Search CVE reports
21 – 30 of 108 results
CVE-2022-46341
Medium priorityA vulnerability was found in X.Org. This security flaw occurs because the handler for the XIPassiveUngrab request accesses out-of-bounds memory when invoked with a high keycode or button code. This issue can lead to...
8 affected packages
xorg-server, xorg-server-hwe-16.04, xorg-server-hwe-18.04, xorg-server-lts-utopic, xorg-server-lts-vivid...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| xorg-server | — | Fixed | Fixed | Fixed | Fixed |
| xorg-server-hwe-16.04 | — | Not in release | Not in release | Not in release | Fixed |
| xorg-server-hwe-18.04 | — | Not in release | Not in release | Fixed | Not in release |
| xorg-server-lts-utopic | — | Not in release | Not in release | Not in release | Not in release |
| xorg-server-lts-vivid | — | Not in release | Not in release | Not in release | Not in release |
| xorg-server-lts-wily | — | Not in release | Not in release | Not in release | Not in release |
| xorg-server-lts-xenial | — | Not in release | Not in release | Not in release | Not in release |
| xwayland | — | Fixed | Not in release | Not in release | Not in release |
CVE-2022-46340
Medium priorityA vulnerability was found in X.Org. This security flaw occurs becuase the swap handler for the XTestFakeInput request of the XTest extension may corrupt the stack if GenericEvents with lengths larger than 32 bytes are sent through...
8 affected packages
xorg-server, xorg-server-hwe-16.04, xorg-server-hwe-18.04, xorg-server-lts-utopic, xorg-server-lts-vivid...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| xorg-server | — | Fixed | Fixed | Fixed | Fixed |
| xorg-server-hwe-16.04 | — | Not in release | Not in release | Not in release | Fixed |
| xorg-server-hwe-18.04 | — | Not in release | Not in release | Fixed | Not in release |
| xorg-server-lts-utopic | — | Not in release | Not in release | Not in release | Not in release |
| xorg-server-lts-vivid | — | Not in release | Not in release | Not in release | Not in release |
| xorg-server-lts-wily | — | Not in release | Not in release | Not in release | Not in release |
| xorg-server-lts-xenial | — | Not in release | Not in release | Not in release | Not in release |
| xwayland | — | Fixed | Not in release | Not in release | Not in release |
CVE-2022-4283
Medium priorityA vulnerability was found in X.Org. This security flaw occurs because the XkbCopyNames function left a dangling pointer to freed memory, resulting in out-of-bounds memory access on subsequent XkbGetKbdByName requests.. This issue...
8 affected packages
xorg-server, xorg-server-hwe-16.04, xorg-server-hwe-18.04, xorg-server-lts-utopic, xorg-server-lts-vivid...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| xorg-server | — | Fixed | Fixed | Fixed | Fixed |
| xorg-server-hwe-16.04 | — | Not in release | Not in release | Not in release | Fixed |
| xorg-server-hwe-18.04 | — | Not in release | Not in release | Fixed | Not in release |
| xorg-server-lts-utopic | — | Not in release | Not in release | Not in release | Not in release |
| xorg-server-lts-vivid | — | Not in release | Not in release | Not in release | Not in release |
| xorg-server-lts-wily | — | Not in release | Not in release | Not in release | Not in release |
| xorg-server-lts-xenial | — | Not in release | Not in release | Not in release | Not in release |
| xwayland | — | Fixed | Not in release | Not in release | Not in release |
CVE-2022-3553
Medium priorityA vulnerability, which was classified as problematic, was found in X.org Server. This affects an unknown part of the file hw/xquartz/X11Controller.m of the component xquartz. The manipulation leads to denial of service. It is...
11 affected packages
xorg, xorg-hwe-16.04, xorg-hwe-18.04, xorg-server, xorg-server-hwe-16.04...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| xorg | — | Not affected | Not affected | Not affected | Not affected |
| xorg-hwe-16.04 | — | Not in release | Not in release | Not in release | Not affected |
| xorg-hwe-18.04 | — | Not in release | Not in release | Not affected | Not in release |
| xorg-server | — | Not affected | Not affected | Not affected | Not affected |
| xorg-server-hwe-16.04 | — | Not in release | Not in release | Not in release | Not affected |
| xorg-server-hwe-18.04 | — | Not in release | Not in release | Not affected | Not in release |
| xorg-server-lts-utopic | — | Not in release | Not in release | Not in release | Not in release |
| xorg-server-lts-vivid | — | Not in release | Not in release | Not in release | Not in release |
| xorg-server-lts-wily | — | Not in release | Not in release | Not in release | Not in release |
| xorg-server-lts-xenial | — | Not in release | Not in release | Not in release | Not in release |
| xwayland | — | Not affected | Not in release | Not in release | Not in release |
CVE-2022-3551
Medium priorityA vulnerability, which was classified as problematic, has been found in X.org Server. Affected by this issue is the function ProcXkbGetKbdByName of the file xkb/xkb.c. The manipulation leads to memory leak. It is recommended to...
8 affected packages
xorg-server, xorg-server-hwe-16.04, xorg-server-hwe-18.04, xorg-server-lts-utopic, xorg-server-lts-vivid...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| xorg-server | — | Fixed | Fixed | Fixed | Fixed |
| xorg-server-hwe-16.04 | — | Not in release | Not in release | Not in release | Fixed |
| xorg-server-hwe-18.04 | — | Not in release | Not in release | Fixed | Not in release |
| xorg-server-lts-utopic | — | Not in release | Not in release | Not in release | Not in release |
| xorg-server-lts-vivid | — | Not in release | Not in release | Not in release | Not in release |
| xorg-server-lts-wily | — | Not in release | Not in release | Not in release | Not in release |
| xorg-server-lts-xenial | — | Not in release | Not in release | Not in release | Not in release |
| xwayland | — | Fixed | Not in release | Not in release | Not in release |
CVE-2022-3550
Medium priorityA vulnerability classified as critical was found in X.org Server. Affected by this vulnerability is the function _GetCountedString of the file xkb/xkb.c. The manipulation leads to buffer overflow. It is recommended to apply a...
