Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
x.org xorg-server vulnerabilities and exploits
(subscribe to this query)
578
VMScore
CVE-2014-8093
Multiple integer overflows in the GLX extension in XFree86 4.0, X.Org X Window System (aka X11 or X) X11R6.7, and X.Org Server (aka xserver and xorg-server) prior to 1.16.3 allow remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code vi...
X.org X11 6.7
X.org Xorg-server
X.org Xfree86 4.0
409
VMScore
CVE-2012-0064
xkeyboard-config prior to 2.5 in X.Org prior to 7.6 enables certain XKB debugging functions by default, which allows physically proximate malicious users to bypass an X screen lock via keyboard combinations that break the input grab.
Xkeyboard Config Project Xkeyboard-config 2.0
X X.org X11 1.0
X X.org X11 3.0
X X.org X11 4.0
X X.org X11 5.0
X X.org X11 7.1
X X.org X11 7.2
X X.org X11 7.3
X X.org X11 7.4
X X.org X11 6.5.1
X X.org X11 6.6
X X.org X11 6.7
X X.org X11 6.8
Xkeyboard Config Project Xkeyboard-config
Xkeyboard Config Project Xkeyboard-config 2.2
X X.org X11 6.0
X X.org X11 6.3
X X.org X11 6.8.2
X X.org X11 7.0
X X.org X11 7.5
Xkeyboard Config Project Xkeyboard-config 2.3
Xkeyboard Config Project Xkeyboard-config 2.1
169
VMScore
CVE-2013-1056
X.org X server 1.13.3 and previous versions, when not run as root, allows local users to cause a denial of service (crash) or possibly gain privileges via vectors involving cached xkb files.
Canonical Ubuntu Linux 13.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 12.10
756
VMScore
CVE-2010-4818
The GLX extension in X.Org xserver 1.7.7 allows remote authenticated users to cause a denial of service (server crash) and possibly execute arbitrary code via (1) a crafted request that triggers a client swap in glx/glxcmdsswap.c; or (2) a crafted length or (3) a negative value i...
X.org X.org 1.7.7
320
VMScore
CVE-2010-4819
The ProcRenderAddGlyphs function in the Render extension (render/render.c) in X.Org xserver 1.7.7 and previous versions allows local users to read arbitrary memory and possibly cause a denial of service (server crash) via unspecified vectors related to an "input sanitization...
X X.org-xserver
X X.org-xserver 1.7.7
X X.org-xserver 1.7.6.902
X X.org-xserver 1.7
107
VMScore
CVE-2011-4028
The LockServer function in os/utils.c in X.Org xserver prior to 1.11.2 allows local users to determine the existence of arbitrary files via a symlink attack on a temporary lock file, which is handled differently if the file exists.
X.org X Server
X.org X Server 1.11.0
195
VMScore
CVE-2011-4029
The LockServer function in os/utils.c in X.Org xserver prior to 1.11.2 allows local users to change the permissions of arbitrary files to 444, read those files, and possibly cause a denial of service (removed execution permission) via a symlink attack on a temporary lock file.
X.org X Server
X.org X Server 1.11.0
1 EDB exploit
1 Github repository
890
VMScore
CVE-2012-2118
Format string vulnerability in the LogVHdrMessageVerb function in os/log.c in X.Org X11 1.11 allows malicious users to cause a denial of service or possibly execute arbitrary code via format string specifiers in an input device name.
X.org X11 1.11
643
VMScore
CVE-2010-2240
The do_anonymous_page function in mm/memory.c in the Linux kernel prior to 2.6.27.52, 2.6.32.x prior to 2.6.32.19, 2.6.34.x prior to 2.6.34.4, and 2.6.35.x prior to 2.6.35.2 does not properly separate the stack and the heap, which allows context-dependent malicious users to execu...
Linux Linux Kernel 2.6.32.5
Linux Linux Kernel 2.6.35.1
Linux Linux Kernel 2.6.32.12
Linux Linux Kernel 2.6.32.9
Linux Linux Kernel 2.6.32
Linux Linux Kernel 2.6.32.3
Linux Linux Kernel 2.6.32.17
Linux Linux Kernel 2.6.34.1
Linux Linux Kernel 2.6.32.11
Linux Linux Kernel
Linux Linux Kernel 2.6.32.14
Linux Linux Kernel 2.6.32.6
Linux Linux Kernel 2.6.32.15
Linux Linux Kernel 2.6.32.18
Linux Linux Kernel 2.6.32.4
Linux Linux Kernel 2.6.32.16
Linux Linux Kernel 2.6.34.3
Linux Linux Kernel 2.6.32.7
Linux Linux Kernel 2.6.32.8
Linux Linux Kernel 2.6.32.2
Linux Linux Kernel 2.6.32.1
Linux Linux Kernel 2.6.34.2
632
VMScore
CVE-2010-1166
The fbComposite function in fbpict.c in the Render extension in the X server in X.Org X11R7.1 allows remote authenticated users to cause a denial of service (memory corruption and daemon crash) or possibly execute arbitrary code via a crafted request, related to an incorrect macr...
X X.org 7.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »