Search CVE reports
1 – 10 of 59 results
XKB Buffer overflow in CheckKeyTypes(). The function CheckKeyTypes() will loop over the client's request but won't perform any additional bound checking to ensure that the data read remains within the request bounds. As a result,...
7 affected packages
xorg, xorg-server, xwayland, xorg-server-hwe-16.04, xorg-server-hwe-18.04...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| xorg | Not affected | Not affected | Not affected | Not affected |
| xorg-server | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| xwayland | Needs evaluation | Needs evaluation | — | — |
| xorg-server-hwe-16.04 | Not in release | Not in release | — | — |
| xorg-server-hwe-18.04 | Not in release | Not in release | — | Needs evaluation |
| xorg-hwe-16.04 | Not in release | Not in release | — | — |
| xorg-hwe-18.04 | Not in release | Not in release | — | Not affected |
XKB Out-of-bounds read in CheckModifierMap(). CheckModifierMap() reads from the wire in a loop without verifying that the data remains within the bounds of the client request. As a result, the total number of keys could exceed the...
7 affected packages
xorg, xorg-server, xwayland, xorg-server-hwe-16.04, xorg-server-hwe-18.04...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| xorg | Not affected | Not affected | Not affected | Not affected |
| xorg-server | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| xwayland | Needs evaluation | Needs evaluation | — | — |
| xorg-server-hwe-16.04 | Not in release | Not in release | — | — |
| xorg-server-hwe-18.04 | Not in release | Not in release | — | Needs evaluation |
| xorg-hwe-16.04 | Not in release | Not in release | — | — |
| xorg-hwe-18.04 | Not in release | Not in release | — | Not affected |
XSYNC Use-after-free in miSyncTriggerFence(). When walking the list of fences to trigger, miSyncTriggerFence() may call TriggerFence() for the current trigger, which end up calling the function SyncAwaitTriggerFired()....
7 affected packages
xorg, xorg-server, xwayland, xorg-server-hwe-16.04, xorg-server-hwe-18.04...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| xorg | Not affected | Not affected | Not affected | Not affected |
| xorg-server | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| xwayland | Needs evaluation | Needs evaluation | — | — |
| xorg-server-hwe-16.04 | Not in release | Not in release | — | — |
| xorg-server-hwe-18.04 | Not in release | Not in release | — | Needs evaluation |
| xorg-hwe-16.04 | Not in release | Not in release | — | — |
| xorg-hwe-18.04 | Not in release | Not in release | — | Not affected |
XKB Out-of-bounds Read in CheckSetGeom(). Each key alias entry contains two key names (the alias and the real key name). The code in CheckSetGeom() does its bounds checking using only the first name, allowing XkbAddGeomKeyAlias to...
7 affected packages
xorg, xorg-server, xwayland, xorg-server-hwe-16.04, xorg-server-hwe-18.04...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| xorg | Not affected | Not affected | Not affected | Not affected |
| xorg-server | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| xwayland | Needs evaluation | Needs evaluation | — | — |
| xorg-server-hwe-16.04 | Not in release | Not in release | — | — |
| xorg-server-hwe-18.04 | Not in release | Not in release | — | Needs evaluation |
| xorg-hwe-16.04 | Not in release | Not in release | — | — |
| xorg-hwe-18.04 | Not in release | Not in release | — | Not affected |
XKB Integer Underflow in XkbSetCompatMap(). If a "compat" buffer was previously truncated, there will be unused space left in the buffer. The code in XkbSetCompatMap() will use that space, but fails to update the number of valid...
7 affected packages
xorg, xorg-server, xwayland, xorg-server-hwe-16.04, xorg-server-hwe-18.04...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| xorg | Not affected | Not affected | Not affected | Not affected |
| xorg-server | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| xwayland | Needs evaluation | Needs evaluation | — | — |
| xorg-server-hwe-16.04 | Not in release | Not in release | — | — |
| xorg-server-hwe-18.04 | Not in release | Not in release | — | Needs evaluation |
| xorg-hwe-16.04 | Not in release | Not in release | — | — |
| xorg-hwe-18.04 | Not in release | Not in release | — | Not affected |
Some fixes available 8 of 14
A flaw was identified in the X.Org X server’s X Keyboard (Xkb) extension where improper bounds checking in the XkbSetCompatMap() function can cause an unsigned short overflow. If an attacker sends specially crafted input data, the...
