Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2023-0494

DescriptionA vulnerability was found in X.Org. This issue occurs due to a dangling pointer in DeepCopyPointerClasses that can be exploited by ProcXkbSetDeviceInfo() and ProcXkbGetDeviceInfo() to read and write into freed memory. This can lead to local privilege elevation on systems where the X server runs privileged and remote code execution for ssh X forwarding sessions.A vulnerability was found in X.Org. This issue occurs due to a dangling pointer in DeepCopyPointerClasses that can be exploited by ProcXkbSetDeviceInfo() and ProcXkbGetDeviceInfo() to read and write into freed memory. This can lead to local privilege elevation on systems where the X server runs privileged and remote code execution for ssh X forwarding sessions.

Source

Affected Packages and Issued Red Hat Security Errata

Search:

Platform	Package	State	Errata
Red Hat Enterprise Linux 8	xorg-x11-server moderate This rating is given to flaws that may be more difficult to exploit but could still lead to some compromise of the confidentiality, integrity or availability of resources under certain circumstances. These are the types of vulnerabilities that could have had a Critical or Important impact but are less easily exploited based on a technical evaluation of the flaw, and/or affect unlikely configurations.	Affected
Red Hat Enterprise Linux 9	xorg-x11-server moderate This rating is given to flaws that may be more difficult to exploit but could still lead to some compromise of the confidentiality, integrity or availability of resources under certain circumstances. These are the types of vulnerabilities that could have had a Critical or Important impact but are less easily exploited based on a technical evaluation of the flaw, and/or affect unlikely configurations.	Affected
Red Hat Enterprise Linux 8	xorg-x11-server-Xwayland moderate This rating is given to flaws that may be more difficult to exploit but could still lead to some compromise of the confidentiality, integrity or availability of resources under certain circumstances. These are the types of vulnerabilities that could have had a Critical or Important impact but are less easily exploited based on a technical evaluation of the flaw, and/or affect unlikely configurations.	Affected
Red Hat Enterprise Linux 9	xorg-x11-server-Xwayland moderate This rating is given to flaws that may be more difficult to exploit but could still lead to some compromise of the confidentiality, integrity or availability of resources under certain circumstances. These are the types of vulnerabilities that could have had a Critical or Important impact but are less easily exploited based on a technical evaluation of the flaw, and/or affect unlikely configurations.	Affected
Red Hat Enterprise Linux 7	xorg-x11-server	Fixed	RHSA-2023:0675
Red Hat Enterprise Linux 6	xorg-x11-server	Out of support scope
Red Hat Enterprise Linux 7	tigervnc	Fixed	RHSA-2023:0675
Red Hat Enterprise Linux 8	tigervnc	Fixed	RHSA-2023:0662
Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions	tigervnc	Fixed	RHSA-2023:0665
Red Hat Enterprise Linux 8.2 Advanced Update Support	tigervnc	Fixed	RHSA-2023:0671

Show entries

First Previous1 2Next Last

Showing 1 to 10 of 17 entries

Unless explicitly stated as not affected, all previous versions of packages in any minor update stream of a product listed here should be assumed vulnerable, although may not have been subject to full analysis.

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

Affected Packages and Issued Red Hat Security Errata

moderate Impact

moderate Impact

moderate Impact

moderate Impact

Vulmon Search

About

Products

Connect