CVE-2013-4394
published 2013-10-28CVE-2013-4394: The SetX11Keyboard function in systemd, when PolicyKit Local Authority (PKLA) is used to change the group permissions on the X Keyboard Extension (XKB) layouts…
medium5.9CVSS 3.1
AVLACHAuNCCICAP
The SetX11Keyboard function in systemd, when PolicyKit Local Authority (PKLA) is used to change the group permissions on the X Keyboard Extension (XKB) layouts description, allows local users in the group to modify the Xorg X11 Server configuration file and possibly gain privileges via vectors involving "special and control characters."
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | systemd | < systemd 204-5 (bookworm) | systemd 204-5 (bookworm) |
| systemd_project | systemd | < 194 | 194 |
| systemd_project | systemd | >= 0 < 204-5 | 204-5 |
| systemd_project | systemd | >= 0 < 204-5 | 204-5 |
| systemd_project | systemd | >= 0 < 204-5 | 204-5 |
| systemd_project | systemd | >= 0 < 204-5 | 204-5 |
CVSS provenance
nvd5.9MEDIUMAV:L/AC:H/Au:N/C:C/I:C/A:P
osv5.9MEDIUM