CVE-2022-3553

2022-10-1713:15:10

Google

osv.dev

x.org server

x11controller.m

denial of service

patch

vulnerability

vdb-211053

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

6 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

56.4%

JSON

A vulnerability, which was classified as problematic, was found in X.org Server. This affects an unknown part of the file hw/xquartz/X11Controller.m of the component xquartz. The manipulation leads to denial of service. It is recommended to apply a patch to fix this issue. The identifier VDB-211053 was assigned to this vulnerability.

CPENameOperatorVersion
xorg-servereq2:1.20.11-1+deb11u8
xorg-servereq2:1.20.4-1+deb10u8
xorg-servereq2:21.1.10-1
xorg-servereq2:1.20.14-1
xorg-servereq2:21.1.1-1
xorg-servereq2:1.20.4-1+deb10u6
xorg-servereq2:1.20.4-1+deb10u12
xorg-servereq2:1.20.10-3
xorg-servereq2:21.1.11-2
xorg-servereq2:1.20.4-1+deb10u5

Name	Operator	Version
xorg-server	eq	2:1.20.11-1+deb11u8
xorg-server	eq	2:1.20.4-1+deb10u8
xorg-server	eq	2:21.1.10-1
xorg-server	eq	2:1.20.14-1
xorg-server	eq	2:21.1.1-1
xorg-server	eq	2:1.20.4-1+deb10u6
xorg-server	eq	2:1.20.4-1+deb10u12
xorg-server	eq	2:1.20.10-3
xorg-server	eq	2:21.1.11-2
xorg-server	eq	2:1.20.4-1+deb10u5