FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-11-23 17:01:17 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
f7e8d2ca-410e-40b2-8748-3abd021e44a9xtrlock -- X display locking bypass

The X display locking program xtrlock contains an integer overflow bug. It is possible for an attacker with physical access to the system to bypass the display lock.


Discovery 2004-10-25
Entry 2005-06-01
xtrlock
< 2.0.10

CVE-2005-0079
http://www.debian.org/security/2005/dsa-649
http://xforce.iss.net/xforce/xfdb/18991
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=278191
e80073d7-f8ba-11eb-b141-589cfc007716xtrlock -- xtrlock does not block multitouch events

Debian reports:

xtrlock did not block multitouch events so an attacker could still input and thus control various programs such as Chromium, etc. via so-called "multitouch" events including pan scrolling, "pinch and zoom" or even being able to provide regular mouse clicks by depressing the touchpad once and then clicking with a secondary finger.


Discovery 2016-07-10
Entry 2021-08-09
xtrlock
< 2.12

CVE-2016-10894
https://lists.debian.org/debian-lts-announce/2019/10/msg00019.html