Vulnerabilidades en Xorg

3 resultados

CVE-2017-2624MEDIUMIt was found that xorg-x11-server before 1.19.0 including uses memcmp() to check the received MIT cookie against a series of valid cookies. EPSS 0.7%CVE-2017-2625MEDIUMIt was discovered that libXdmcp before 1.1.2 including used weak entropy to generate session keys. On a multi-user system using xdmcp, a locEPSS 0.5%CVE-2017-2626MEDIUMIt was discovered that libICE before 1.0.9-8 used a weak entropy to generate keys. A local attacker could potentially use this flaw for sessEPSS 0.5%