X.Org and Xwayland Uninitialized Pointer Vulnerability in compCheckRedirect()
An uninitialized pointer vulnerability exists in X.Org and Xwayland related to the compCheckRedirect() function. When the function cannot allocate the backing pixmap, compRedirectWindow() returns a BadAlloc error without properly validating the window tree. This leaves validated data partially initialized and can potentially lead to an uninitialized pointer being used later, which could create security risks for affected systems.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
red hat red hat enterprise linux 10 |
||
red hat red hat enterprise linux 7 extended lifecycle support |
||
red hat red hat enterprise linux 8 |
||
red hat red hat enterprise linux 8.2 advanced update support |
||
red hat red hat enterprise linux 8.4 advanced mission critical update support |
||
red hat red hat enterprise linux 8.4 telecommunications update service |
||
red hat red hat enterprise linux 8.4 update services for sap solutions |
||
red hat red hat enterprise linux 8.6 advanced mission critical update support |
||
red hat red hat enterprise linux 8.6 telecommunications update service |
||
red hat red hat enterprise linux 8.6 update services for sap solutions |
||
red hat red hat enterprise linux 8.8 extended update support |
||
red hat red hat enterprise linux 9 |
||
red hat red hat enterprise linux 9.0 update services for sap solutions |
||
red hat red hat enterprise linux 9.2 extended update support |
||
red hat red hat enterprise linux 9.4 extended update support |
||
red hat red hat enterprise linux 6 |
||
tigervnc tigervnc - |
||
x.org x server |
||
x.org xwayland |
||
redhat enterprise linux 7.0 |
||
redhat enterprise linux 8.0 |
||
redhat enterprise linux 9.0 |
Vulmon