Xfree86project X11r6
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Xfree86project X11r6.
By the Year
In 2025 there have been 0 vulnerabilities in Xfree86project X11r6. X11r6 did not have any published security vulnerabilities last year.
Year | Vulnerabilities | Average Score |
---|---|---|
2025 | 0 | 0.00 |
2024 | 0 | 0.00 |
2023 | 0 | 0.00 |
2022 | 0 | 0.00 |
2021 | 0 | 0.00 |
2020 | 0 | 0.00 |
2019 | 0 | 0.00 |
2018 | 0 | 0.00 |
It may take a day or so for new X11r6 vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Xfree86project X11r6 Security Vulnerabilities
Multiple stack-based buffer overflows in (1) xpmParseColors in parse.c, (2) ParseAndPutPixels in create.c, and (3) ParsePixels in parse.c for libXpm before 6.8.1
CVE-2004-0687
- October 20, 2004
Multiple stack-based buffer overflows in (1) xpmParseColors in parse.c, (2) ParseAndPutPixels in create.c, and (3) ParsePixels in parse.c for libXpm before 6.8.1 allow remote attackers to execute arbitrary code via a malformed XPM image file.
The xterm terminal emulator in XFree86 4.2.0 and earlier
CVE-2003-0063
- March 03, 2003
The xterm terminal emulator in XFree86 4.2.0 and earlier allows attackers to modify the window title via a certain character escape sequence and then insert it back to the command line in the user's terminal, e.g. when the user views a file containing the malicious sequence, which could allow the attacker to execute arbitrary commands.
xterm, Eterm, and rxvt
CVE-2000-0476
- June 01, 2000
xterm, Eterm, and rxvt allow an attacker to cause a denial of service by embedding certain escape characters which force the window to be resized.
XFree86 startx command is vulnerable to a symlink attack
CVE-1999-0433
- March 21, 1999
XFree86 startx command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service.
Guessable magic cookies in X Windows allows remote attackers to execute commands, e.g
CVE-1999-0241
- November 01, 1995
Guessable magic cookies in X Windows allows remote attackers to execute commands, e.g. through xterm.
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Sunos or by Xfree86project? Click the Watch button to subscribe.