X.Org

Xwayland

36 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.16%
  • Veröffentlicht 05.06.2026 10:31:22
  • Zuletzt bearbeitet 09.07.2026 13:17:25

A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland. A mismatch between the X server and the libXfont2 library's maximum font name length can cause a stack buffer overflow during font alias resolution. The server allocates...

  • EPSS 0.48%
  • Veröffentlicht 30.10.2025 05:28:48
  • Zuletzt bearbeitet 20.04.2026 14:16:11

A flaw was found in the X.Org X server and Xwayland when processing X11 Present extension notifications. Improper error handling during notification creation can leave dangling pointers that lead to a use-after-free condition. This can cause memory c...

  • EPSS 0.27%
  • Veröffentlicht 30.10.2025 05:19:40
  • Zuletzt bearbeitet 01.07.2026 15:13:56

A flaw was discovered in the X.Org X server’s X Keyboard (Xkb) extension when handling client resource cleanup. The software frees certain data structures without properly detaching related resources, leading to a use-after-free condition. This can c...

  • EPSS 0.28%
  • Veröffentlicht 30.10.2025 05:15:39
  • Zuletzt bearbeitet 01.07.2026 15:17:04

A flaw was identified in the X.Org X server’s X Keyboard (Xkb) extension where improper bounds checking in the XkbSetCompatMap() function can cause an unsigned short overflow. If an attacker sends specially crafted input data, the value calculation m...

  • EPSS 0.28%
  • Veröffentlicht 17.06.2025 15:00:18
  • Zuletzt bearbeitet 30.06.2026 01:16:28

A flaw was found in the RandR extension, where the RRChangeProviderProperty function does not properly validate input. This issue leads to an integer overflow when computing the total size to allocate.

  • EPSS 0.29%
  • Veröffentlicht 17.06.2025 14:54:49
  • Zuletzt bearbeitet 30.06.2026 11:16:20

A flaw was found in the X Record extension. The RecordSanityCheckRegisterClients function does not check for an integer overflow when computing request length, which allows a client to bypass length checks.

  • EPSS 0.2%
  • Veröffentlicht 17.06.2025 14:54:42
  • Zuletzt bearbeitet 30.06.2026 11:16:20

A flaw was found in the X server's request handling. Non-zero 'bytes to ignore' in a client's request can cause the server to skip processing another client's request, potentially leading to a denial of service.

  • EPSS 0.37%
  • Veröffentlicht 17.06.2025 14:49:49
  • Zuletzt bearbeitet 30.06.2026 11:16:19

A flaw was found in the XFIXES extension. The XFixesSetClientDisconnectMode handler does not validate the request length, allowing a client to read unintended memory from previous requests.

  • EPSS 0.31%
  • Veröffentlicht 17.06.2025 14:49:49
  • Zuletzt bearbeitet 30.06.2026 01:16:27

A flaw was found in the Big Requests extension. The request length is multiplied by 4 before checking against the maximum allowed size, potentially causing an integer overflow and bypassing the size check.

  • EPSS 0.29%
  • Veröffentlicht 17.06.2025 14:39:39
  • Zuletzt bearbeitet 30.06.2026 01:16:27

A flaw was found in the X Rendering extension's handling of animated cursors. If a client provides no cursors, the server assumes at least one is present, leading to an out-of-bounds read and potential crash.