Download
| Alert*
oval:org.secpod.oval:def:20997
libX11 is installed oval:org.secpod.oval:def:1800677 libx11 is installed oval:org.secpod.oval:def:1600008 Multiple integer overflow flaws, leading to heap-based buffer overflows, were found in the way various X11 client libraries handled certain protocol data. An attacker able to submit invalid protocol data to an X11 server via a malicious X11 client could use either of these flaws to potentially escal ... oval:org.secpod.oval:def:89002308 This update for libX11 and libxcb fixes the following issue: libX11: These security issues were fixed: - CVE-2018-14599: The function XListExtensions was vulnerable to an off-by-one error caused by malicious server responses, leading to DoS or possibly unspecified other impact . - CVE-2018-14600: Th ... oval:org.secpod.oval:def:3301080 SUSE Security Update: Security update for libX11 oval:org.secpod.oval:def:20998 The host is installed with libX11 before 1.5.99.902 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle unbounded recursion. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:20996 The host is installed with libX11 before 1.5.99.902 and is prone to multiple array index vulnerabilities. The flaws are present in the application, which fails to properly handle crafted length or index values. Successful exploitation could allow attackers to execute arbitrary code or crash the serv ... oval:org.secpod.oval:def:21004 The host is installed with libX11 before 1.5.99.901 and is prone to multiple integer overflow vulnerabilities. The flaws are present in the application, which fails to properly handle vectors related to the (1) XQueryFont, (2) _XF86BigfontQueryFont, (3) XListFontsWithInfo, (4) XGetMotionEvents, (5) ... oval:org.secpod.oval:def:501406 The X11 libraries provide library routines that are used within all X Window applications. Multiple integer overflow flaws, leading to heap-based buffer overflows, were found in the way various X11 client libraries handled certain protocol data. An attacker able to submit invalid protocol data to a ... oval:org.secpod.oval:def:204275 The X11 libraries provide library routines that are used within all X Window applications. Multiple integer overflow flaws, leading to heap-based buffer overflows, were found in the way various X11 client libraries handled certain protocol data. An attacker able to submit invalid protocol data to an ... oval:org.secpod.oval:def:89050371 This update for libX11 fixes the following issues: - CVE-2020-14363: Fix an integer overflow in init_om . oval:org.secpod.oval:def:204610 The X11 libraries provide library routines that are used within all X Window applications. The following packages have been upgraded to a later upstream version: libX11 , libXaw , libXdmcp , libXfixes , libXfont , libXi , libXpm , libXrandr , libXrender , libXt , libXtst , libXv , libXvMC , libXxf8 ... oval:org.secpod.oval:def:89048527 This update for libX11 fixes the following issues: * Fixed regression introduced with security update for CVE-2022-3555 oval:org.secpod.oval:def:89048550 This update for libX11 fixes the following issues: * Fixed a regression introduced with security update for CVE-2022-3555 oval:org.secpod.oval:def:120662 Core X11 protocol client library. oval:org.secpod.oval:def:118628 Core X11 protocol client library. oval:org.secpod.oval:def:1801199 CVE-2018-14598: Crash on invalid reply in XListExtensions in ListExt.c¶ An issue was discovered in ListExt.c:XListExtensions and GetFPath.c:XGetFontPath in libX11 through version 1.6.5. A malicious server can send a reply in which the first string overflows, causing a variable to be set to NULL ... oval:org.secpod.oval:def:1801204 CVE-2018-14598: Crash on invalid reply in XListExtensions in ListExt.c¶ An issue was discovered in ListExt.c:XListExtensions and GetFPath.c:XGetFontPath in libX11 through version 1.6.5. A malicious server can send a reply in which the first string overflows, causing a variable to be set to NULL ... oval:org.secpod.oval:def:1801205 CVE-2018-14598: Crash on invalid reply in XListExtensions in ListExt.c¶ An issue was discovered in ListExt.c:XListExtensions and GetFPath.c:XGetFontPath in libX11 through version 1.6.5. A malicious server can send a reply in which the first string overflows, causing a variable to be set to NULL ... oval:org.secpod.oval:def:1801206 CVE-2018-14598: Crash on invalid reply in XListExtensions in ListExt.c¶ An issue was discovered in ListExt.c:XListExtensions and GetFPath.c:XGetFontPath in libX11 through version 1.6.5. A malicious server can send a reply in which the first string overflows, causing a variable to be set to NULL ... oval:org.secpod.oval:def:4501284 The libX11 packages contain the core X11 protocol client library. Security Fix: * libX11: missing request length checks For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References secti ... oval:org.secpod.oval:def:2500426 The libX11 packages contain the core X11 protocol client library. oval:org.secpod.oval:def:1505232 [1.6.8-5] - Fix CVE-2021-31535 oval:org.secpod.oval:def:89047210 This update for libX11 fixes the following issues: - CVE-2021-31535: Fixed missing request length checks in libX11 . oval:org.secpod.oval:def:89047252 This update for libX11 fixes the following issues: - Regression in the fix for CVE-2021-31535, causing segfaults for xforms applications like fdesign oval:org.secpod.oval:def:502098 The X11 libraries provide library routines that are used within all X Window applications. The following packages have been upgraded to a later upstream version: libX11 , libXaw , libXdmcp , libXfixes , libXfont , libXi , libXpm , libXrandr , libXrender , libXt , libXtst , libXv , libXvMC , libXxf8 ... oval:org.secpod.oval:def:1501952 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:205308 X.Org is an open-source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon. Security Fix: * libX11: Crash on invalid reply in XListExtensions in ListExt.c * libX11: Off-by-one error in XListExtensions in ... oval:org.secpod.oval:def:1504545 gdm [3.28.2-16] - Dont bring up login screen if background session gets killed Related: #1680120 [3.28.2-15] - sync AllowMultipleSessionsPerUser patch from 7.6 branch Resolves: #1664353 - Create dconf dirs by default Resolves: #1664284 [3.28.2-14] - Fix unlock on XDMCP sessions Resolves: #1693060 [3 ... oval:org.secpod.oval:def:1700180 An off-by-one error has been discovered in libX11 in functions XGetFontPath, XListExtensions, and XListFonts. An attacker who can either configure a malicious X server or modify the data coming from one could use this flaw to make the program crash or have other unspecified effects, caused by the me ... oval:org.secpod.oval:def:503295 X.Org is an open-source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon. Security Fix: * libX11: Crash on invalid reply in XListExtensions in ListExt.c * libX11: Off-by-one error in XListExtensions in ... oval:org.secpod.oval:def:1800676 CVE-2016-7942: Insufficient validation of server responses in XGetImage CVE-2016-7943: Insufficient validation of server responses in FontNames Fixed In Version libX11 1.6.4 Affected versions libX11 oval:org.secpod.oval:def:89000233 This update for libX11 fixes the following issues: - CVE-2020-14363: Fix an integer overflow in init_om . oval:org.secpod.oval:def:89000239 This update for libX11 fixes the following issues: - Fixed XIM client heap overflows oval:org.secpod.oval:def:1503078 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:205692 The libX11 packages contain the core X11 protocol client library. Security Fix: * libX11: integer overflow leads to double free in locale handling For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page lis ... oval:org.secpod.oval:def:1503083 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:89000106 This update for libX11 fixes the following issues: - CVE-2020-14363: Fix an integer overflow in init_om . oval:org.secpod.oval:def:89000667 This update for libX11 fixes the following issues: - Fixed XIM client heap overflows oval:org.secpod.oval:def:4501349 X.Org is an open-source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon. Mesa provides a 3D graphics API that is compatible with Open Graphics Library . It also provides hardware-accelerated drivers fo ... oval:org.secpod.oval:def:89000052 This update for libX11 fixes the following issues: - Fixed XIM client heap overflows . oval:org.secpod.oval:def:89000536 This update for libX11 fixes the following issues: - Fixed XIM client heap overflows . oval:org.secpod.oval:def:89000613 This update for libX11 fixes the following issues: - CVE-2020-14363: Fix an integer overflow in init_om . oval:org.secpod.oval:def:1504909 egl-wayland [1.1.5-3] - Add upstream patch to address rhbz#1842473 [1.1.5-2] - Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild [1.1.5-1] - Update to 1.1.5 libdrm [2.4.103-1] - Update to 2.4.103 libglvnd [1.3.2-1] - Update to 1.3.2 release libinput [1.16.3-1] - libinput 1.16.3 libw ... oval:org.secpod.oval:def:73611 X.Org is an open-source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon. Mesa provides a 3D graphics API that is compatible with Open Graphics Library . It also provides hardware-accelerated drivers fo ... oval:org.secpod.oval:def:2500348 X.Org is an open-source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon. oval:org.secpod.oval:def:2600382 The libX11 packages contain the core X11 protocol client library. oval:org.secpod.oval:def:2501249 The libX11 packages contain the core X11 protocol client library. oval:org.secpod.oval:def:19500283 A vulnerability was found in libX11. The security flaw occurs because the functions in src/InitExt.c in libX11 do not check that the values provided for the Request, Event, or Error IDs are within the bounds of the arrays that those functions write to, using those IDs as array indexes. They trust th ... oval:org.secpod.oval:def:89048967 This update for libX11 fixes the following issues: * CVE-2023-3138: Fixed buffer overflows in InitExt.c . oval:org.secpod.oval:def:89049034 This update for libX11 fixes the following issues: * CVE-2023-3138: Fixed buffer overflows in InitExt.c . oval:org.secpod.oval:def:1701865 libX11: out-of-bounds memory access in _XkbReadKeySyms libX11: integer overflow in XCreateImage leading to a heap overflow oval:org.secpod.oval:def:89049827 This update for libX11 fixes the following issues: * CVE-2023-43786: Fixed stack exhaustion from infinite recursion in PutSubImage . * CVE-2023-43787: Fixed integer overflow in XCreateImage leading to a heap overflow . * CVE-2023-43785: Fixed out-of-bounds memory access in _XkbReadKeySyms . oval:org.secpod.oval:def:19500470 libX11: out-of-bounds memory access in _XkbReadKeySyms A vulnerability was found in libX11 due to an infinite loop within the PutSubImage function. This flaw allows a local user to consume all available system resources and cause a denial of service condition. libX11: integer overflow in XCreateImag ... oval:org.secpod.oval:def:509258 The libX11 packages contain the core X11 protocol client library. Security Fix: libX11: out-of-bounds memory access in _XkbReadKeySyms libX11: stack exhaustion from infinite recursion in PutSubImage libX11: integer overflow in XCreateImage leading to a heap overflow For more details about the sec ... oval:org.secpod.oval:def:2600618 The libX11 packages contain the core X11 protocol client library. oval:org.secpod.oval:def:89050199 This update for libX11 fixes the following issues: * CVE-2023-43786: Fixed stack exhaustion from infinite recursion in PutSubImage . * CVE-2023-43787: Fixed integer overflow in XCreateImage leading to a heap overflow . * CVE-2023-43785: Fixed out-of-bounds memory access in _XkbReadKeySyms . oval:org.secpod.oval:def:3301394 Security update for libX11 oval:org.secpod.oval:def:1701979 A vulnerability was found in libX11 due to an infinite loop within the PutSubImage function. This flaw allows a local user to consume all available system resources and cause a denial of service condition |