| Bug | Description |
|---|
| TEMP-0555308-79E91C | xserver-xorg: inherits user's mask |
| CVE-2024-31083 | A use-after-free vulnerability was found in the ProcRenderAddGlyphs() ... |
| CVE-2024-31082 | A heap-based buffer over-read vulnerability was found in the X.org ser ... |
| CVE-2024-31081 | A heap-based buffer over-read vulnerability was found in the X.org ser ... |
| CVE-2024-31080 | A heap-based buffer over-read vulnerability was found in the X.org ser ... |
| CVE-2024-21886 | A heap buffer overflow flaw was found in the DisableDevice function in ... |
| CVE-2024-21885 | A flaw was found in X.Org server. In the XISendDeviceHierarchyEvent fu ... |
| CVE-2024-9632 | A flaw was found in the X.org server. Due to improperly tracked alloca ... |
| CVE-2024-0409 | A flaw was found in the X.Org server. The cursor code in both Xephyr a ... |
| CVE-2024-0408 | A flaw was found in the X.Org server. The GLX PBuffer code does not ca ... |
| CVE-2024-0229 | An out-of-bounds memory access flaw was found in the X.Org server. Thi ... |
| CVE-2023-6816 | A flaw was found in X.Org server. Both DeviceFocusEvent and the XIQuer ... |
| CVE-2023-6478 | A flaw was found in xorg-server. A specially crafted request to RRChan ... |
| CVE-2023-6377 | A flaw was found in xorg-server. Querying or changing XKB button actio ... |
| CVE-2023-5380 | A use-after-free flaw was found in the xorg-x11-server. An X server cr ... |
| CVE-2023-5367 | A out-of-bounds write flaw was found in the xorg-x11-server. This issu ... |
| CVE-2023-1393 | A flaw was found in X.Org Server Overlay Window. A Use-After-Free may ... |
| CVE-2023-0494 | A vulnerability was found in X.Org. This issue occurs due to a danglin ... |
| CVE-2022-46344 | A vulnerability was found in X.Org. This security flaw occurs because ... |
| CVE-2022-46343 | A vulnerability was found in X.Org. This security flaw occurs because ... |
| CVE-2022-46342 | A vulnerability was found in X.Org. This security flaw occurs because ... |
| CVE-2022-46341 | A vulnerability was found in X.Org. This security flaw occurs because ... |
| CVE-2022-46340 | A vulnerability was found in X.Org. This security flaw occurs becuase ... |
| CVE-2022-4283 | A vulnerability was found in X.Org. This security flaw occurs because ... |
| CVE-2022-3551 | A vulnerability, which was classified as problematic, has been found i ... |
| CVE-2022-3550 | A vulnerability classified as critical was found in X.org Server. Affe ... |
| CVE-2022-2320 | A flaw was found in the Xorg-x11-server. The specific flaw exists with ... |
| CVE-2022-2319 | A flaw was found in the Xorg-x11-server. An out-of-bounds access issue ... |
| CVE-2021-4011 | A flaw was found in xorg-x11-server in versions before 21.1.2 and befo ... |
| CVE-2021-4010 | A flaw was found in xorg-x11-server in versions before 21.1.2 and befo ... |
| CVE-2021-4009 | A flaw was found in xorg-x11-server in versions before 21.1.2 and befo ... |
| CVE-2021-4008 | A flaw was found in xorg-x11-server in versions before 21.1.2 and befo ... |
| CVE-2021-3472 | A flaw was found in xorg-x11-server in versions before 1.20.11. An int ... |
| CVE-2020-25712 | A flaw was found in xorg-x11-server before 1.20.10. A heap-buffer over ... |
| CVE-2020-14362 | A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Int ... |
| CVE-2020-14361 | A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Int ... |
