CVE-2024-0229

2024-02-0907:16:00

Debian Security Bug Tracker

security-tracker.debian.org

x.org server

out-of-bounds memory access

local privilege escalation

remote code execution

ssh x11 forwarding

application crash

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

8.9

Confidence

High

EPSS

Percentile

10.3%

JSON

An out-of-bounds memory access flaw was found in the X.Org server. This issue can be triggered when a device frozen by a sync grab is reattached to a different master device. This issue may lead to an application crash, local privilege escalation (if the server runs with extended privileges), or remote code execution in SSH X11 forwarding environments.

OSVersionArchitecturePackageVersionFilename
Debian12allxorg-server< 2:21.1.7-3+deb12u5xorg-server_2:21.1.7-3+deb12u5_all.deb
Debian11allxorg-server< 2:1.20.11-1+deb11u11xorg-server_2:1.20.11-1+deb11u11_all.deb
Debian999allxorg-server< 2:21.1.11-1xorg-server_2:21.1.11-1_all.deb
Debian13allxorg-server< 2:21.1.11-1xorg-server_2:21.1.11-1_all.deb
Debian12allxwayland<= 2:22.1.9-1xwayland_2:22.1.9-1_all.deb
Debian999allxwayland< 2:23.2.4-1xwayland_2:23.2.4-1_all.deb
Debian13allxwayland< 2:23.2.4-1xwayland_2:23.2.4-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	xorg-server	< 2:21.1.7-3+deb12u5	xorg-server_2:21.1.7-3+deb12u5_all.deb
Debian	11	all	xorg-server	< 2:1.20.11-1+deb11u11	xorg-server_2:1.20.11-1+deb11u11_all.deb
Debian	999	all	xorg-server	< 2:21.1.11-1	xorg-server_2:21.1.11-1_all.deb
Debian	13	all	xorg-server	< 2:21.1.11-1	xorg-server_2:21.1.11-1_all.deb
Debian	12	all	xwayland	<= 2:22.1.9-1	xwayland_2:22.1.9-1_all.deb
Debian	999	all	xwayland	< 2:23.2.4-1	xwayland_2:23.2.4-1_all.deb
Debian	13	all	xwayland	< 2:23.2.4-1	xwayland_2:23.2.4-1_all.deb