Heap Overflow Vulnerability in X.Org and Xwayland Key Symbol Processing
A heap overflow vulnerability exists in X.Org and Xwayland software. The problem involves a mismatch between the length computation in the XkbSizeKeySyms() and XkbWriteKeySyms() functions. This discrepancy could potentially result in a heap-based buffer overflow, which might allow an attacker to manipulate or corrupt memory during key symbol processing.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
red hat red hat enterprise linux 10 |
||
red hat red hat enterprise linux 7 extended lifecycle support |
||
red hat red hat enterprise linux 8 |
||
red hat red hat enterprise linux 8.2 advanced update support |
||
red hat red hat enterprise linux 8.4 advanced mission critical update support |
||
red hat red hat enterprise linux 8.4 telecommunications update service |
||
red hat red hat enterprise linux 8.4 update services for sap solutions |
||
red hat red hat enterprise linux 8.6 advanced mission critical update support |
||
red hat red hat enterprise linux 8.6 telecommunications update service |
||
red hat red hat enterprise linux 8.6 update services for sap solutions |
||
red hat red hat enterprise linux 8.8 extended update support |
||
red hat red hat enterprise linux 9 |
||
red hat red hat enterprise linux 9.0 update services for sap solutions |
||
red hat red hat enterprise linux 9.2 extended update support |
||
red hat red hat enterprise linux 9.4 extended update support |
||
red hat red hat enterprise linux 6 |
||
tigervnc tigervnc - |
||
x.org x server |
||
x.org xwayland |
||
redhat enterprise linux 7.0 |
||
redhat enterprise linux 8.0 |
||
redhat enterprise linux 9.0 |
Vulmon