Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2020-14360

Опубликовано: 20 янв. 2021
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 6.1
CVSS3: 7.8

Описание

A flaw was found in the X.Org Server before version 1.20.10. An out-of-bounds access in the XkbSetMap function may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

РелизСтатусПримечание
bionic

not-affected

code not present
devel

not-affected

code not present
esm-infra-legacy/trusty

DNE

esm-infra/bionic

not-affected

code not present
esm-infra/focal

not-affected

code not present
esm-infra/xenial

not-affected

code not present
focal

not-affected

code not present
groovy

not-affected

code not present
precise/esm

DNE

trusty

ignored

end of standard support

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

esm-infra/xenial

not-affected

code not present
focal

DNE

groovy

DNE

precise/esm

DNE

trusty

DNE

trusty/esm

DNE

Показывать по

РелизСтатусПримечание
bionic

not-affected

code not present
devel

DNE

esm-infra-legacy/trusty

DNE

esm-infra/bionic

not-affected

code not present
esm-infra/focal

DNE

focal

DNE

groovy

DNE

precise/esm

DNE

trusty

DNE

trusty/esm

DNE

Показывать по

РелизСтатусПримечание
bionic

released

2:1.19.6-1ubuntu4.8
devel

released

2:1.20.9-2ubuntu3
esm-infra-legacy/trusty

not-affected

2:1.15.1-0ubuntu2.11+esm3
esm-infra/bionic

not-affected

2:1.19.6-1ubuntu4.8
esm-infra/focal

not-affected

2:1.20.8-2ubuntu2.6
esm-infra/xenial

not-affected

2:1.18.4-0ubuntu0.11
focal

released

2:1.20.8-2ubuntu2.6
groovy

released

2:1.20.9-2ubuntu1.1
precise/esm

DNE

trusty

ignored

end of standard support

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

esm-infra/xenial

not-affected

2:1.19.6-1ubuntu4.1~16.04.5
focal

DNE

groovy

DNE

precise/esm

DNE

trusty

DNE

trusty/esm

DNE

Показывать по

РелизСтатусПримечание
bionic

released

2:1.20.8-2ubuntu2.2~18.04.4
devel

DNE

esm-infra-legacy/trusty

DNE

esm-infra/bionic

not-affected

2:1.20.8-2ubuntu2.2~18.04.4
esm-infra/focal

DNE

focal

DNE

groovy

DNE

precise/esm

DNE

trusty

DNE

trusty/esm

DNE

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

DNE

groovy

DNE

precise/esm

DNE

trusty

ignored

end of standard support
trusty/esm

DNE

upstream

needs-triage

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

DNE

groovy

DNE

precise/esm

DNE

trusty

ignored

end of standard support
trusty/esm

DNE

upstream

needs-triage

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

DNE

groovy

DNE

precise/esm

DNE

trusty

ignored

end of standard support
trusty/esm

DNE

upstream

needs-triage

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

DNE

groovy

DNE

precise/esm

DNE

trusty

ignored

end of standard support
trusty/esm

DNE

upstream

needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 21%
0.00066
Низкий

6.1 Medium

CVSS2

7.8 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2020-14360

CVSS3: 7.8
redhat
больше 4 лет назад

A flaw was found in the X.Org Server before version 1.20.10. An out-of-bounds access in the XkbSetMap function may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

nvd логотип

CVE-2020-14360

CVSS3: 7.8
nvd
больше 4 лет назад

A flaw was found in the X.Org Server before version 1.20.10. An out-of-bounds access in the XkbSetMap function may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

debian логотип

CVE-2020-14360

CVSS3: 7.8
debian
больше 4 лет назад

A flaw was found in the X.Org Server before version 1.20.10. An out-of ...

github логотип

GHSA-p2mv-74m8-hvq8

github
около 3 лет назад

A flaw was found in the X.Org Server before version 1.20.10. An out-of-bounds access in the XkbSetMap function may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

fstec логотип

BDU:2021-03541

CVSS3: 7.8
fstec
больше 4 лет назад

Уязвимость функции XkbSetMap реализации сервера X Window System X.Org Server, связанная с выходом операции за границы буфера в памяти, позволяющая нарушителю получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании

EPSS

Процентиль: 21%
0.00066
Низкий

6.1 Medium

CVSS2

7.8 High

CVSS3

Уязвимость CVE-2020-14360