Lucene search
UbuntuUSN-6721-1HistoryApr 04, 2024 - 12:00 a.m.
X.Org X Server vulnerabilities
2024-04-0400:00:00
ubuntu.com
34
ubuntu
x.org x server
vulnerabilities
data handling
xwayland
cve-2024-31080
cve-2024-31081
cve-2024-31082
glyphs
crash
sensitive information
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
7.8
Confidence
High
EPSS
0.001
Percentile
17.1%
Releases
- Ubuntu 23.10
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS
- Ubuntu 18.04 ESM
- Ubuntu 16.04 ESM
- Ubuntu 14.04 ESM
Packages
- xorg-server - X.Org X11 server
- xwayland - X server for running X clients under Wayland
Details
It was discovered that X.Org X Server incorrectly handled certain data.
An attacker could possibly use this issue to expose sensitive information.
(CVE-2024-31080, CVE-2024-31081, CVE-2024-31082)
It was discovered that X.Org X Server incorrectly handled certain glyphs.
An attacker could possibly use this issue to cause a crash or expose sensitive
information. (CVE-2024-31083)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 23.10 | noarch | xserver-xorg-core | < 2:21.1.7-3ubuntu2.8 | UNKNOWN |
| Ubuntu | 23.10 | noarch | xnest | < 2:21.1.7-3ubuntu2.8 | UNKNOWN |
| Ubuntu | 23.10 | noarch | xnest-dbgsym | < 2:21.1.7-3ubuntu2.8 | UNKNOWN |
| Ubuntu | 23.10 | noarch | xorg-server-source | < 2:21.1.7-3ubuntu2.8 | UNKNOWN |
| Ubuntu | 23.10 | noarch | xserver-common | < 2:21.1.7-3ubuntu2.8 | UNKNOWN |
| Ubuntu | 23.10 | noarch | xserver-xephyr | < 2:21.1.7-3ubuntu2.8 | UNKNOWN |
| Ubuntu | 23.10 | noarch | xserver-xephyr-dbgsym | < 2:21.1.7-3ubuntu2.8 | UNKNOWN |
| Ubuntu | 23.10 | noarch | xserver-xorg-core-dbgsym | < 2:21.1.7-3ubuntu2.8 | UNKNOWN |
| Ubuntu | 23.10 | noarch | xserver-xorg-dev | < 2:21.1.7-3ubuntu2.8 | UNKNOWN |
| Ubuntu | 23.10 | noarch | xserver-xorg-legacy | < 2:21.1.7-3ubuntu2.8 | UNKNOWN |
Related
openvas
openvas
Huawei EulerOS: Security Advisory for xorg-x11-server (EulerOS-SA-2024-1828)
2024-06-25 00:00:00
Ubuntu: Security Advisory (USN-6721-1)
2024-04-08 00:00:00
openSUSE: Security Advisory for xorg (SUSE-SU-2024:1262-1)
2024-04-17 00:00:00
ubuntu
ubuntu
X.Org X Server regression
2024-04-09 00:00:00
nessus
nessus
SUSE SLES12 Security Update : xorg-x11-server (SUSE-SU-2024:1199-1)
2024-04-11 00:00:00
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : xorg-x11-server (SUSE-SU-2024:1262-1)
2024-04-13 00:00:00
EulerOS 2.0 SP11 : xorg-x11-server (EulerOS-SA-2024-1828)
2024-06-25 00:00:00
redos
redos
ROS-20240507-07
2024-05-07 00:00:00
osv
osv
xorg-server, xwayland regression
2024-04-09 21:16:47
xorg-server, xwayland vulnerabilities
2024-04-04 18:06:26
xorg-x11-server-21.1.12-1.1 on GA media
2024-06-15 00:00:00
slackware
slackware
[slackware-security] tigervnc
2024-04-05 20:14:40
[slackware-security] xorg-server
2024-04-03 22:25:44
fedora
fedora
[SECURITY] Fedora 39 Update: xorg-x11-server-Xwayland-23.2.6-1.fc39
2024-04-24 01:18:17
[SECURITY] Fedora 40 Update: xorg-x11-server-Xwayland-23.2.6-1.fc40
2024-04-19 21:43:34
[SECURITY] Fedora 38 Update: xorg-x11-server-Xwayland-22.1.9-7.fc38
2024-04-24 01:36:56
rocky
rocky
tigervnc security update
2024-05-10 14:32:42
xorg-x11-server-Xwayland security update
2024-06-14 13:59:30
tigervnc security update
2024-06-14 13:59:30
oraclelinux
oraclelinux
xorg-x11-server security update
2024-05-29 00:00:00
X.Org server security update
2024-04-11 00:00:00
tigervnc security update
2024-04-24 00:00:00
redhat
redhat
(RHSA-2024:2036) Important: tigervnc security update
2024-04-24 14:54:26
(RHSA-2024:1785) Important: X.Org server security update
2024-04-11 15:27:06
(RHSA-2024:2080) Important: tigervnc security update
2024-04-29 01:07:43
amazon
amazon
Important: xorg-x11-server
2024-04-11 01:07:00
Important: tigervnc
2024-04-11 01:07:00
Important: tigervnc
2024-04-11 01:43:00
freebsd
freebsd
xorg server -- Multiple vulnerabilities
2024-04-03 00:00:00
almalinux
almalinux
Important: tigervnc security update
2024-04-24 00:00:00
Important: xorg-x11-server-Xwayland security update
2024-05-23 00:00:00
Moderate: xorg-x11-server security update
2024-05-22 00:00:00
mageia
mageia
debian
debian
[SECURITY] [DSA 5657-1] xorg-server security update
2024-04-12 20:32:08
[SECURITY] [DLA 3787-1] xorg-server security update
2024-04-15 13:22:45
veracode
veracode
Buffer Over-Read
2024-04-11 02:44:07
Buffer Over-Read
2024-04-11 02:44:06
Buffer Over-read
2024-04-11 02:44:05
vulnrichment
vulnrichment
redhatcve
redhatcve
cgr
cgr
CVE-2024-31082 vulnerabilities
2024-05-19 03:07:16
CVE-2024-31080 vulnerabilities
2024-05-19 03:07:16
CVE-2024-31081 vulnerabilities
2024-05-19 03:07:16
cve
cve
ubuntucve
ubuntucve
cvelist
cvelist
debiancve
debiancve
alpinelinux
alpinelinux
wolfi
wolfi
CVE-2024-31082 vulnerabilities
2024-09-28 16:03:05
CVE-2024-31081 vulnerabilities
2024-09-28 16:03:05
CVE-2024-31080 vulnerabilities
2024-09-28 16:03:05
nvd
nvd
cbl_mariner
cbl_mariner
zdi
zdi
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
7.8
Confidence
High
EPSS
0.001
Percentile
17.1%
Related for USN-6721-1