The ProcSetEventMask function in difs/events.c in the xfs font server for X.Org X11R6 through X11R6.6 and XFree86 before 3.3.3 calls the SendErrToClient function with a mask value instead of a. Rated low severity (CVSS 3.6), this vulnerability is low attack complexity. No vendor patch available.
Buffer Overflow
Denial Of Service
X Org X11
Xfree86
NVD
CVSS 2.0
3.6
EPSS
0.1%
Race condition in fs/ext4/extents.c in the Linux kernel before 3.4.16 allows local users to obtain sensitive information from a deleted file by reading an extent that was not properly marked as. Rated low severity (CVSS 1.9).
Linux
Race Condition
Information Disclosure
Linux Kernel
NVD
GitHub
CVSS 2.0
1.9
EPSS
0.1%