7.3

CVE-2025-62230

Xorg: xwayland: use-after-free in xkb client resource removal

A flaw was discovered in the X.Org X server’s X Keyboard (Xkb) extension when handling client resource cleanup. The software frees certain data structures without properly detaching related resources, leading to a use-after-free condition. This can cause memory corruption or a crash when affected clients disconnect.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
X.OrgX Server Version < 21.1.19
X.OrgXwayland Version < 24.1.9
IbmVios Version >= 4.1.0 < 4.1.1.30
IbmVios Version4.1.2.0
IbmAix Version >= 7.2.5 < 7.2.5.12
IbmAix Version >= 7.3.2 < 7.3.3.3
IbmAix Version7.3.4
DebianDebian Linux Version11.0
RedhatEnterprise Linux Version8.0
RedhatEnterprise Linux Version9.0
RedhatEnterprise Linux Version10.0
RedhatEnterprise Linux Aus Version8.2
RedhatEnterprise Linux Aus Version8.4
RedhatEnterprise Linux Aus Version8.6
RedhatEnterprise Linux Els Version6.0
RedhatEnterprise Linux Els Version7.0
RedhatEnterprise Linux Eus Version8.4
RedhatEnterprise Linux Eus Version9.4
RedhatEnterprise Linux Tus Version8.6
RedhatEnterprise Linux Tus Version8.8
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.27% 0.183
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
secalert@redhat.com 7.3 1.8 5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H
CWE-416 Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

https://access.redhat.com/security/cve/CVE-2025-62230
Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2402653
Third Party Advisory
Issue Tracking
https://access.redhat.com/errata/RHSA-2025:19434
Third Party Advisory
https://access.redhat.com/errata/RHSA-2025:19432
Third Party Advisory
https://access.redhat.com/errata/RHSA-2025:19433
Third Party Advisory
https://access.redhat.com/errata/RHSA-2025:19435
Third Party Advisory
https://access.redhat.com/errata/RHSA-2025:19489
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2025/10/msg00033.html
Third Party Advisory
Mailing List
https://access.redhat.com/errata/RHSA-2025:19623
Third Party Advisory
http://www.openwall.com/lists/oss-security/2025/10/28/7
Patch
Mailing List
https://access.redhat.com/errata/RHSA-2025:19909
Third Party Advisory
https://access.redhat.com/errata/RHSA-2025:20960
Third Party Advisory
https://access.redhat.com/errata/RHSA-2025:21035
Third Party Advisory
https://access.redhat.com/errata/RHSA-2025:20958
Third Party Advisory
https://access.redhat.com/errata/RHSA-2025:20961
Third Party Advisory
https://access.redhat.com/errata/RHSA-2025:22041
Third Party Advisory
https://access.redhat.com/errata/RHSA-2025:22051
Third Party Advisory
https://access.redhat.com/errata/RHSA-2025:22055
Third Party Advisory
https://access.redhat.com/errata/RHSA-2025:22056
Third Party Advisory
https://access.redhat.com/errata/RHSA-2025:22040
Third Party Advisory
https://access.redhat.com/errata/RHSA-2025:22077
Third Party Advisory
https://access.redhat.com/errata/RHSA-2025:22096
Third Party Advisory
https://access.redhat.com/errata/RHSA-2025:22164
Third Party Advisory
https://access.redhat.com/errata/RHSA-2025:22167
Third Party Advisory
https://access.redhat.com/errata/RHSA-2025:22364
Third Party Advisory
https://access.redhat.com/errata/RHSA-2025:22365
Third Party Advisory
https://access.redhat.com/errata/RHSA-2025:22426
Third Party Advisory
https://access.redhat.com/errata/RHSA-2025:22427
Third Party Advisory
https://access.redhat.com/errata/RHSA-2025:22667
Third Party Advisory
https://access.redhat.com/errata/RHSA-2025:22729
Third Party Advisory
https://access.redhat.com/errata/RHSA-2025:22742
Third Party Advisory
https://access.redhat.com/errata/RHSA-2025:22753
Third Party Advisory
https://access.redhat.com/errata/RHSA-2026:0033
Third Party Advisory
https://access.redhat.com/errata/RHSA-2026:0034
Third Party Advisory
https://access.redhat.com/errata/RHSA-2026:0036
Third Party Advisory
https://access.redhat.com/errata/RHSA-2026:0031
Third Party Advisory
https://access.redhat.com/errata/RHSA-2026:0035
Third Party Advisory
https://lists.x.org/archives/xorg-announce/2025-October/003635.html
Vendor Advisory
Mailing List