|
266311
|
9.8 |
CRITICAL
Network
|
x.org
fedoraproject
|
libxrender
fedora
|
Multiple buffer overflows in the (1) XvQueryAdaptors and (2) XvQueryEncodings functions in X.org libXrender before 0.9.10 allow remote X servers to trigger out-of-bounds write operations via vectors …
|
CWE-20
CWE-787
Improper Input Validation
Out-of-bounds Write
|
CVE-2016-7949
|
2024-11-21 11:58 |
2016-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266312
|
9.8 |
CRITICAL
Network
|
x.org
fedoraproject
|
libxrandr
fedora
|
X.org libXrandr before 1.5.1 allows remote X servers to trigger out-of-bounds write operations by leveraging mishandling of reply data.
|
CWE-787
Out-of-bounds Write
|
CVE-2016-7948
|
2024-11-21 11:58 |
2016-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266313
|
9.8 |
CRITICAL
Network
|
fedoraproject
x.org
|
fedora
libxrandr
|
Multiple integer overflows in X.org libXrandr before 1.5.1 allow remote X servers to trigger out-of-bounds write operations via a crafted response.
|
CWE-787
CWE-190
Out-of-bounds Write
Integer Overflow or Wraparound
|
CVE-2016-7947
|
2024-11-21 11:58 |
2016-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266314
|
7.5 |
HIGH
Network
|
x.org
fedoraproject
|
libxi
fedora
|
X.org libXi before 1.7.7 allows remote X servers to cause a denial of service (infinite loop) via vectors involving length fields.
|
CWE-284
Improper Access Control
|
CVE-2016-7946
|
2024-11-21 11:58 |
2016-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266315
|
7.5 |
HIGH
Network
|
fedoraproject
x.org
|
fedora
libxi
|
Multiple integer overflows in X.org libXi before 1.7.7 allow remote X servers to cause a denial of service (out-of-bounds memory access or infinite loop) via vectors involving length fields.
|
CWE-125
CWE-190
Out-of-bounds Read
Integer Overflow or Wraparound
|
CVE-2016-7945
|
2024-11-21 11:58 |
2016-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266316
|
9.8 |
CRITICAL
Network
|
x.org
fedoraproject
|
libxfixes
fedora
|
Integer overflow in X.org libXfixes before 5.0.3 on 32-bit platforms might allow remote X servers to gain privileges via a length value of INT_MAX, which triggers the client to stop reading data and …
|
CWE-264
CWE-190
Permissions, Privileges, and Access Controls
Integer Overflow or Wraparound
|
CVE-2016-7944
|
2024-11-21 11:58 |
2016-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266317
|
9.8 |
CRITICAL
Network
|
fedoraproject
x.org
|
fedora
libx11
|
The XListFonts function in X.org libX11 before 1.6.4 might allow remote X servers to gain privileges via vectors involving length fields, which trigger out-of-bounds write operations.
|
CWE-787
Out-of-bounds Write
|
CVE-2016-7943
|
2024-11-21 11:58 |
2016-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266318
|
9.8 |
CRITICAL
Network
|
fedoraproject
x.org
|
fedora
libx11
|
The XGetImage function in X.org libX11 before 1.6.4 might allow remote X servers to gain privileges via vectors involving image type and geometry, which triggers out-of-bounds read operations.
|
CWE-264
CWE-787
Permissions, Privileges, and Access Controls
Out-of-bounds Write
|
CVE-2016-7942
|
2024-11-21 11:58 |
2016-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266319
|
5.5 |
MEDIUM
Local
|
mariadb
oracle
wolfssl
debian
|
mariadb
mysql
wolfssl
debian_linux
|
The C software implementation of AES Encryption and Decryption in wolfSSL (formerly CyaSSL) before 3.9.10 makes it easier for local users to discover AES keys by leveraging cache-bank timing differen…
|
NVD-CWE-noinfo
|
CVE-2016-7440
|
2024-11-21 11:58 |
2016-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266320
|
5.5 |
MEDIUM
Local
|
wolfssl
|
wolfssl
|
The C software implementation of RSA in wolfSSL (formerly CyaSSL) before 3.9.10 makes it easier for local users to discover RSA keys by leveraging cache-bank hit differences.
|
CWE-310
Cryptographic Issues
|
CVE-2016-7439
|
2024-11-21 11:58 |
2016-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
