Описание
A flaw was found in the way xserver memory was not properly initialized. This could leak parts of server memory to the X client. In cases where Xorg server runs with elevated privileges, this could result in possible ASLR bypass. Xorg-server before version 1.20.9 is vulnerable.
A flaw was found in the way the Xserver memory was not properly initialized. This issue leak parts of server memory to the X client. In cases where the Xorg server runs with elevated privileges, this flaw results in a possible ASLR bypass.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 5 | xorg-x11-server | Out of support scope | ||
| Red Hat Enterprise Linux 6 | xorg-x11-server | Out of support scope | ||
| Red Hat Enterprise Linux 9 | xorg-x11-server | Affected | ||
| Red Hat Enterprise Linux 7 | xorg-x11-server | Fixed | RHSA-2020:5408 | 14.12.2020 |
| Red Hat Enterprise Linux 8 | egl-wayland | Fixed | RHSA-2021:1804 | 18.05.2021 |
| Red Hat Enterprise Linux 8 | libdrm | Fixed | RHSA-2021:1804 | 18.05.2021 |
| Red Hat Enterprise Linux 8 | libglvnd | Fixed | RHSA-2021:1804 | 18.05.2021 |
| Red Hat Enterprise Linux 8 | libinput | Fixed | RHSA-2021:1804 | 18.05.2021 |
| Red Hat Enterprise Linux 8 | libwacom | Fixed | RHSA-2021:1804 | 18.05.2021 |
| Red Hat Enterprise Linux 8 | libX11 | Fixed | RHSA-2021:1804 | 18.05.2021 |
Показывать по
Дополнительная информация
Статус:
EPSS
5.5 Medium
CVSS3
Связанные уязвимости
A flaw was found in the way xserver memory was not properly initialized. This could leak parts of server memory to the X client. In cases where Xorg server runs with elevated privileges, this could result in possible ASLR bypass. Xorg-server before version 1.20.9 is vulnerable.
A flaw was found in the way xserver memory was not properly initialized. This could leak parts of server memory to the X client. In cases where Xorg server runs with elevated privileges, this could result in possible ASLR bypass. Xorg-server before version 1.20.9 is vulnerable.
A flaw was found in the way xserver memory was not properly initialize ...
A flaw was found in the way xserver memory was not properly initialized. This could leak parts of server memory to the X client. In cases where Xorg server runs with elevated privileges, this could result in possible ASLR bypass. Xorg-server before version 1.20.9 is vulnerable.
Уязвимость сервера X Window System Xorg-server, связанная с некорректной инициализацией памяти, позволяющая нарушителю вызвать утечку части серверной памяти для клиента Xorg-server
EPSS
5.5 Medium
CVSS3