Description


A vulnerability was found in X.Org. This issue occurs due to a dangling pointer in DeepCopyPointerClasses that can be exploited by ProcXkbSetDeviceInfo() and ProcXkbGetDeviceInfo() to read and write into freed memory. This can lead to local privilege elevation on systems where the X server runs privileged and remote code execution for ssh X forwarding sessions.

Related CPE's


Vulnerable

o

fedoraproject

fedora

2

o

redhat

enterprise_linux

3

o

redhat

enterprise_linux_aus

2


o

redhat

enterprise_linux_eus

3

o

redhat

enterprise_linux_for_ibm_z_systems

2

o

redhat

enterprise_linux_for_ibm_z_systems_eus

2


o

redhat

enterprise_linux_for_power_little_endian

3

o

redhat

enterprise_linux_for_power_little_endian_eus

2




o

redhat

enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions

5

o

redhat

enterprise_linux_server_tus

3


Weaknesses



CWE-416


CWE-416

CVSS impact metrics


CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.8 · High

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information


Source identifier

[email protected]

Vulnerability status

Modified

Published

2023-03-27T21:15:10.193

2 years ago

Last modified

2025-02-24T18:15:16.550

4 months ago