X.Org and Xwayland Use-After-Free Vulnerability in Sync Object Handling
A use-after-free vulnerability exists in X.Org and Xwayland related to alarm changes. When modifying an alarm, the system evaluates change mask values sequentially and updates trigger values. If an error occurs during this process, the function may exit prematurely without adding the new sync object. This could potentially lead to a use-after-free scenario when the alarm is eventually triggered, creating a security risk for systems running these graphics server implementations.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
red hat red hat enterprise linux 10 |
||
red hat red hat enterprise linux 7 extended lifecycle support |
||
red hat red hat enterprise linux 8 |
||
red hat red hat enterprise linux 8.2 advanced update support |
||
red hat red hat enterprise linux 8.4 advanced mission critical update support |
||
red hat red hat enterprise linux 8.4 telecommunications update service |
||
red hat red hat enterprise linux 8.4 update services for sap solutions |
||
red hat red hat enterprise linux 8.6 advanced mission critical update support |
||
red hat red hat enterprise linux 8.6 telecommunications update service |
||
red hat red hat enterprise linux 8.6 update services for sap solutions |
||
red hat red hat enterprise linux 8.8 extended update support |
||
red hat red hat enterprise linux 9 |
||
red hat red hat enterprise linux 9.0 update services for sap solutions |
||
red hat red hat enterprise linux 9.2 extended update support |
||
red hat red hat enterprise linux 9.4 extended update support |
||
red hat red hat enterprise linux 6 |
||
tigervnc tigervnc - |
||
x.org x server |
||
x.org xwayland |
||
redhat enterprise linux 7.0 |
||
redhat enterprise linux 8.0 |
||
redhat enterprise linux 9.0 |
Vulmon