CVE-2020-14360

Synopsis Important: xorg-x11-server security update Type/Severity Security Advisory: Important Topic An update for xorg-x11-server is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (C ...

Debian Bug report logs - #976216 xorg-server: CVE-2020-25712 CVE-2020-14360 Package: src:xorg-server; Maintainer for src:xorg-server is Debian X Strike Force <debian-x@listsdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Tue, 1 Dec 2020 17:03:02 UTC Severity: grave Tags: security, upstream ...

Jan-Niklas Sohn discovered that the XKB extension of the Xorg X server performed incomplete input validation, which could result in privilege escalation For the stable distribution (buster), these problems have been fixed in version 2:1204-1+deb10u2 We recommend that you upgrade your xorg-server packages For the detailed security status of xor ...

A flaw was found in the way the Xserver memory was not properly initialized This issue leak parts of server memory to the X client In cases where the Xorg server runs with elevated privileges, this flaw results in a possible ASLR bypass (CVE-2020-14347) A flaw was found in the XOrg Server An out-of-bounds access in the XkbSetMap function may l ...

A security issue was discovered in xorg-server before 12010 Insufficient checks on the lengths of the XkbSetMap request can lead to out of bounds memory accesses in the X server This issue can lead to privilege escalation for authorized clients on systems where the X server is running privileged ...