The swap_char2b function in X.Org X Font Server (xfs) before 1.0.5 allows context-dependent att…

The LZW decompressor in (1) the BufCompressedFill function in fontfile/decompress.c in X.Org li…

xrdb.c in xrdb before 1.0.9 in X.Org X11R7.6 and earlier allows remote attackers to execute arb…

Integer overflow in the bdfReadCharacters function in bdfread.c in (1) X.Org libXfont before 20…

The GLX extension in X.Org xserver 1.7.7 allows remote authenticated users to cause a denial of…

X.Org Xserver before 1.4.1 allows local users to determine the existence of arbitrary files via…

Integer overflow in ALLOCATE_LOCAL in the ProcXCMiscGetXIDList function in the XC-MISC extensio…

Buffer overflow in (1) X.Org Xserver before 1.4.1, and (2) the libfont and libXfont libraries o…

Multiple integer overflows in (1) the XGetPixel function in ImUtil.c in X.Org libx11 before 1.0…

scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmap_unit valu…

Integer overflow in FreeType before 2.2 allows remote attackers to cause a denial of service (c…

The XInput extension in X.Org Xserver before 1.4.1 allows context-dependent attackers to execut…

Integer overflow in the build_range function in X.Org X Font Server (xfs) before 1.0.5 allows c…

Multiple integer overflows in XFree86 before 4.3.0 allow user-assisted attackers to execute arb…

Integer overflow in the ProcDbeGetVisualInfo function in the DBE extension for X.Org 6.8.2, 6.9…

Array index error in the XFree86-Misc extension in X.Org Xserver before 1.4.1 allows context-de…

Integer overflow in the AllocateGlyph function in the Render extension in the X server 1.4 in X…

The (1) SProcRecordCreateContext and (2) SProcRecordRegisterClients functions in the Record ext…

Multiple integer overflows in X.Org Xserver before 1.4.1 allow context-dependent attackers to e…

The ProcGetReservedColormapEntries function in the TOG-CUP extension in X.Org Xserver before 1.…

Integer overflow in the ProcRenderCreateCursor function in the Render extension in the X server…

Integer overflow in the FontFileInitTable function in X.Org libXfont before 20070403 allows rem…

Integer overflow in the fbShmPutImage function in the MIT-SHM extension in the X server 1.4 in …

The init.d script for the X.Org X11 xfs font server on various Linux distributions might allow …

Integer overflow in the CIDAFM function in X.Org 6.8.2 and XFree86 X server allows local users …

Buffer overflow in the X render (Xrender) extension in X.org X server 6.8.0 up to allows attack…

Buffer overflow in the compNewPixmap function in compalloc.c in the Composite extension for the…

Integer overflow in the scan_cidfont function in X.Org 6.8.2 and XFree86 X server allows local …

Integer overflow in the ProcDbeSwapBuffers function in the DBE extension for X.Org 6.8.2, 6.9.0…

Integer overflow in the ProcRenderAddGlyphs function in the Render extension for X.Org 6.8.2, 6…

The ProcRenderAddGlyphs function in the Render extension (render/render.c) in X.Org xserver 1.7…