threat
engine
.sh
Back
·
··:··
Home
/
Product
/
x.org libx11
Product
x.org libx11
18 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2023-43787
< 1.8.7
A vulnerability was found in libX11 due to an integer overflow within the XCreateImage() function. This flaw allows a local user t
7.8
HIGH
CVE-2023-43786
< 1.8.7
A vulnerability was found in libX11 due to an infinite loop within the PutSubImage() function. This flaw allows a local user to co
5.5
MEDIUM
CVE-2023-43785
< 1.8.7
A vulnerability was found in libX11 due to a boundary condition within the _XkbReadKeySyms() function. This flaw allows a local us
6.5
MEDIUM
CVE-2023-3138
< 1.8.6
A vulnerability was found in libX11. The security flaw occurs because the functions in src/InitExt.c in libX11 do not check that t
7.5
HIGH
CVE-2021-31535
< 1.7.1
LookupCol.c in X.Org X through X11R7.7 and libX11 before 1.7.1 might allow remote attackers to execute arbitrary code. The libX11
9.8
CRITICAL
CVE-2020-14363
< 1.6.12
An integer overflow vulnerability leading to a double-free was found in libX11. This flaw allows a local privileged attacker to ca
7.8
HIGH
CVE-2020-14344
< 1.6.10
An integer overflow leading to a heap-buffer overflow was found in The X Input Method (XIM) client was implemented in libX11 befor
6.7
MEDIUM
CVE-2018-14600
<= 1.6.5
An issue was discovered in libX11 through 1.6.5. The function XListExtensions in ListExt.c interprets a variable as signed instead
9.8
CRITICAL
CVE-2018-14599
<= 1.6.5
An issue was discovered in libX11 through 1.6.5. The function XListExtensions in ListExt.c is vulnerable to an off-by-one error ca
9.8
CRITICAL
CVE-2018-14598
<= 1.6.5
An issue was discovered in XListExtensions in ListExt.c in libX11 through 1.6.5. A malicious server can send a reply in which the
7.5
HIGH
CVE-2016-7943
<= 1.6.3
The XListFonts function in X.org libX11 before 1.6.4 might allow remote X servers to gain privileges via vectors involving length
9.8
CRITICAL
CVE-2016-7942
<= 1.6.3
The XGetImage function in X.org libX11 before 1.6.4 might allow remote X servers to gain privileges via vectors involving image ty
9.8
CRITICAL
CVE-2013-7439
all versions
Multiple off-by-one errors in the (1) MakeBigReq and (2) SetReqLen macros in include/X11/Xlibint.h in X11R6.x and libX11 before 1.
CVE-2013-2004
<= 1.5.99.901
The (1) GetDatabase and (2) _XimParseStringFile functions in X.org libX11 1.5.99.901 (1.6 RC1) and earlier do not restrict the rec
CVE-2013-1997
<= 1.5.99.901
Multiple buffer overflows in X.org libX11 1.5.99.901 (1.6 RC1) and earlier allow X servers to cause a denial of service (crash) an
CVE-2013-1981
<= 1.5.99.901
Multiple integer overflows in X.org libX11 1.5.99.901 (1.6 RC1) and earlier allow X servers to trigger allocation of insufficient
CVE-2007-1667
<= 1.0.2
Multiple integer overflows in (1) the XGetPixel function in ImUtil.c in X.Org libx11 before 1.0.3, and (2) XInitImage function in
CVE-2006-5397
all versions
The Xinput module (modules/im/ximcp/imLcIm.c) in X.Org libX11 1.0.2 and 1.0.3 opens a file for reading twice using the same file d
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin