Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Xfree86 Subscribe
Filtered by product Xfree86
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2012-1699 2 X, Xfree86 2 X.org X11, Xfree86 2017-09-18 3.6 LOW N/A
The ProcSetEventMask function in difs/events.c in the xfs font server for X.Org X11R6 through X11R6.6 and XFree86 before 3.3.3 calls the SendErrToClient function with a mask value instead of a pointer, which allows local users to cause a denial of service (memory corruption and crash) or obtain potentially sensitive information from memory via a SetEventMask request that triggers an invalid pointer dereference.