← Back

Xfree86 X Server

xfree86_x_server

Vendor: Xfree86 Project • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2006-6102
2X.org
Xfree86 Project
2X.org
Xfree86 X Server
Apr 23, 2026
Dec 31, 2006
N/A· v4
N/A· v3
10.0 HIGH· v2
Integer overflow in the ProcDbeGetVisualInfo function in the DBE extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree86 X server, allows local users to execute arbitrary code via a crafted X protocol request that tr...Show more
Integer overflow in the ProcDbeGetVisualInfo function in the DBE extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree86 X server, allows local users to execute arbitrary code via a crafted X protocol request that triggers memory corruption during processing of unspecified data structures.Show less
CVE-2001-1409
1Xfree86 Project
1Xfree86 X Server
Apr 16, 2026
Jul 24, 2003
N/A· v4
N/A· v3
3.6 LOW· v2
dexconf in XFree86 Xserver 4.1.0-2 creates the /dev/dri directory with insecure permissions (666), which allows local users to replace or create files in the root file system.