CVE-2026-55999 - CERT CVE
ID CVE-2026-55999
Sažetak Local attackers with a X connection able to provide PCX fonts to the X server xorg-server before 21.2.24 and xwayland before 24.1.13 could cause a heap buffer overflow via SetFont due to missing glyph boundary checks.
Reference
CVSS
Base: 8.5
Impact: 6.0
Exploitability:1.8
Pristup
VektorSloženostAutentikacija
NETWORK HIGH LOW
Impact
PovjerljivostCjelovitostDostupnost
HIGH HIGH HIGH
CVSS vektor CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
Zadnje važnije ažuriranje 08-07-2026 - 13:16
Objavljeno 08-07-2026 - 09:16