Lucene search
RedhatVULNRICHMENT:CVE-2023-43785HistoryOct 10, 2023 - 12:26 p.m.
CVE-2023-43785 Libx11: out-of-bounds memory access in _xkbreadkeysyms()
2023-10-1012:26:02
CWE-787
redhat
github.com
libx11
vulnerability
memory access
boundary condition
_xkbreadkeysyms
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
6.3 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
A vulnerability was found in libX11 due to a boundary condition within the _XkbReadKeySyms() function. This flaw allows a local user to trigger an out-of-bounds read error and read the contents of memory on the system.
CNA Affected
[
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 8",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "libX11",
"defaultStatus": "affected",
"versions": [
{
"version": "0:1.6.8-8.el8",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:enterprise_linux:8::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 9",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "libX11",
"defaultStatus": "affected",
"versions": [
{
"version": "0:1.7.0-9.el9",
"lessThan": "*",
"versionType": "rpm",
"status": "unaffected"
}
],
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::appstream"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 6",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "libX11",
"defaultStatus": "unknown",
"cpes": [
"cpe:/o:redhat:enterprise_linux:6"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 7",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "libX11",
"defaultStatus": "unknown",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
]
}
]Related
redhatcve
redhatcve
CVE-2023-43785
2023-10-05 07:25:04
prion
prion
Out-of-bounds
2023-10-10 13:15:00
nessus
nessus
Fedora 39 : libX11 (2023-06bff5611a)
2023-11-07 00:00:00
Amazon Linux 2 : libX11 (ALAS-2023-2296)
2023-10-20 00:00:00
Amazon Linux AMI : libX11 (ALAS-2023-1859)
2023-10-25 00:00:00
cve
cve
CVE-2023-43785
2023-10-10 13:15:21
ubuntucve
ubuntucve
CVE-2023-43785
2023-10-03 00:00:00
debiancve
debiancve
CVE-2023-43785
2023-10-10 13:15:21
veracode
veracode
Out-of-bounds Read
2023-10-12 09:36:29
osv
osv
CVE-2023-43785
2023-10-10 13:15:21
libx11 vulnerabilities
2023-10-10 14:35:08
libx11 - security update
2023-10-05 00:00:00
cbl_mariner
cbl_mariner
CVE-2023-43785 affecting package libX11 for versions less than 1.8.7-1
2023-11-08 02:07:28
nvd
nvd
CVE-2023-43785
2023-10-10 13:15:21
alpinelinux
alpinelinux
CVE-2023-43785
2023-10-10 13:15:21
cvelist
cvelist
CVE-2023-43785 Libx11: out-of-bounds memory access in _xkbreadkeysyms()
2023-10-10 12:26:02
amazon
amazon
Medium: libX11
2023-10-12 15:09:00
Medium: libX11
2023-10-12 15:48:00
slackware
slackware
[slackware-security] libX11
2023-10-03 22:25:17
cloudfoundry
cloudfoundry
USN-6407-1: libx11 vulnerabilities | Cloud Foundry
2023-10-05 00:00:00
USN-6407-2: libx11 vulnerabilities | Cloud Foundry
2023-11-09 00:00:00
mageia
mageia
Updated libX11 packages fix security vulnerabilities
2023-10-14 01:56:51
openvas
openvas
Huawei EulerOS: Security Advisory for libX11 (EulerOS-SA-2024-1065)
2024-01-09 00:00:00
Huawei EulerOS: Security Advisory for libX11 (EulerOS-SA-2023-3342)
2023-12-12 00:00:00
Ubuntu: Security Advisory (USN-6407-1)
2023-10-04 00:00:00
ubuntu
ubuntu
libx11 vulnerabilities
2023-10-10 00:00:00
libx11 vulnerabilities
2023-10-03 00:00:00
redhat
redhat
(RHSA-2024:2973) Moderate: libX11 security update
2024-05-22 06:35:14
(RHSA-2024:2145) Moderate: libX11 security update
2024-04-30 06:14:52
almalinux
almalinux
Moderate: libX11 security update
2024-05-22 00:00:00
Moderate: libX11 security update
2024-04-30 00:00:00
debian
debian
[SECURITY] [DLA 3602-1] libx11 security update
2023-10-05 10:39:13
[SECURITY] [DSA 5517-1] libx11 security update
2023-10-05 18:18:00
redos
redos
ROS-20231018-04
2023-10-18 00:00:00
oraclelinux
oraclelinux
libX11 security update
2024-05-23 00:00:00
libX11 security update
2024-05-02 00:00:00
freebsd
freebsd
11/libX11 multiple vulnerabilities
2023-09-22 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2023-5.0-0112
2023-10-11 00:00:00
Important Photon OS Security Update - PHSA-2023-4.0-0486
2023-10-11 00:00:00
Important Photon OS Security Update - PHSA-2023-3.0-0668
2023-10-12 00:00:00
fedora
fedora
[SECURITY] Fedora 39 Update: libX11-1.8.7-1.fc39
2023-10-07 03:24:34
ibm
ibm
Security Bulletin: App Connect Enterprise Certified Container UBI updates
2024-02-02 14:30:02
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
6.3 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Related for VULNRICHMENT:CVE-2023-43785