8 affected packages
xorg-server, xorg-server-hwe-16.04, xorg-server-hwe-18.04, xorg-server-lts-utopic, xorg-server-lts-vivid...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| xorg-server | — | Fixed | Fixed | Fixed | Fixed |
| xorg-server-hwe-16.04 | — | Not in release | Not in release | Not in release | Fixed |
| xorg-server-hwe-18.04 | — | Not in release | Not in release | Fixed | Not in release |
| xorg-server-lts-utopic | — | Not in release | Not in release | Not in release | Not in release |
| xorg-server-lts-vivid | — | Not in release | Not in release | Not in release | Not in release |
| xorg-server-lts-wily | — | Not in release | Not in release | Not in release | Not in release |
| xorg-server-lts-xenial | — | Not in release | Not in release | Not in release | Not in release |
| xwayland | — | Fixed | Not in release | Not in release | Not in release |
CVE-2022-2320
Medium prioritySome fixes available 17 of 18
A flaw was found in the Xorg-x11-server. The specific flaw exists within the handling of ProcXkbSetDeviceInfo requests. The issue results from the lack of proper validation of user-supplied data, which can result in a memory...
11 affected packages
xorg, xorg-hwe-16.04, xorg-hwe-18.04, xorg-server, xorg-server-hwe-16.04...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| xorg | Not affected | Not affected | Not affected | Not affected | Not affected |
| xorg-hwe-16.04 | Not in release | Not in release | Not in release | Not in release | Not affected |
| xorg-hwe-18.04 | Not in release | Not in release | Not in release | Not affected | Not in release |
| xorg-server | Fixed | Fixed | Fixed | Fixed | Fixed |
| xorg-server-hwe-16.04 | Not in release | Not in release | Not in release | Not in release | Fixed |
| xorg-server-hwe-18.04 | Not in release | Not in release | Not in release | Fixed | Not in release |
| xorg-server-lts-utopic | Not in release | Not in release | Not in release | Not in release | Not in release |
| xorg-server-lts-vivid | Not in release | Not in release | Not in release | Not in release | Not in release |
| xorg-server-lts-wily | Not in release | Not in release | Not in release | Not in release | Not in release |
| xorg-server-lts-xenial | Not in release | Not in release | Not in release | Not in release | Not in release |
| xwayland | Fixed | Fixed | Not in release | Not in release | Not in release |
CVE-2022-2319
Medium prioritySome fixes available 17 of 18
A flaw was found in the Xorg-x11-server. An out-of-bounds access issue can occur in the ProcXkbSetGeometry function due to improper validation of the request length.
11 affected packages
xorg, xorg-hwe-16.04, xorg-hwe-18.04, xorg-server, xorg-server-hwe-16.04...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| xorg | Not affected | Not affected | Not affected | Not affected | Not affected |
| xorg-hwe-16.04 | Not in release | Not in release | Not in release | Not in release | Not affected |
| xorg-hwe-18.04 | Not in release | Not in release | Not in release | Not affected | Not in release |
| xorg-server | Fixed | Fixed | Fixed | Fixed | Fixed |
| xorg-server-hwe-16.04 | Not in release | Not in release | Not in release | Not in release | Fixed |
| xorg-server-hwe-18.04 | Not in release | Not in release | Not in release | Fixed | Not in release |
| xorg-server-lts-utopic | Not in release | Not in release | Not in release | Not in release | Not in release |
| xorg-server-lts-vivid | Not in release | Not in release | Not in release | Not in release | Not in release |
| xorg-server-lts-wily | Not in release | Not in release | Not in release | Not in release | Not in release |
| xorg-server-lts-xenial | Not in release | Not in release | Not in release | Not in release | Not in release |
| xwayland | Fixed | Fixed | Not in release | Not in release | Not in release |
CVE-2021-4011
Medium priorityA flaw was found in xorg-x11-server in versions before 21.1.2 and before 1.20.14. An out-of-bounds access can occur in the SwapCreateRegister function. The highest threat from this vulnerability is to data confidentiality and...
4 affected packages
xorg-server, xorg-server-hwe-16.04, xorg-server-hwe-18.04, xwayland
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| xorg-server | — | Fixed | Fixed | Fixed | Fixed |
| xorg-server-hwe-16.04 | — | Not in release | Not in release | Not in release | Fixed |
| xorg-server-hwe-18.04 | — | Not in release | Not in release | Fixed | Not in release |
| xwayland | — | Fixed | Not in release | Not in release | Not in release |
CVE-2021-4010
Medium priorityA flaw was found in xorg-x11-server in versions before 21.1.2 and before 1.20.14. An out-of-bounds access can occur in the SProcScreenSaverSuspend function. The highest threat from this vulnerability is to data confidentiality and...
4 affected packages
xorg-server, xorg-server-hwe-16.04, xorg-server-hwe-18.04, xwayland
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| xorg-server | — | Fixed | Fixed | Not affected | Not affected |
| xorg-server-hwe-16.04 | — | Not in release | Not in release | Not in release | Not affected |
| xorg-server-hwe-18.04 | — | Not in release | Not in release | Fixed | Not in release |
| xwayland | — | Fixed | Not in release | Not in release | Not in release |