Vulnerabilities > X ORG
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2016-12-13 | CVE-2016-7944 | Integer Overflow or Wraparound vulnerability in multiple products Integer overflow in X.org libXfixes before 5.0.3 on 32-bit platforms might allow remote X servers to gain privileges via a length value of INT_MAX, which triggers the client to stop reading data and get out of sync. | 9.8 |
| 2016-12-13 | CVE-2016-7943 | Out-of-bounds Write vulnerability in multiple products The XListFonts function in X.org libX11 before 1.6.4 might allow remote X servers to gain privileges via vectors involving length fields, which trigger out-of-bounds write operations. | 9.8 |
| 2016-12-13 | CVE-2016-7942 | Out-of-bounds Write vulnerability in multiple products The XGetImage function in X.org libX11 before 1.6.4 might allow remote X servers to gain privileges via vectors involving image type and geometry, which triggers out-of-bounds read operations. | 9.8 |
| 2016-12-13 | CVE-2016-5407 | Out-of-bounds Read vulnerability in multiple products The (1) XvQueryAdaptors and (2) XvQueryEncodings functions in X.org libXv before 1.0.11 allow remote X servers to trigger out-of-bounds memory access operations via vectors involving length specifications in received data. | 9.8 |
| 2016-12-13 | CVE-2015-3418 | Divide By Zero vulnerability in X.Org Xorg-Server The ProcPutImage function in dix/dispatch.c in X.Org Server (aka xserver and xorg-server) before 1.16.4 allows attackers to cause a denial of service (divide-by-zero and crash) via a zero-height PutImage request. | 7.5 |