GCVE - cpe:2.3:a:xfree86_project:x11r6:3.3.6:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:xfree86_project:x11r6:3.3.6:*:*:*:*:*:*:*

part: a version: 3.3.6 update: *

Vendor	Xfree86 Project (`833342b1-9320-55bf-811d-697c345a6a60`)
Product	X11R6 (`8b9dd77a-155f-5250-8a42-32d9aefe32c9`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from purl2cpe mapping

PURL mappings

PURL	Source	Last updated
`pkg:github/freedesktop/xorg-xf86-video-intel`	purl2cpe	2026-06-01 10:12:09.652228

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2005-0605`	vulnerable	2026-06-08 04:48:13.132947	Details available scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow. Published: 2005-03-04T05:00:00.000Z Updated: 2024-08-07T21:21:06.249Z Open on db.gcve.eu Reference links http://www.redhat.com/support/errata/RHSA-2005-331.html http://www.redhat.com/support/errata/RHSA-2005-412.html http://securitytracker.com/id?1013339 http://secunia.com/advisories/18049 ftp://patches.sgi.com/support/free/security/advisories/20060403-01-U	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-0914`	vulnerable	2026-06-08 04:47:51.908093	Details available Multiple vulnerabilities in libXpm for 6.8.1 and earlier, as used in XFree86 and other packages, include (1) multiple integer overflows, (2) out-of-bounds memory accesses, (3) directory traversal, (4) shell metacharacter, (5) endless loops, and (6) memory leaks, which could allow remote attackers to obtain sensitive information, cause a denial of service (application crash), or execute arbitrary code via a certain XPM image file. NOTE: it is highly likely that this candidate will be SPLIT into other candidates in the future, per CVE's content decisions. Published: 2004-12-15T05:00:00.000Z Updated: 2024-08-08T00:31:48.097Z Open on db.gcve.eu Reference links http://www.redhat.com/support/errata/RHSA-2005-004.html https://exchange.xforce.ibmcloud.com/vulnerabilities/18146 http://www.ubuntu.com/usn/usn-83-1 http://rhn.redhat.com/errata/RHSA-2004-537.html https://exchange.xforce.ibmcloud.com/vulnerabilities/18142	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-0688`	vulnerable	2026-06-08 04:47:50.854112	Details available Multiple integer overflows in (1) the xpmParseColors function in parse.c, (2) XpmCreateImageFromXpmImage, (3) CreateXImage, (4) ParsePixels, and (5) ParseAndPutPixels for libXpm before 6.8.1 may allow remote attackers to execute arbitrary code via a malformed XPM image file. Published: 2004-09-24T04:00:00.000Z Updated: 2024-08-08T00:24:27.110Z Open on db.gcve.eu Reference links http://www.kb.cert.org/vuls/id/537878 http://www.redhat.com/support/errata/RHSA-2005-004.html https://usn.ubuntu.com/27-1/ http://www.vupen.com/english/advisories/2006/1914 http://www.gentoo.org/security/en/glsa/glsa-200409-34.xml	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-0687`	vulnerable	2026-06-08 04:47:50.847867	Details available Multiple stack-based buffer overflows in (1) xpmParseColors in parse.c, (2) ParseAndPutPixels in create.c, and (3) ParsePixels in parse.c for libXpm before 6.8.1 allow remote attackers to execute arbitrary code via a malformed XPM image file. Published: 2004-09-24T00:00:00.000Z Updated: 2024-08-08T00:24:27.112Z Open on db.gcve.eu Reference links http://www.redhat.com/support/errata/RHSA-2005-004.html https://usn.ubuntu.com/27-1/ http://www.vupen.com/english/advisories/2006/1914 http://www.gentoo.org/security/en/glsa/glsa-200409-34.xml http://www.kb.cert.org/vuls/id/882750	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2000-0620`	vulnerable	2026-06-08 04:45:18.454805	Details available libX11 X library allows remote attackers to cause a denial of service via a resource mask of 0, which causes libX11 to go into an infinite loop. Published: 2001-09-18T04:00:00.000Z Updated: 2024-08-08T05:21:31.408Z Open on db.gcve.eu Reference links https://exchange.xforce.ibmcloud.com/vulnerabilities/4996 http://marc.info/?l=bugtraq&m=96146116627474&w=2 http://www.securityfocus.com/bid/1409	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2000-0504`	vulnerable	2026-06-08 04:45:18.186769	Details available libICE in XFree86 allows remote attackers to cause a denial of service by specifying a large value which is not properly checked by the SKIP_STRING macro. Published: 2001-05-07T04:00:00.000Z Updated: 2024-08-08T05:21:31.029Z Open on db.gcve.eu Reference links http://www.xfree86.org/security/ http://www.securityfocus.com/bid/1369 http://archives.neohapsis.com/archives/bugtraq/2000-06/0170.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2000-0453`	vulnerable	2026-06-08 04:45:18.019990	Details available XFree86 3.3.x and 4.0 allows a user to cause a denial of service via a negative counter value in a malformed TCP packet that is sent to port 6000. Published: 2000-07-12T04:00:00.000Z Updated: 2024-08-08T05:21:29.681Z Open on db.gcve.eu Reference links http://archives.neohapsis.com/archives/bugtraq/2000-05/0223.html http://www.securityfocus.com/bid/1235 ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2000-012.0.txt	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2000-0285`	vulnerable	2026-06-08 04:44:58.444074	Details available Buffer overflow in XFree86 3.3.x allows local users to execute arbitrary commands via a long -xkbmap parameter. Published: 2000-10-13T04:00:00.000Z Updated: 2024-08-08T05:14:21.407Z Open on db.gcve.eu Reference links http://archives.neohapsis.com/archives/bugtraq/2000-04/0076.html http://www.securityfocus.com/bid/1306	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.