Lucene search
RedhatCVELIST:CVE-2023-43785HistoryOct 10, 2023 - 12:26 p.m.
CVE-2023-43785 Libx11: out-of-bounds memory access in _xkbreadkeysyms()
2023-10-1012:26:02
CWE-787
redhat
www.cve.org
1
libx11
vulnerability
out-of-bounds
memory access
_xkbreadkeysyms
boundary condition
local user
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
6.9 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
5.1%
A vulnerability was found in libX11 due to a boundary condition within the _XkbReadKeySyms() function. This flaw allows a local user to trigger an out-of-bounds read error and read the contents of memory on the system.
CNA Affected
[
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 8",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "libX11",
"defaultStatus": "affected",
"versions": [
{
"version": "0:1.6.8-8.el8",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:enterprise_linux:8::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 9",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "libX11",
"defaultStatus": "affected",
"versions": [
{
"version": "0:1.7.0-9.el9",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 6",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "libX11",
"defaultStatus": "unknown",
"cpes": [
"cpe:/o:redhat:enterprise_linux:6"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 7",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "libX11",
"defaultStatus": "unknown",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
]
}
]Related
cbl_mariner
cbl_mariner
CVE-2023-43785 affecting package libX11 for versions less than 1.8.7-1
2023-11-08 02:07:28
nvd
nvd
CVE-2023-43785
2023-10-10 13:15:21
alpinelinux
alpinelinux
CVE-2023-43785
2023-10-10 13:15:21
vulnrichment
vulnrichment
CVE-2023-43785 Libx11: out-of-bounds memory access in _xkbreadkeysyms()
2023-10-10 12:26:02
veracode
veracode
Out-of-bounds Read
2023-10-12 09:36:29
ubuntucve
ubuntucve
CVE-2023-43785
2023-10-03 00:00:00
debiancve
debiancve
CVE-2023-43785
2023-10-10 13:15:21
cve
cve
CVE-2023-43785
2023-10-10 13:15:21
osv
osv
CVE-2023-43785
2023-10-10 13:15:21
Moderate: libX11 security update
2024-04-30 00:00:00
libx11 - security update
2023-10-05 00:00:00
prion
prion
Out-of-bounds
2023-10-10 13:15:00
redhatcve
redhatcve
CVE-2023-43785
2023-10-05 07:25:04
nessus
nessus
Fedora 39 : libX11 (2023-06bff5611a)
2023-11-07 00:00:00
Amazon Linux AMI : libX11 (ALAS-2023-1859)
2023-10-25 00:00:00
Amazon Linux 2 : libX11 (ALAS-2023-2296)
2023-10-20 00:00:00
amazon
amazon
Medium: libX11
2023-10-12 15:09:00
Medium: libX11
2023-10-12 15:48:00
cloudfoundry
cloudfoundry
USN-6407-2: libx11 vulnerabilities | Cloud Foundry
2023-11-09 00:00:00
USN-6407-1: libx11 vulnerabilities | Cloud Foundry
2023-10-05 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for libX11 (EulerOS-SA-2024-1402)
2024-03-21 00:00:00
Ubuntu: Security Advisory (USN-6407-2)
2023-10-11 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:3989-1)
2023-10-06 00:00:00
oraclelinux
oraclelinux
libX11 security update
2024-05-23 00:00:00
libX11 security update
2024-05-02 00:00:00
redos
redos
ROS-20231018-04
2023-10-18 00:00:00
debian
debian
[SECURITY] [DSA 5517-1] libx11 security update
2023-10-05 18:18:00
[SECURITY] [DLA 3602-1] libx11 security update
2023-10-05 10:39:13
redhat
redhat
(RHSA-2024:2145) Moderate: libX11 security update
2024-04-30 06:14:52
(RHSA-2024:2973) Moderate: libX11 security update
2024-05-22 06:35:14
freebsd
freebsd
11/libX11 multiple vulnerabilities
2023-09-22 00:00:00
almalinux
almalinux
Moderate: libX11 security update
2024-04-30 00:00:00
Moderate: libX11 security update
2024-05-22 00:00:00
ubuntu
ubuntu
libx11 vulnerabilities
2023-10-03 00:00:00
libx11 vulnerabilities
2023-10-10 00:00:00
slackware
slackware
[slackware-security] libX11
2023-10-03 22:25:17
mageia
mageia
Updated libX11 packages fix security vulnerabilities
2023-10-14 01:56:51
photon
photon
Important Photon OS Security Update - PHSA-2023-4.0-0486
2023-10-11 00:00:00
Important Photon OS Security Update - PHSA-2023-5.0-0112
2023-10-11 00:00:00
Important Photon OS Security Update - PHSA-2023-3.0-0668
2023-10-12 00:00:00
fedora
fedora
[SECURITY] Fedora 39 Update: libX11-1.8.7-1.fc39
2023-10-07 03:24:34
ibm
ibm
Security Bulletin: App Connect Enterprise Certified Container UBI updates
2024-02-02 14:30:02
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
6.9 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
5.1%
Related for CVELIST:CVE-2023-43785