CVE-2022-2319

Sažetak

A flaw was found in the Xorg-x11-server. An out-of-bounds access issue can occur in the ProcXkbSetGeometry function due to improper validation of the request length.

Reference

https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/938
https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/939
https://www.zerodayinitiative.com/advisories/ZDI-22-964/
https://lists.freedesktop.org/archives/xorg-announce/2022-July/003192.html
https://security.gentoo.org/glsa/202210-30
https://security.netapp.com/advisory/ntap-20221104-0003/

CVSS

Base:	7.8
Impact:	5.9
Exploitability:	1.8

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	-

Impact

Povjerljivost	Cjelovitost	Dostupnost
HIGH	HIGH	HIGH

CVSS vektor

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Zadnje važnije ažuriranje

12-02-2023 - 22:15

Objavljeno

01-09-2022 - 21:15