Lucene search
Redhat.comRH:CVE-2024-31082HistoryApr 04, 2024 - 8:56 a.m.
CVE-2024-31082
2024-04-0408:56:37
redhat.com
access.redhat.com
3
x.org server
procappledricreatepixmap
buffer over-read
memory leakage
segmentation faults
endianness
vulnerability
attacker
memory reads
A heap-based buffer over-read vulnerability was found in the X.org server’s ProcAppleDRICreatePixmap() function. This issue occurs when byte-swapped length values are used in replies, potentially leading to memory leakage and segmentation faults, particularly when triggered by a client with a different endianness. This vulnerability could be exploited by an attacker to cause the X server to read heap memory values and then transmit them back to the client until encountering an unmapped page, resulting in a crash. Despite the attacker’s inability to control the specific memory copied into the replies, the small length values typically stored in a 32-bit integer can result in significant attempted out-of-bounds reads.
Related
veracode
veracode
Buffer Over-Read
2024-04-11 02:44:07
cgr
cgr
CVE-2024-31082 vulnerabilities
2024-05-19 03:07:16
cve
cve
CVE-2024-31082
2024-04-04 14:15:10
ubuntucve
ubuntucve
CVE-2024-31082
2024-03-04 00:00:00
cvelist
cvelist
alpinelinux
alpinelinux
CVE-2024-31082
2024-04-04 14:15:10
debiancve
debiancve
CVE-2024-31082
2024-04-04 14:15:10
wolfi
wolfi
CVE-2024-31082 vulnerabilities
2024-05-28 21:07:31
nessus
nessus
SUSE SLES15 Security Update : xorg-x11-server (SUSE-SU-2024:1260-1)
2024-04-13 00:00:00
Slackware Linux 15.0 / current tigervnc Multiple Vulnerabilities (SSA:2024-096-01)
2024-04-05 00:00:00
SUSE SLED15 / SLES15 Security Update : xorg-x11-server (SUSE-SU-2024:1261-1)
2024-04-13 00:00:00
osv
osv
xorg-server, xwayland regression
2024-04-09 21:16:47
xorg-server, xwayland vulnerabilities
2024-04-04 18:06:26
ubuntu
ubuntu
X.Org X Server regression
2024-04-09 00:00:00
X.Org X Server vulnerabilities
2024-04-04 00:00:00
openvas
openvas
openSUSE: Security Advisory for xorg (SUSE-SU-2024:1262-1)
2024-04-17 00:00:00
Ubuntu: Security Advisory (USN-6721-1)
2024-04-08 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:1199-1)
2024-05-07 00:00:00
fedora
fedora
[SECURITY] Fedora 40 Update: xorg-x11-server-Xwayland-23.2.6-1.fc40
2024-04-19 21:43:34
[SECURITY] Fedora 39 Update: xorg-x11-server-Xwayland-23.2.6-1.fc39
2024-04-24 01:18:17
slackware
slackware
[slackware-security] xorg-server
2024-04-03 22:25:44
[slackware-security] tigervnc
2024-04-05 20:14:40
redos
redos
ROS-20240507-07
2024-05-07 00:00:00