9.1

CVE-2026-34002

Xorg: xwayland: x.org x server: information disclosure or denial of service via out-of-bounds read in xkb modifier map handling

A flaw was found in the X.Org X server. This vulnerability, an out-of-bounds read, affects the XKB (X Keyboard Extension) modifier map handling. An attacker with access to the X11 server can exploit this by sending a malformed request, which causes the server to read beyond its intended memory boundaries. This can lead to the exposure of sensitive information or cause the server to crash, resulting in a denial of service.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
X.OrgX Server Version-
RedhatEnterprise Linux Version6.0
RedhatEnterprise Linux Version7.0
RedhatEnterprise Linux Version8.0
RedhatEnterprise Linux Version9.0
RedhatEnterprise Linux Version10.0
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.49% 0.382
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 9.1 3.9 5.2
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
secalert@redhat.com 6.1 1.8 4.2
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L
CWE-805 Buffer Access with Incorrect Length Value

The product uses a sequential operation to read or write a buffer, but it uses an incorrect length value that causes it to access memory that is outside of the bounds of the buffer.

https://access.redhat.com/security/cve/CVE-2026-34002
Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2451112
Third Party Advisory
Issue Tracking
https://access.redhat.com/errata/RHSA-2026:20547
https://access.redhat.com/errata/RHSA-2026:20555
https://access.redhat.com/errata/RHSA-2026:20557
https://access.redhat.com/errata/RHSA-2026:20558
https://access.redhat.com/errata/RHSA-2026:20560
https://access.redhat.com/errata/RHSA-2026:20561
https://access.redhat.com/errata/RHSA-2026:20562
https://access.redhat.com/errata/RHSA-2026:20563
https://access.redhat.com/errata/RHSA-2026:20575
https://access.redhat.com/errata/RHSA-2026:20576
https://access.redhat.com/errata/RHSA-2026:20590
https://access.redhat.com/errata/RHSA-2026:21699
https://access.redhat.com/errata/RHSA-2026:21712
https://access.redhat.com/errata/RHSA-2026:21716
https://access.redhat.com/errata/RHSA-2026:21718
https://access.redhat.com/errata/RHSA-2026:21715
https://access.redhat.com/errata/RHSA-2026:21741
https://access.redhat.com/errata/RHSA-2026:21742
https://access.redhat.com/errata/RHSA-2026:22424
https://access.redhat.com/errata/RHSA-2026:22456
https://access.redhat.com/errata/RHSA-2026:23254
https://access.redhat.com/errata/RHSA-2026:23255
https://access.redhat.com/errata/RHSA-2026:23496
https://access.redhat.com/errata/RHSA-2026:24341