CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
Low
EPSS
Percentile
16.7%
The updated packages fix security vulnerabilities: OOB write in XIChangeDeviceProperty/RRChangeOutputProperty. (CVE-2023-5367) Use-after-free bug in DestroyWindow. (CVE-2023-5380) Use-after-free bug in DamageDestroy. (CVE-2023-5574)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Mageia | 8 | noarch | x11-server | < 1.20.14-4.4 | x11-server-1.20.14-4.4.mga8 |
Mageia | 9 | noarch | x11-server | < 21.1.8-7.1 | x11-server-21.1.8-7.1.mga9 |
Mageia | 9 | noarch | x11-server-xwayland | < 22.1.9-1.1 | x11-server-xwayland-22.1.9-1.1.mga9 |