A flaw was found in xorg-x11-server prior to 1.20.3. An incorrect permission check for -modulepath and -logfile options when starting Xorg. X server allows unprivileged users with the ability to log in to the system via physical console to escalate their privileges and run arbitrary code under root privileges.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
x.org xorg-server |
||
redhat enterprise linux server tus 7.6 |
||
redhat enterprise linux server aus 7.6 |
||
redhat enterprise linux server eus 7.6 |
||
redhat enterprise linux server 7.0 |
||
redhat enterprise linux workstation 7.0 |
||
redhat enterprise linux desktop 7.0 |
||
canonical ubuntu linux 18.10 |
||
canonical ubuntu linux 18.04 |
||
canonical ubuntu linux 16.04 |
||
debian debian linux 9.0 |