Описание
A vulnerability was found in X.Org. This issue occurs due to a dangling pointer in DeepCopyPointerClasses that can be exploited by ProcXkbSetDeviceInfo() and ProcXkbGetDeviceInfo() to read and write into freed memory. This can lead to local privilege elevation on systems where the X server runs privileged and remote code execution for ssh X forwarding sessions.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 2:1.19.6-1ubuntu4.14 |
| devel | released | 2:21.1.7-1ubuntu1 |
| esm-infra-legacy/trusty | not-affected | 2:1.15.1-0ubuntu2.11+esm7 |
| esm-infra/bionic | not-affected | 2:1.19.6-1ubuntu4.14 |
| esm-infra/focal | not-affected | 2:1.20.13-1ubuntu1~20.04.6 |
| esm-infra/xenial | released | 2:1.18.4-0ubuntu0.12+esm5 |
| focal | released | 2:1.20.13-1ubuntu1~20.04.6 |
| jammy | released | 2:21.1.3-2ubuntu2.7 |
| kinetic | released | 2:21.1.4-2ubuntu1.5 |
| lunar | released | 2:21.1.7-1ubuntu1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | DNE | |
| esm-infra/focal | DNE | |
| esm-infra/xenial | released | 2:1.19.6-1ubuntu4.1~16.04.6+esm4 |
| focal | DNE | |
| jammy | DNE | |
| kinetic | DNE | |
| trusty | DNE | |
| upstream | needs-triage | |
| xenial | ignored | end of standard support |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 2:1.20.8-2ubuntu2.2~18.04.10 |
| esm-infra/bionic | not-affected | 2:1.20.8-2ubuntu2.2~18.04.10 |
| esm-infra/focal | DNE | |
| focal | DNE | |
| jammy | DNE | |
| kinetic | DNE | |
| trusty | DNE | |
| upstream | needs-triage | |
| xenial | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | DNE | |
| esm-infra/focal | DNE | |
| focal | DNE | |
| jammy | DNE | |
| kinetic | DNE | |
| trusty | ignored | end of standard support |
| upstream | needs-triage | |
| xenial | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | DNE | |
| esm-infra/focal | DNE | |
| focal | DNE | |
| jammy | DNE | |
| kinetic | DNE | |
| trusty | ignored | end of standard support |
| upstream | needs-triage | |
| xenial | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | DNE | |
| esm-infra/focal | DNE | |
| focal | DNE | |
| jammy | DNE | |
| kinetic | DNE | |
| trusty | ignored | end of standard support |
| upstream | needs-triage | |
| xenial | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | DNE | |
| esm-infra/focal | DNE | |
| focal | DNE | |
| jammy | DNE | |
| kinetic | DNE | |
| trusty | ignored | end of standard support |
| upstream | needs-triage | |
| xenial | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | DNE | |
| devel | released | 2:22.1.8-1 |
| esm-infra/focal | DNE | |
| focal | DNE | |
| jammy | released | 2:22.1.1-1ubuntu0.5 |
| kinetic | released | 2:22.1.3-2ubuntu0.3 |
| lunar | released | 2:22.1.8-1 |
| trusty | DNE | |
| upstream | needs-triage | |
| xenial | DNE |
Показывать по
7.8 High
CVSS3
Связанные уязвимости
A vulnerability was found in X.Org. This issue occurs due to a dangling pointer in DeepCopyPointerClasses that can be exploited by ProcXkbSetDeviceInfo() and ProcXkbGetDeviceInfo() to read and write into freed memory. This can lead to local privilege elevation on systems where the X server runs privileged and remote code execution for ssh X forwarding sessions.
A vulnerability was found in X.Org. This issue occurs due to a dangling pointer in DeepCopyPointerClasses that can be exploited by ProcXkbSetDeviceInfo() and ProcXkbGetDeviceInfo() to read and write into freed memory. This can lead to local privilege elevation on systems where the X server runs privileged and remote code execution for ssh X forwarding sessions.
A vulnerability was found in X.Org. This issue occurs due to a danglin ...
7.8 High
CVSS3