Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2020-14345

Опубликовано: 15 сент. 2020
Источник: debian
EPSS Низкий

Описание

A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Out-Of-Bounds access in XkbSetNames function may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
xorg-serverfixed2:1.20.9-1package

Примечания

  • https://lists.x.org/archives/xorg-announce/2020-August/003058.html

  • https://gitlab.freedesktop.org/xorg/xserver/-/commit/f7cd1276bbd4fe3a9700096dec33b52b8440788d

EPSS

Процентиль: 18%
0.00057
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2020-14345

CVSS3: 7.8
ubuntu
почти 5 лет назад

A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Out-Of-Bounds access in XkbSetNames function may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

redhat логотип

CVE-2020-14345

CVSS3: 7.8
redhat
почти 5 лет назад

A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Out-Of-Bounds access in XkbSetNames function may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

nvd логотип

CVE-2020-14345

CVSS3: 7.8
nvd
почти 5 лет назад

A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Out-Of-Bounds access in XkbSetNames function may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

github логотип

GHSA-6xpw-chm5-x9v3

CVSS3: 7.8
github
около 3 лет назад

A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Out-Of-Bounds access in XkbSetNames function may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

fstec логотип

BDU:2021-02598

CVSS3: 5.9
fstec
почти 5 лет назад

Уязвимость функции XkbSetNamesCheck из xkb.c сервера X Window System Xorg-server, связанная с выходом операции за границы буфера в памяти, позволяющая нарушителю получить доступ к конфиденциальной информации или вызвать отказ в обслуживании

EPSS

Процентиль: 18%
0.00057
Низкий