| CVE-2020-14360 | A flaw was found in the X.Org Server before version 1.20.10. An out-of ... |
| CVE-2020-14347 | A flaw was found in the way xserver memory was not properly initialize ... |
| CVE-2020-14346 | A flaw was found in xorg-x11-server before 1.20.9. An integer underflo ... |
| CVE-2020-14345 | A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Out ... |
| CVE-2018-14665 | A flaw was found in xorg-x11-server before 1.20.3. An incorrect permis ... |
| CVE-2017-13723 | In X.Org Server (aka xserver and xorg-server) before 1.19.4, a local a ... |
| CVE-2017-13721 | In X.Org Server (aka xserver and xorg-server) before 1.19.4, an attack ... |
| CVE-2017-12187 | xorg-x11-server before 1.19.5 was missing length validation in RENDER ... |
| CVE-2017-12186 | xorg-x11-server before 1.19.5 was missing length validation in X-Resou ... |
| CVE-2017-12185 | xorg-x11-server before 1.19.5 was missing length validation in MIT-SCR ... |
| CVE-2017-12184 | xorg-x11-server before 1.19.5 was missing length validation in XINERAM ... |
| CVE-2017-12183 | xorg-x11-server before 1.19.5 was missing length validation in XFIXES ... |
| CVE-2017-12182 | xorg-x11-server before 1.19.5 was missing length validation in XFree86 ... |
| CVE-2017-12181 | xorg-x11-server before 1.19.5 was missing length validation in XFree86 ... |
| CVE-2017-12180 | xorg-x11-server before 1.19.5 was missing length validation in XFree86 ... |
| CVE-2017-12179 | xorg-x11-server before 1.19.5 was vulnerable to integer overflow in (S ... |
| CVE-2017-12178 | xorg-x11-server before 1.19.5 had wrong extra length check in ProcXICh ... |
| CVE-2017-12177 | xorg-x11-server before 1.19.5 was vulnerable to integer overflow in Pr ... |
| CVE-2017-12176 | xorg-x11-server before 1.19.5 was missing extra length validation in P ... |
| CVE-2017-10972 | Uninitialized data in endianness conversion in the XEvent handling of ... |
| CVE-2017-10971 | In the X.Org X server before 2017-06-19, a user authenticated to an X ... |
| CVE-2017-2624 | It was found that xorg-x11-server before 1.19.0 including uses memcmp( ... |
| CVE-2015-3418 | The ProcPutImage function in dix/dispatch.c in X.Org Server (aka xserv ... |
| CVE-2015-3164 | The authentication setup in XWayland 1.16.x and 1.17.x before 1.17.2 s ... |
| CVE-2015-0255 | X.Org Server (aka xserver and xorg-server) before 1.16.3 and 1.17.x be ... |
| CVE-2014-8103 | X.Org Server (aka xserver and xorg-server) 1.15.0 through 1.16.x befor ... |
| CVE-2014-8102 | The SProcXFixesSelectSelectionInput function in the XFixes extension i ... |
| CVE-2014-8101 | The RandR extension in XFree86 4.2.0, X.Org X Window System (aka X11 o ... |
| CVE-2014-8100 | The Render extension in XFree86 4.0.1, X.Org X Window System (aka X11 ... |
| CVE-2014-8099 | The XVideo extension in XFree86 4.0.0, X.Org X Window System (aka X11 ... |
| CVE-2014-8098 | The GLX extension in XFree86 4.0, X.Org X Window System (aka X11 or X) ... |
| CVE-2014-8097 | The DBE extension in X.Org X Window System (aka X11 or X) X11R6.1 and ... |
| CVE-2014-8096 | The SProcXCMiscGetXIDList function in the XC-MISC extension in X.Org X ... |
| CVE-2014-8095 | The XInput extension in X.Org X Window System (aka X11 or X) X11R4 and ... |
| CVE-2014-8094 | Integer overflow in the ProcDRI2GetBuffers function in the DRI2 extens ... |
| CVE-2014-8093 | Multiple integer overflows in the GLX extension in XFree86 4.0, X.Org ... |
| CVE-2014-8092 | Multiple integer overflows in X.Org X Window System (aka X11 or X) X11 ... |
| CVE-2014-8091 | X.Org X Window System (aka X11 and X) X11R5 and X.Org Server (aka xser ... |
| CVE-2013-6424 | Integer underflow in the xTrapezoidValid macro in render/picture.h in ... |
| CVE-2013-4396 | Use-after-free vulnerability in the doImageText function in dix/dixfon ... |
| CVE-2013-1940 | X.Org X server before 1.13.4 and 1.4.x before 1.14.1 does not properly ... |
| CVE-2013-1056 | X.org X server 1.13.3 and earlier, when not run as root, allows local ... |
| CVE-2012-2118 | Format string vulnerability in the LogVHdrMessageVerb function in os/l ... |
| CVE-2012-0064 | xkeyboard-config before 2.5 in X.Org before 7.6 enables certain XKB de ... |
| CVE-2011-4029 | The LockServer function in os/utils.c in X.Org xserver before 1.11.2 a ... |
| CVE-2011-4028 | The LockServer function in os/utils.c in X.Org xserver before 1.11.2 a ... |
| CVE-2010-4819 | The ProcRenderAddGlyphs function in the Render extension (render/rende ... |
| CVE-2010-4818 | The GLX extension in X.Org xserver 1.7.7 allows remote authenticated u ... |
| CVE-2010-1166 | The fbComposite function in fbpict.c in the Render extension in the X ... |
| CVE-2009-1573 | xvfb-run 1.6.1 in Debian GNU/Linux, Ubuntu, Fedora 10, and possibly ot ... |
| CVE-2008-2362 | Multiple integer overflows in the Render extension in the X server 1.4 ... |
| CVE-2008-2361 | Integer overflow in the ProcRenderCreateCursor function in the Render ... |
| CVE-2008-2360 | Integer overflow in the AllocateGlyph function in the Render extension ... |
| CVE-2008-1379 | Integer overflow in the fbShmPutImage function in the MIT-SHM extensio ... |
| CVE-2008-1377 | The (1) SProcRecordCreateContext and (2) SProcRecordRegisterClients fu ... |
| CVE-2008-0006 | Buffer overflow in (1) X.Org Xserver before 1.4.1, and (2) the libfont ... |
| CVE-2007-6429 | Multiple integer overflows in X.Org Xserver before 1.4.1 allow context ... |
| CVE-2007-6428 | The ProcGetReservedColormapEntries function in the TOG-CUP extension i ... |
| CVE-2007-6427 | The XInput extension in X.Org Xserver before 1.4.1 allows context-depe ... |
| CVE-2007-5958 | X.Org Xserver before 1.4.1 allows local users to determine the existen ... |
| CVE-2007-5760 | Array index error in the XFree86-Misc extension in X.Org Xserver befor ... |
| CVE-2007-4730 | Buffer overflow in the compNewPixmap function in compalloc.c in the Co ... |
| CVE-2007-3920 | GNOME screensaver 2.20 in Ubuntu 7.10, when used with Compiz, does not ... |
| CVE-2007-2437 | The X render (Xrender) extension in X.org X Window System 7.0, 7.1, an ... |
| CVE-2007-1003 | Integer overflow in ALLOCATE_LOCAL in the ProcXCMiscGetXIDList functio ... |
| CVE-2006-6103 | Integer overflow in the ProcDbeSwapBuffers function in the DBE extensi ... |
| CVE-2006-6102 | Integer overflow in the ProcDbeGetVisualInfo function in the DBE exten ... |
| CVE-2006-6101 | Integer overflow in the ProcRenderAddGlyphs function in the Render ext ... |
| CVE-2006-4447 | X.Org and XFree86, including libX11, xdm, xf86dga, xinit, xload, xtran ... |
| CVE-2006-1526 | Buffer overflow in the X render (Xrender) extension in X.org X server ... |
| CVE-2006-0745 | X.Org server (xorg-server) 1.0.0 and later, X11R6.9.0, and X11R7.0 ina ... |