Debian Xorg-Server vulnerabilities

CVE-2014-8100 [MEDIUM] CVE-2014-8100: xorg-server - The Render extension in XFree86 4.0.1, X.Org X Window System (aka X11 or X) X11R... The Render extension in XFree86 4.0.1, X.Org X Window System (aka X11 or X) X11R6.7, and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) ProcRenderQueryVersion, (2) SProcRenderQuer

CVE-2014-8094 [MEDIUM] CVE-2014-8094: xorg-server - Integer overflow in the ProcDRI2GetBuffers function in the DRI2 extension in X.O... Integer overflow in the ProcDRI2GetBuffers function in the DRI2 extension in X.Org Server (aka xserver and xorg-server) 1.7.0 through 1.16.x before 1.16.3 allows remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted request, which triggers an out-of-bounds read or write. Scope: local bookworm: resolved (

CVE-2014-8103 [MEDIUM] CVE-2014-8103: xorg-server - X.Org Server (aka xserver and xorg-server) 1.15.0 through 1.16.x before 1.16.3 a... X.Org Server (aka xserver and xorg-server) 1.15.0 through 1.16.x before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) sproc_dri3_query_version, (2) sproc_dri3_open, (3) sproc_dri3_pixmap_from_buffer, (4) sproc_dri3_buffer_from_p

CVE-2014-8091 [MEDIUM] CVE-2014-8091: xorg-server - X.Org X Window System (aka X11 and X) X11R5 and X.Org Server (aka xserver and xo... X.Org X Window System (aka X11 and X) X11R5 and X.Org Server (aka xserver and xorg-server) before 1.16.3, when using SUN-DES-1 (Secure RPC) authentication credentials, does not check the return value of a malloc call, which allows remote attackers to cause a denial of service (NULL pointer dereference and server crash) via a crafted connection request. Scope: lo

CVE-2014-8099 [MEDIUM] CVE-2014-8099: xorg-server - The XVideo extension in XFree86 4.0.0, X.Org X Window System (aka X11 or X) X11R... The XVideo extension in XFree86 4.0.0, X.Org X Window System (aka X11 or X) X11R6.7, and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) SProcXvQueryExtension, (2) SProcXvQueryAdap

CVE-2014-8097 [MEDIUM] CVE-2014-8097: xorg-server - The DBE extension in X.Org X Window System (aka X11 or X) X11R6.1 and X.Org Serv... The DBE extension in X.Org X Window System (aka X11 or X) X11R6.1 and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) ProcDbeSwapBuffers or (2) SProcDbeSwapBuffers function. Scope:

CVE-2014-8102 [MEDIUM] CVE-2014-8102: xorg-server - The SProcXFixesSelectSelectionInput function in the XFixes extension in X.Org X ... The SProcXFixesSelectSelectionInput function in the XFixes extension in X.Org X Window System (aka X11 or X) X11R6.8.0 and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length value. Scope: local bookworm: resol

CVE-2014-8095 [MEDIUM] CVE-2014-8095: xorg-server - The XInput extension in X.Org X Window System (aka X11 or X) X11R4 and X.Org Ser... The XInput extension in X.Org X Window System (aka X11 or X) X11R4 and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) SProcXChangeDeviceControl, (2) ProcXChangeDeviceControl, (3)

CVE-2014-8093 [MEDIUM] CVE-2014-8093: xorg-server - Multiple integer overflows in the GLX extension in XFree86 4.0, X.Org X Window S... Multiple integer overflows in the GLX extension in XFree86 4.0, X.Org X Window System (aka X11 or X) X11R6.7, and X.Org Server (aka xserver and xorg-server) before 1.16.3 allow remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted request to the (1) __glXDisp_ReadPixels, (2) __glXDispSwap_ReadPixels, (3)

CVE-2014-8096 [MEDIUM] CVE-2014-8096: xorg-server - The SProcXCMiscGetXIDList function in the XC-MISC extension in X.Org X Window Sy... The SProcXCMiscGetXIDList function in the XC-MISC extension in X.Org X Window System (aka X11 or X) X11R6.0 and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value. Scope: local bookworm: resolve

CVE-2014-8101 [MEDIUM] CVE-2014-8101: xorg-server - The RandR extension in XFree86 4.2.0, X.Org X Window System (aka X11 or X) X11R6... The RandR extension in XFree86 4.2.0, X.Org X Window System (aka X11 or X) X11R6.7, and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) SProcRRQueryVersion, (2) SProcRRGetScreenInf

