VDB
GCVE-110-MAGEIA-2018-11
GCVE-110-MAGEIA-2018-11
Advisory Published
The XvQueryAdaptors and XvQueryEncodings functions in X.org libXv before
1.0.11 allow remote X servers to trigger out-of-bounds memory access
operations via vectors involving length specifications in received data
(CVE-2016-5407).
The XGetImage function in X.org libX11 before 1.6.4 might allow remote X
servers to gain privileges via vectors involving image type and geometry,
which triggers out-of-bounds read operations (CVE-2016-7942).
The XListFonts function in X.org libX11 before 1.6.4 might allow remote X
servers to gain privileges via vectors involving length fields, which
trigger out-of-bounds write operations (CVE-2016-7943).
Integer overflow in X.org libXfixes before 5.0.3 on 32-bit platforms might
allow remote X servers to gain privileges via a length value of INT_MAX,
which triggers the client to stop reading data and get out of sync
(CVE-2016-7944).
Multiple integer overflows in X.org libXi before 1.7.7 allow remote X
servers to cause a denial of service (out-of-bounds memory access or
infinite loop) via vectors involving length fields (CVE-2016-7945).
X.org libXi before 1.7.7 allows remote X servers to cause a denial of
service (infinite loop) via vectors involving length fields
(CVE-2016-7946).
Multiple integer overflows in X.org libXrandr before 1.5.1 allow remote X
servers to trigger out-of-bounds write operations via a crafted response
(CVE-2016-7947).
X.org libXrandr before 1.5.1 allows remote X servers to trigger
out-of-bounds write operations by leveraging mishandling of reply data
(CVE-2016-7948).
Multiple buffer overflows in the XvQueryAdaptors and XvQueryEncodings
functions in X.org libXrender before 0.9.10 allow remote X servers to
trigger out-of-bounds write operations via vectors involving length fields
(CVE-2016-7949).
The XRenderQueryFilters function in X.org libXrender before 0.9.10 allows
remote X servers to trigger out-of-bounds write operations via vectors
involving filter name lengths (CVE-2016-7950).
Multiple integer overflows in X.org libXtst before 1.2.3 allow remote X
servers to trigger out-of-bounds memory access operations by leveraging
the lack of range checks (CVE-2016-7951).
X.org libXtst before 1.2.3 allows remote X servers to cause a denial of
service (infinite loop) via a reply in the XRecordStartOfData,
XRecordEndOfData, or XRecordClientDied category without a client sequence
and with attached data (CVE-2016-7952).
Buffer underflow in X.org libXvMC before 1.0.10 allows remote X servers to
have unspecified impact via an empty string (CVE-2016-7953).
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | libxfixes | 0 (affected), 5.0.3-1.mga5 (unaffected), 0 (affected), 5.0.3-1.mga5 (unaffected) | — |
| Mageia | nagstamon | 0 (affected), 2.0.1-1.2.mga6 (unaffected) | — |
| Mageia | libx11 | 0 (affected), 1.6.5-1.mga5 (unaffected), 0 (affected), 1.6.5-1.mga5 (unaffected) | — |
| Mageia | libxtst | 0 (affected), 1.2.3-1.mga5 (unaffected), 1.2.3-1.mga5 (unaffected), 0 (affected) | — |
| Mageia | libxvmc | 0 (affected), 1.0.10-1.mga5 (unaffected), 0 (affected), 1.0.10-1.mga5 (unaffected) | — |
| Mageia | libxrandr | 0 (affected), 1.4.2-4.1.mga5 (unaffected), 0 (affected), 1.4.2-4.1.mga5 (unaffected) | — |
| Mageia | libxv | 0 (affected), 1.0.11-1.mga5 (unaffected), 0 (affected), 1.0.11-1.mga5 (unaffected) | — |
| Mageia | libxi | 0 (affected), 1.7.7-1.mga5 (unaffected), 0 (affected), 1.7.7-1.mga5 (unaffected) | — |
| Mageia | libxrender | 0 (affected), 0.9.10-1.mga5 (unaffected), 0.9.10-1.mga5 (unaffected), 0 (affected) | — |
References
Browse GCVE Records
73,280 records in the GCVE database · Updated July 17, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.