Lucene search
RedhatCVELIST:CVE-2023-0494HistoryMar 27, 2023 - 12:00 a.m.
CVE-2023-0494
2023-03-2700:00:00
CWE-416
redhat
www.cve.org
x.org
vulnerability
dangling pointer
local privilege escalation
remote code execution
ssh x forwarding
A vulnerability was found in X.Org. This issue occurs due to a dangling pointer in DeepCopyPointerClasses that can be exploited by ProcXkbSetDeviceInfo() and ProcXkbGetDeviceInfo() to read and write into freed memory. This can lead to local privilege elevation on systems where the X server runs privileged and remote code execution for ssh X forwarding sessions.
CNA Affected
[
{
"vendor": "n/a",
"product": "xorg-x11-server",
"versions": [
{
"version": "xorg-server 21.1.7",
"status": "affected"
}
]
}
]Related
nessus
nessus
Amazon Linux AMI : tigervnc (ALAS-2023-1746)
2023-05-24 00:00:00
AlmaLinux 9 : tigervnc (ALSA-2023:0622)
2023-02-10 00:00:00
RHEL 8 : tigervnc (RHSA-2023:0665)
2023-02-08 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-5846-1)
2023-02-08 00:00:00
Huawei EulerOS: Security Advisory for xorg-x11-server (EulerOS-SA-2023-1967)
2023-05-18 00:00:00
Fedora: Security Advisory for xorg-x11-server (FEDORA-2023-d33a0f8471)
2023-02-13 00:00:00
amazon
amazon
Important: tigervnc
2024-05-23 22:04:00
Important: tigervnc
2023-05-11 18:00:00
Important: xorg-x11-server
2023-03-17 15:53:00
centos
centos
tigervnc, xorg security update
2023-02-20 16:16:26
oraclelinux
oraclelinux
tigervnc security update
2023-02-08 00:00:00
tigervnc and xorg-x11-server security update
2023-02-09 00:00:00
tigervnc security update
2023-02-08 00:00:00
redhat
redhat
(RHSA-2023:0664) Important: tigervnc security update
2023-02-08 10:53:28
(RHSA-2023:0662) Important: tigervnc security update
2023-02-08 10:53:12
(RHSA-2023:0623) Important: tigervnc security update
2023-02-07 15:19:13
osv
osv
xorg-server - security update
2023-02-07 00:00:00
Important: tigervnc security update
2023-02-08 00:00:00
CVE-2023-0494
2023-03-27 21:15:10
ubuntucve
ubuntucve
CVE-2023-0494
2023-02-07 00:00:00
debiancve
debiancve
CVE-2023-0494
2023-03-27 21:15:10
cve
cve
CVE-2023-0494
2023-03-27 21:15:10
rosalinux
rosalinux
Advisory ROSA-SA-2023-2125
2023-02-28 10:13:13
Advisory ROSA-SA-2023-2126
2023-02-28 10:19:45
fedora
fedora
[SECURITY] Fedora 36 Update: xorg-x11-server-1.20.14-18.fc36
2023-02-22 11:09:06
[SECURITY] Fedora 36 Update: xorg-x11-server-Xwayland-22.1.8-1.fc36
2023-02-22 11:09:02
[SECURITY] Fedora 37 Update: xorg-x11-server-Xwayland-22.1.8-1.fc37
2023-02-12 00:44:45
altlinux
altlinux
Security fix for the ALT Linux 10 package xorg-server version 2:1.20.14-alt7
2023-02-15 00:00:00
rocky
rocky
tigervnc security update
2023-02-16 06:36:03
tigervnc security update
2023-02-16 06:35:13
veracode
veracode
Use After Free
2023-02-11 05:09:41
freebsd
freebsd
xorg-server -- Security issue in the X server
2023-02-07 00:00:00
redhatcve
redhatcve
CVE-2023-0494
2023-02-07 04:26:37
alpinelinux
alpinelinux
CVE-2023-0494
2023-03-27 21:15:10
debian
debian
[SECURITY] [DSA 5342-1] xorg-server security update
2023-02-07 15:48:26
[SECURITY] [DLA 3310-1] xorg-server security update
2023-02-07 07:30:28
ubuntu
ubuntu
X.Org X Server vulnerability
2023-02-07 00:00:00
X.Org X Server vulnerabilities
2023-02-16 00:00:00
almalinux
almalinux
Important: tigervnc security update
2023-02-08 00:00:00
Important: tigervnc security update
2023-02-07 00:00:00
Moderate: xorg-x11-server security and bug fix update
2023-05-16 00:00:00
mageia
mageia
Updated tigervnc/x11-server packages fix security vulnerability
2023-03-31 03:13:46
prion
prion
Design/Logic Flaw
2023-03-27 21:15:00
nvd
nvd
CVE-2023-0494
2023-03-27 21:15:10
redos
redos
ROS-20230210-02
2023-02-10 00:00:00
slackware
slackware
[slackware-security] xorg-server
2023-02-07 20:58:17
[slackware-security] tigervnc
2023-11-13 19:27:10
zdi
zdi
gentoo
gentoo
X.Org X server, XWayland: Multiple Vulnerabilities
2023-05-30 00:00:00
ics
ics
Siemens SCALANCE XCM-/XRM-300
2024-02-15 12:00:00