CVE-2023-6816
- EPSS 3.08%
- Veröffentlicht 18.01.2024 05:15:08
- Zuletzt bearbeitet 29.08.2025 13:42:30
A flaw was found in X.Org server. Both DeviceFocusEvent and the XIQueryPointer reply contain a bit for each logical button currently down. Buttons can be arbitrarily mapped to any value up to 255, but the X.Org Server was only allocating space for th...
CVE-2023-6478
- EPSS 1.21%
- Veröffentlicht 13.12.2023 07:15:31
- Zuletzt bearbeitet 04.08.2025 21:15:27
A flaw was found in xorg-server. A specially crafted request to RRChangeProviderProperty or RRChangeOutputProperty can trigger an integer overflow which may lead to a disclosure of sensitive information.
CVE-2023-6377
- EPSS 0.41%
- Veröffentlicht 13.12.2023 07:15:30
- Zuletzt bearbeitet 18.08.2025 12:15:26
A flaw was found in xorg-server. Querying or changing XKB button actions such as moving from a touchpad to a mouse can result in out-of-bounds memory reads and writes. This may allow local privilege escalation or possible remote code execution in cas...
CVE-2023-5367
- EPSS 0.06%
- Veröffentlicht 25.10.2023 20:15:18
- Zuletzt bearbeitet 04.11.2025 20:17:13
A out-of-bounds write flaw was found in the xorg-x11-server. This issue occurs due to an incorrect calculation of a buffer offset when copying data stored in the heap in the XIChangeDeviceProperty function in Xi/xiproperty.c and in RRChangeOutputProp...
CVE-2023-5380
- EPSS 0.08%
- Veröffentlicht 25.10.2023 20:15:18
- Zuletzt bearbeitet 04.11.2025 20:17:13
A use-after-free flaw was found in the xorg-x11-server. An X server crash may occur in a very specific and legacy configuration (a multi-screen setup with multiple protocol screens, also known as Zaphod mode) if the pointer is warped from within a wi...