Xfree86_project X11r6
27 CVEs affecting Xfree86_project X11r6. Latest disclosed: 2007-04-06. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2003-0063 | High | 7.3 | 2003-03-03 | The xterm terminal emulator in XFree86 4.2.0 and earlier allows attackers to modify the window title via a certain character escape sequence and then insert it… |
CVE-2007-1351 | | 2007-04-06 | Integer overflow in the bdfReadCharacters function in bdfread.c in (1) X.Org libXfont before 20070403 and (2) freetype 2.3.2 and earlier allows remote authenti… | |
CVE-2005-0605 | | 2005-03-02 | scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow. | |
CVE-2004-0914 | | 2005-01-10 | Multiple vulnerabilities in libXpm for 6.8.1 and earlier, as used in XFree86 and other packages, include (1) multiple integer overflows, (2) out-of-bounds memo… | |
CVE-2004-0688 | | 2004-10-20 | Multiple integer overflows in (1) the xpmParseColors function in parse.c, (2) XpmCreateImageFromXpmImage, (3) CreateXImage, (4) ParsePixels, and (5) ParseAndPu… | |
CVE-2004-0687 | | 2004-10-20 | Multiple stack-based buffer overflows in (1) xpmParseColors in parse.c, (2) ParseAndPutPixels in create.c, and (3) ParsePixels in parse.c for libXpm before 6.8… | |
CVE-2004-0094 | | 2004-03-15 | Integer signedness errors in XFree86 4.1.0 allow remote attackers to cause a denial of service and possibly execute arbitrary code when using the GLX extension… | |
CVE-2004-0093 | | 2004-03-15 | XFree86 4.1.0 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an out-of-bounds array index when using the GLX exte… | |
CVE-2004-0106 | | 2004-03-03 | Multiple unknown vulnerabilities in XFree86 4.1.0 to 4.3.0, related to improper handling of font files, a different set of vulnerabilities than CVE-2004-0083 a… | |
CVE-2004-0084 | | 2004-03-03 | Buffer overflow in the ReadFontAlias function in XFree86 4.1.0 to 4.3.0, when using the CopyISOLatin1Lowered function, allows local or remote authenticated use… | |
CVE-2004-0083 | | 2004-03-03 | Buffer overflow in ReadFontAlias from dirfile.c of XFree86 4.1.0 through 4.3.0 allows local users and remote attackers to execute arbitrary code via a font ali… | |
CVE-2003-0730 | | 2003-10-20 | Multiple integer overflows in the font libraries for XFree86 4.3.0 allow local or remote attackers to cause a denial of service or execute arbitrary code via h… | |
CVE-2003-0071 | | 2003-03-03 | The DEC UDK processing feature in the xterm terminal emulator in XFree86 4.2.99.4 and earlier allows attackers to cause a denial of service via a certain chara… | |
CVE-2002-1510 | | 2003-03-03 | xdm, with the authComplain variable set to false, allows arbitrary attackers to connect to the X server if the xdm auth directory does not exist. | |
CVE-2002-1472 | | 2003-03-03 | Untrusted search path vulnerability in libX11.so in xfree86, when used in setuid or setgid programs, allows local users to gain root privileges via a modified… | |
CVE-2002-1317 | | 2002-12-11 | Buffer overflow in Dispatch() routine for XFS font server (fs.auto) on Solaris 2.5.1 through 9 allows remote attackers to cause a denial of service (crash) or… | |
CVE-2001-0955 | | 2001-09-22 | Buffer overflow in fbglyph.c in XFree86 before 4.2.0, related to glyph clipping for large origins, allows attackers to cause a denial of service and possibly g… | |
CVE-2001-1179 | | 2001-07-17 | xman allows local users to gain privileges by modifying the MANPATH to point to a man page whose filename contains shell metacharacters. | |
CVE-2001-1178 | | 2001-07-11 | Buffer overflow in xman allows local users to gain privileges via a long MANPATH environment variable. | |
CVE-2001-1086 | | 2001-07-04 | XDM in XFree86 3.3 and 3.3.3 generates easily guessable cookies using gettimeofday() when compiled with the HasXdmXauth option, which allows remote attackers t… |