7 affected packages
xorg, xorg-server, xwayland, xorg-server-hwe-16.04, xorg-server-hwe-18.04...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| xorg | Not affected | Not affected | Not affected | Not affected |
| xorg-server | Fixed | Fixed | Needs evaluation | Needs evaluation |
| xwayland | Fixed | Fixed | — | — |
| xorg-server-hwe-16.04 | Not in release | Not in release | — | — |
| xorg-server-hwe-18.04 | Not in release | Not in release | — | Needs evaluation |
| xorg-hwe-16.04 | Not in release | Not in release | — | — |
| xorg-hwe-18.04 | Not in release | Not in release | — | Not affected |
Some fixes available 8 of 14
A flaw was discovered in the X.Org X server’s X Keyboard (Xkb) extension when handling client resource cleanup. The software frees certain data structures without properly detaching related resources, leading to a use-after-free...
7 affected packages
xorg, xorg-server, xwayland, xorg-server-hwe-16.04, xorg-server-hwe-18.04...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| xorg | Not affected | Not affected | Not affected | Not affected |
| xorg-server | Fixed | Fixed | Needs evaluation | Needs evaluation |
| xwayland | Fixed | Fixed | — | — |
| xorg-server-hwe-16.04 | Not in release | Not in release | — | — |
| xorg-server-hwe-18.04 | Not in release | Not in release | — | Needs evaluation |
| xorg-hwe-16.04 | Not in release | Not in release | — | — |
| xorg-hwe-18.04 | Not in release | Not in release | — | Not affected |
Some fixes available 8 of 14
A flaw was found in the X.Org X server and Xwayland when processing X11 Present extension notifications. Improper error handling during notification creation can leave dangling pointers that lead to a use-after-free condition....
7 affected packages
xorg, xorg-server, xwayland, xorg-server-hwe-16.04, xorg-server-hwe-18.04...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| xorg | Not affected | Not affected | Not affected | Not affected |
| xorg-server | Fixed | Fixed | Needs evaluation | Needs evaluation |
| xwayland | Fixed | Fixed | — | — |
| xorg-server-hwe-16.04 | Not in release | Not in release | — | — |
| xorg-server-hwe-18.04 | Not in release | Not in release | — | Needs evaluation |
| xorg-hwe-16.04 | Not in release | Not in release | — | — |
| xorg-hwe-18.04 | Not in release | Not in release | — | Not affected |
Some fixes available 15 of 16
A flaw was found in the RandR extension, where the RRChangeProviderProperty function does not properly validate input. This issue leads to an integer overflow when computing the total size to allocate.
7 affected packages
xorg-server, xwayland, xorg, xorg-server-hwe-16.04, xorg-server-hwe-18.04...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| xorg-server | Fixed | Fixed | Fixed | Fixed |
| xwayland | Fixed | Fixed | — | — |
| xorg | Not affected | Not affected | Not affected | Not affected |
| xorg-server-hwe-16.04 | Not in release | Not in release | — | — |
| xorg-server-hwe-18.04 | Not in release | Not in release | — | Fixed |
| xorg-hwe-16.04 | Not in release | Not in release | — | — |
| xorg-hwe-18.04 | Not in release | Not in release | — | Not affected |
Some fixes available 15 of 16
A flaw was found in the X Record extension. The RecordSanityCheckRegisterClients function does not check for an integer overflow when computing request length, which allows a client to bypass length checks.
7 affected packages
xorg-server, xwayland, xorg, xorg-server-hwe-16.04, xorg-server-hwe-18.04...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| xorg-server | Fixed | Fixed | Fixed | Fixed |
| xwayland | Fixed | Fixed | — | — |
| xorg | Not affected | Not affected | Not affected | Not affected |
| xorg-server-hwe-16.04 | Not in release | Not in release | — | — |
| xorg-server-hwe-18.04 | Not in release | Not in release | — | Fixed |
| xorg-hwe-16.04 | Not in release | Not in release | — | — |
| xorg-hwe-18.04 | Not in release | Not in release | — | Not affected |