CVE-2014-8098 [MEDIUM] CVE-2014-8098: xorg-server - The GLX extension in XFree86 4.0, X.Org X Window System (aka X11 or X) X11R6.7, ... The GLX extension in XFree86 4.0, X.Org X Window System (aka X11 or X) X11R6.7, and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) __glXDisp_Render, (2) __glXDisp_RenderLarge, (3)

CVE-2014-8092 [MEDIUM] CVE-2014-8092: xorg-server - Multiple integer overflows in X.Org X Window System (aka X11 or X) X11R1 and X.O... Multiple integer overflows in X.Org X Window System (aka X11 or X) X11R1 and X.Org Server (aka xserver and xorg-server) before 1.16.3 allow remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted request to the (1) ProcPutImage, (2) GetHosts, (3) RegionSizeof, or (4) REQUEST_FIXED_SIZE function, which trig

CVE-2013-4396 [MEDIUM] CVE-2013-4396: xorg-server - Use-after-free vulnerability in the doImageText function in dix/dixfonts.c in th... Use-after-free vulnerability in the doImageText function in dix/dixfonts.c in the xorg-server module before 1.14.4 in X.Org X11 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted ImageText request that triggers memory-allocation failure. Scope: local bookworm: resolved (fixed in 2:1.14.3

CVE-2013-6424 [MEDIUM] CVE-2013-6424: xorg-server - Integer underflow in the xTrapezoidValid macro in render/picture.h in X.Org allo... Integer underflow in the xTrapezoidValid macro in render/picture.h in X.Org allows context-dependent attackers to cause a denial of service (crash) via a negative bottom value. Scope: local bookworm: resolved (fixed in 2:1.14.2.901-1) bullseye: resolved (fixed in 2:1.14.2.901-1) forky: resolved (fixed in 2:1.14.2.901-1) sid: resolved (fixed in 2:1.14.2.901-1) tr

CVE-2013-1056 [LOW] CVE-2013-1056: xorg-server - X.org X server 1.13.3 and earlier, when not run as root, allows local users to c... X.org X server 1.13.3 and earlier, when not run as root, allows local users to cause a denial of service (crash) or possibly gain privileges via vectors involving cached xkb files. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-2013-1940 [LOW] CVE-2013-1940: xorg-server - X.Org X server before 1.13.4 and 1.4.x before 1.14.1 does not properly restrict ... X.Org X server before 1.13.4 and 1.4.x before 1.14.1 does not properly restrict access to input events when adding a new hot-plug device, which might allow physically proximate attackers to obtain sensitive information, as demonstrated by reading passwords from a tty. Scope: local bookworm: resolved (fixed in 2:1.12.4-6) bullseye: resolved (fixed in 2:1.12.4-6) for

CVE-2012-2118 [CRITICAL] CVE-2012-2118: xorg-server - Format string vulnerability in the LogVHdrMessageVerb function in os/log.c in X.... Format string vulnerability in the LogVHdrMessageVerb function in os/log.c in X.Org X11 1.11 allows attackers to cause a denial of service or possibly execute arbitrary code via format string specifiers in an input device name. Scope: local bookworm: resolved (fixed in 2:1.12.1.902-1) bullseye: resolved (fixed in 2:1.12.1.902-1) forky: resolved (fixed in 2:1.1

CVE-2012-0064 [MEDIUM] CVE-2012-0064: xorg-server - xkeyboard-config before 2.5 in X.Org before 7.6 enables certain XKB debugging fu... xkeyboard-config before 2.5 in X.Org before 7.6 enables certain XKB debugging functions by default, which allows physically proximate attackers to bypass an X screen lock via keyboard combinations that break the input grab. Scope: local bookworm: resolved (fixed in 2:1.11.3.901-2) bullseye: resolved (fixed in 2:1.11.3.901-2) forky: resolved (fixed in 2:1.11.3.90

CVE-2011-4029 [LOW] CVE-2011-4029: xorg-server - The LockServer function in os/utils.c in X.Org xserver before 1.11.2 allows loca... The LockServer function in os/utils.c in X.Org xserver before 1.11.2 allows local users to change the permissions of arbitrary files to 444, read those files, and possibly cause a denial of service (removed execution permission) via a symlink attack on a temporary lock file. Scope: local bookworm: resolved (fixed in 2:1.11.1.901-2) bullseye: resolved (fixed in 2:1.