Vulnerabilities > X ORG > X Server > 1.1.99.902
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-12-17 | CVE-2021-4011 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products A flaw was found in xorg-x11-server in versions before 21.1.2 and before 1.20.14. | 7.8 |
2021-04-26 | CVE-2021-3472 | Integer Underflow (Wrap or Wraparound) vulnerability in multiple products A flaw was found in xorg-x11-server in versions before 1.20.11. | 7.8 |
2021-01-20 | CVE-2020-14360 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in X.Org X Server A flaw was found in the X.Org Server before version 1.20.10. | 6.1 |
2020-12-15 | CVE-2020-25712 | Heap-based Buffer Overflow vulnerability in multiple products A flaw was found in xorg-x11-server before 1.20.10. | 4.6 |
2020-09-15 | CVE-2020-14345 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products A flaw was found in X.Org Server before xorg-x11-server 1.20.9. | 7.8 |
2019-10-16 | CVE-2019-17624 | Out-of-bounds Write vulnerability in X.Org X Server "" In X.Org X Server 1.20.4, there is a stack-based buffer overflow in the function XQueryKeymap. | 4.6 |
2012-07-03 | CVE-2011-4029 | Race Condition vulnerability in X.Org X Server The LockServer function in os/utils.c in X.Org xserver before 1.11.2 allows local users to change the permissions of arbitrary files to 444, read those files, and possibly cause a denial of service (removed execution permission) via a symlink attack on a temporary lock file. | 1.9 |
2012-07-03 | CVE-2011-4028 | Link Following vulnerability in X.Org X Server The LockServer function in os/utils.c in X.Org xserver before 1.11.2 allows local users to determine the existence of arbitrary files via a symlink attack on a temporary lock file, which is handled differently if the file exists. | 1.2 |
2008-01-18 | CVE-2007-6427 | Out-Of-Bounds Write vulnerability in multiple products The XInput extension in X.Org Xserver before 1.4.1 allows context-dependent attackers to execute arbitrary code via requests related to byte swapping and heap corruption within multiple functions, a different vulnerability than CVE-2007-4990. | 9.3 |