xorg-video-intel

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
xserver-xorg-video-intel	—	—	—	—

CVE-2013-6424

Low priority

Some fixes available 1 of 4

Integer underflow in the xTrapezoidValid macro in render/picture.h in X.Org allows context-dependent attackers to cause a denial of service (crash) via a negative bottom value.

2 affected packages

xorg, xorg-server

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
xorg	—	—	—	—
xorg-server	—	—	—	—

CVE-2013-4396

Medium priority

Some fixes available 5 of 6

Use-after-free vulnerability in the doImageText function in dix/dixfonts.c in the xorg-server module before 1.14.4 in X.Org X11 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute...

3 affected packages

xorg-server, xorg-server-lts-quantal, xorg-server-lts-raring

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
xorg-server	—	—	—	—
xorg-server-lts-quantal	—	—	—	—
xorg-server-lts-raring	—	—	—	—

CVE-2013-1994

Medium priority

Some fixes available 4 of 5

Multiple integer overflows in X.org libchromeXvMC and libchromeXvMCPro in openChrome 0.3.2 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the...

2 affected packages

xserver-xorg-video-openchrome, xserver-xorg-video-openchrome-lts-quantal

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
xserver-xorg-video-openchrome	—	—	—	—
xserver-xorg-video-openchrome-lts-quantal	—	—	—	—

CVE-2013-1940

Medium priority

Some fixes available 5 of 6

X.Org X server before 1.13.4 and 1.4.x before 1.14.1 does not properly restrict access to input events when adding a new hot-plug device, which might allow physically proximate attackers to obtain sensitive information, as...

2 affected packages

xorg-server, xorg-server-lts-quantal

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
xorg-server	—	—	—	—
xorg-server-lts-quantal	—	—	—	—

CVE-2013-1056

Low priority

Some fixes available 6 of 8

X.org X server 1.13.3 and earlier, when not run as root, allows local users to cause a denial of service (crash) or possibly gain privileges via vectors involving cached xkb files.

3 affected packages

xorg-server, xorg-server-lts-quantal, xorg-server-lts-raring

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
xorg-server	—	—	—	—
xorg-server-lts-quantal	—	—	—	—
xorg-server-lts-raring	—	—	—	—

CVE-2013-0241

Medium priority

Fixed

The QXL display driver in QXL Virtual GPU 0.1.0 allows local users to cause a denial of service (guest crash or hang) via a SPICE connection that prevents other threads from obtaining the qemu_mutex mutex. NOTE: some of these...

1 affected package

xserver-xorg-video-qxl

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
xserver-xorg-video-qxl	—	—	—	—

CVE-2012-2118

Low priority

Fixed

Format string vulnerability in the LogVHdrMessageVerb function in os/log.c in X.Org X11 1.11 allows attackers to cause a denial of service or possibly execute arbitrary code via format string specifiers in an input device name.

1 affected package

xorg-server

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
xorg-server	—	—	—	—

Export to JSON

Results by page:

Search CVE reports