CVE-2025-26595
- EPSS 0.4%
- Veröffentlicht 25.02.2025 16:15:38
- Zuletzt bearbeitet 29.06.2026 21:16:33
A buffer overflow flaw was found in X.Org and Xwayland. The code in XkbVModMaskText() allocates a fixed-sized buffer on the stack and copies the names of the virtual modifiers to that buffer. The code fails to check the bounds of the buffer and would...
CVE-2025-26594
- EPSS 0.36%
- Veröffentlicht 25.02.2025 16:15:38
- Zuletzt bearbeitet 29.06.2026 21:16:33
A use-after-free flaw was found in X.Org and Xwayland. The root cursor is referenced in the X server as a global variable. If a client frees the root cursor, the internal reference points to freed memory and causes a use-after-free.
CVE-2024-0229
- EPSS 1.23%
- Veröffentlicht 09.02.2024 07:16:00
- Zuletzt bearbeitet 04.11.2025 19:16:26
An out-of-bounds memory access flaw was found in the X.Org server. This issue can be triggered when a device frozen by a sync grab is reattached to a different master device. This issue may lead to an application crash, local privilege escalation (if...
CVE-2024-0409
- EPSS 0.36%
- Veröffentlicht 18.01.2024 16:15:08
- Zuletzt bearbeitet 29.08.2025 13:42:30
A flaw was found in the X.Org server. The cursor code in both Xephyr and Xwayland uses the wrong type of private at creation. It uses the cursor bits type with the cursor as private, and when initiating the cursor, that overwrites the XSELINUX contex...
CVE-2024-0408
- EPSS 0.32%
- Veröffentlicht 18.01.2024 16:15:08
- Zuletzt bearbeitet 29.08.2025 13:42:30
A flaw was found in the X.Org server. The GLX PBuffer code does not call the XACE hook when creating the buffer, leaving it unlabeled. When the client issues another request to access that resource (as with a GetGeometry) or when it creates another r...
CVE-2023-6816
- EPSS 2.11%
- Veröffentlicht 18.01.2024 05:15:08
- Zuletzt bearbeitet 19.03.2026 22:16:15
A flaw was found in X.Org server. Both DeviceFocusEvent and the XIQueryPointer reply contain a bit for each logical button currently down. Buttons can be arbitrarily mapped to any value up to 255, but the X.Org Server was only allocating space for th...
CVE-2023-6478
- EPSS 1.63%
- Veröffentlicht 13.12.2023 07:15:31
- Zuletzt bearbeitet 23.06.2026 18:17:38
A flaw was found in xorg-server. A specially crafted request to RRChangeProviderProperty or RRChangeOutputProperty can trigger an integer overflow which may lead to a disclosure of sensitive information.
CVE-2023-6377
- EPSS 1.59%
- Veröffentlicht 13.12.2023 07:15:30
- Zuletzt bearbeitet 23.06.2026 18:17:37
A flaw was found in xorg-server. Querying or changing XKB button actions such as moving from a touchpad to a mouse can result in out-of-bounds memory reads and writes. This may allow local privilege escalation or possible remote code execution in cas...
- EPSS 0.54%
- Veröffentlicht 25.10.2023 20:15:18
- Zuletzt bearbeitet 23.06.2026 18:17:37
A use-after-free flaw was found in xorg-x11-server-Xvfb. This issue occurs in Xvfb with a very specific and legacy configuration (a multi-screen setup with multiple protocol screens, also known as Zaphod mode). If the pointer is warped from a screen ...
CVE-2023-5380
- EPSS 0.72%
- Veröffentlicht 25.10.2023 20:15:18
- Zuletzt bearbeitet 23.06.2026 18:17:37
A use-after-free flaw was found in the xorg-x11-server. An X server crash may occur in a very specific and legacy configuration (a multi-screen setup with multiple protocol screens, also known as Zaphod mode) if the pointer is warped from within a wi...