Vulnerabilities > Fedoraproject > Fedora > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-01-12 | CVE-2016-8606 | Improper Access Control vulnerability in multiple products The REPL server (--listen) in GNU Guile 2.0.12 allows an attacker to execute arbitrary code via an HTTP inter-protocol attack. | 9.8 |
| 2016-12-13 | CVE-2016-7953 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products Buffer underflow in X.org libXvMC before 1.0.10 allows remote X servers to have unspecified impact via an empty string. | 9.8 |
| 2016-12-13 | CVE-2016-7951 | Integer Overflow or Wraparound vulnerability in multiple products Multiple integer overflows in X.org libXtst before 1.2.3 allow remote X servers to trigger out-of-bounds memory access operations by leveraging the lack of range checks. | 9.8 |
| 2016-12-13 | CVE-2016-7950 | Out-of-bounds Write vulnerability in multiple products The XRenderQueryFilters function in X.org libXrender before 0.9.10 allows remote X servers to trigger out-of-bounds write operations via vectors involving filter name lengths. | 9.8 |
| 2016-12-13 | CVE-2016-7949 | Out-of-bounds Write vulnerability in multiple products Multiple buffer overflows in the (1) XvQueryAdaptors and (2) XvQueryEncodings functions in X.org libXrender before 0.9.10 allow remote X servers to trigger out-of-bounds write operations via vectors involving length fields. | 9.8 |
| 2016-12-13 | CVE-2016-7948 | Out-of-bounds Write vulnerability in multiple products X.org libXrandr before 1.5.1 allows remote X servers to trigger out-of-bounds write operations by leveraging mishandling of reply data. | 9.8 |
| 2016-12-13 | CVE-2016-7947 | Integer Overflow or Wraparound vulnerability in multiple products Multiple integer overflows in X.org libXrandr before 1.5.1 allow remote X servers to trigger out-of-bounds write operations via a crafted response. | 9.8 |
| 2016-12-13 | CVE-2016-7944 | Integer Overflow or Wraparound vulnerability in multiple products Integer overflow in X.org libXfixes before 5.0.3 on 32-bit platforms might allow remote X servers to gain privileges via a length value of INT_MAX, which triggers the client to stop reading data and get out of sync. | 9.8 |
| 2016-12-13 | CVE-2016-7943 | Out-of-bounds Write vulnerability in multiple products The XListFonts function in X.org libX11 before 1.6.4 might allow remote X servers to gain privileges via vectors involving length fields, which trigger out-of-bounds write operations. | 9.8 |
| 2016-12-13 | CVE-2016-7942 | Out-of-bounds Write vulnerability in multiple products The XGetImage function in X.org libX11 before 1.6.4 might allow remote X servers to gain privileges via vectors involving image type and geometry, which triggers out-of-bounds read operations. | 9.8 |