1781
|
- |
|
-
|
-
|
A flaw was found in X.Org server. In the XISendDeviceHierarchyEvent function, it is possible to exceed the allocated array length when certain new device IDs are added to the xXIHierarchyInfo struct.…
|
CWE-122
Heap-based Buffer Overflow
|
CVE-2024-21885
|
2024-09-17 01:15 |
2024-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1782
|
3.3 |
LOW
Local
|
gnu redhat fedoraproject
|
grub2 enterprise_linux fedora
|
A flaw was found in the grub2-set-bootflag utility of grub2. After the fix of CVE-2019-14865, grub2-set-bootflag will create a temporary file with the new grubenv content and rename it to the origina…
|
CWE-459
Incomplete Cleanup
|
CVE-2024-1048
|
2024-09-17 01:15 |
2024-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1783
|
7.8 |
HIGH
Local
|
x.org tigervnc redhat fedoraproject
|
xwayland xorg-server tigervnc enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_for_scientific_computing enterprise_linux enterprise_linux_server enterpri…
|
A flaw was found in the X.Org server. The cursor code in both Xephyr and Xwayland uses the wrong type of private at creation. It uses the cursor bits type with the cursor as private, and when initiat…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-0409
|
2024-09-17 01:15 |
2024-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1784
|
9.8 |
CRITICAL
Network
x.org fedoraproject redhat debian
|
xwayland xorg-server fedora enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server debian_linux
|
A flaw was found in X.Org server. Both DeviceFocusEvent and the XIQueryPointer reply contain a bit for each logical button currently down. Buttons can be arbitrarily mapped to any value up to 255, bu…
|
CWE-787
Out-of-bounds Write
|
CVE-2023-6816
|
2024-09-17 01:15 |
2024-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1785
|
5.5 |
MEDIUM
Local
|
x.org tigervnc redhat fedoraproject
|
xwayland xorg-server tigervnc enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_for_scientific_computing enterprise_linux enterprise_linux_server enterpri…
|
A flaw was found in the X.Org server. The GLX PBuffer code does not call the XACE hook when creating the buffer, leaving it unlabeled. When the client issues another request to access that resource (…
|
NVD-CWE-Other
|
CVE-2024-0408
|
2024-09-17 01:15 |
2024-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1786
|
6.5 |
MEDIUM
Network
|
freeipa fedoraproject redhat
|
freeipa fedora enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_for_scientific_computing enterprise_linux enterprise_linux_for_power_little_endian enterpris…
|
A Cross-site request forgery vulnerability exists in ipa/session/login_password in all supported versions of IPA. This flaw allows an attacker to trick the user into submitting a request that could p…
|
CWE-352
Origin Validation Error
|
CVE-2023-5455
|
2024-09-17 01:15 |
2024-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1787
|
2.7 |
LOW
Network
|
redhat infinispan
|
data_grid jboss_data_grid infinispan
|
A flaw was found in Infinispan. When serializing the configuration for a cache to XML/JSON/YAML, which contains credentials (JDBC store with connection pooling, remote store), the credentials are ret…
|
CWE-312
Cleartext Storage of Sensitive Information
|
CVE-2023-5384
|
2024-09-17 01:15 |
2023-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1788
|
7.8 |
HIGH
Local
|
perl
|
perl
|
A vulnerability was found in perl 5.30.0 through 5.38.0. This issue occurs when a crafted regular expression is compiled by perl, which can allow an attacker controlled byte buffer overflow in a heap…
|
CWE-787
Out-of-bounds Write
|
CVE-2023-47038
|
2024-09-17 01:15 |
2023-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1789
|
7.5 |
HIGH
Network
x.org redhat debian tigervnc
|
x_server xwayland enterprise_linux_eus debian_linux tigervnc
|
A flaw was found in xorg-server. A specially crafted request to RRChangeProviderProperty or RRChangeOutputProperty can trigger an integer overflow which may lead to a disclosure of sensitive informat…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2023-6478
|
2024-09-17 01:15 |
2023-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1790
|
7.8 |
HIGH
Local
|
redhat debian x.org tigervnc
|
enterprise_linux_eus debian_linux x_server xwayland tigervnc
|
A flaw was found in xorg-server. Querying or changing XKB button actions such as moving from a touchpad to a mouse can result in out-of-bounds memory reads and writes. This may allow local privilege …
|
CWE-125
Out-of-bounds Read
|
CVE-2023-6377
|
2024-09-17 01:15 |
2023-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|