Lucene search

K
redosRedosROS-20240507-07
HistoryMay 07, 2024 - 12:00 a.m.

ROS-20240507-07

2024-05-0700:00:00
redos.red-soft.ru
7
xorg-server
memory buffer boundaries
arbitrary code execution
data compromise
denial of service
unix

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.4 High

AI Score

Confidence

Low

0.0005 Low

EPSS

Percentile

16.9%

A vulnerability in the ProcRenderAddGlyphs() function of the X Window System Xorg-server is related to the use of
memory after it has been freed. Exploitation of the vulnerability could allow an attacker to execute arbitrary
code using a specially crafted file

Vulnerability of ProcXIPassiveGrabDevice() function of X Window System Xorg-server is related to operation exceeding buffer boundaries in memory.
operation beyond the buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker to gain access
to confidential data, compromise its integrity, and cause a denial of service.

A vulnerability in the ProcAppleDRICreatePixmap() function of X Window System Xorg-server is related to an operation overrunning the buffer in memory.
operation beyond the buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker to gain access
to confidential data, compromise its integrity, and cause a denial of service.

Vulnerability of ProcXIGetSelectedEvents() function of X Window System Xorg-server is related to an operation exceeding the buffer boundaries in memory.
operation beyond the buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker to gain access
to confidential data, compromise its integrity, and cause a denial of service.

OSVersionArchitecturePackageVersionFilename
redos7.3x86_64xorg-x11-server-common<= 1.20.14-11UNKNOWN

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.4 High

AI Score

Confidence

Low

0.0005 Low

EPSS

Percentile

16.9%