7.8
CVE-2022-2319
- EPSS 0.44%
- Veröffentlicht 01.09.2022 21:15:09
- Zuletzt bearbeitet 29.08.2025 13:42:30
- Quelle secalert@redhat.com
- CVE-Watchlists
- Unerledigt
A flaw was found in the Xorg-x11-server. An out-of-bounds access issue can occur in the ProcXkbSetGeometry function due to improper validation of the request length.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.44% | 0.348 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
CWE-1320 Improper Protection for Outbound Error Messages and Alert Signals
Untrusted agents can disable alerts about signal conditions exceeding limits or the response mechanism that handles such alerts.
https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/938
https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/939
https://lists.freedesktop.org/archives/xorg-announce/2022-July/003192.html
https://security.gentoo.org/glsa/202210-30
https://security.netapp.com/advisory/ntap-20221104-0003/
https://www.zerodayinitiative.com/advisories/ZDI-22-964/