CVE-2023-6816

CWE-787Out-of-bounds WriteCWE-119Buffer Overflow18 documents10 sources
Severity
9.8CRITICAL
EPSS
3.3%
top 12.85%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
7
X.org X ServerX.org XwaylandDebian Debian Linux+4 more
Timeline
PublishedJan 18
Latest updateOct 15

Description

A flaw was found in X.Org server. Both DeviceFocusEvent and the XIQueryPointer reply contain a bit for each logical button currently down. Buttons can be arbitrarily mapped to any value up to 255, but the X.Org Server was only allocating space for the device's particular number of buttons, leading to a heap overflow if a bigger value was used.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages9 packages

NVDx.org/x_server< 21.1.11
Debianxorg-server< 2:1.20.11-1+deb11u11+3
Ubuntuxorg-server< 2:1.20.13-1ubuntu1~20.04.14+5
NVDx.org/xwayland< 23.2.4

Also affects: Debian Linux 10.0, Fedora 39

🔴Vulnerability Details

8
OSV
xorg-server vulnerabilities2024-03-13
OSV
xorg-server, xwayland regression2024-02-01
OSV
xorg-server, xwayland regression2024-01-30
OSV
xorg-server vulnerabilities2024-01-22
GHSA
GHSA-pcjv-393q-rqf2: A flaw was found in X2024-01-18

📋Vendor Advisories

9
Oracle
Oracle Oracle Communications Risk Matrix: Platform (Python) — CVE-2023-68162024-10-15
Ubuntu
X.Org X Server vulnerabilities2024-03-13
Ubuntu
X.Org X Server vulnerabilities2024-01-22
Red Hat
xorg-x11-server: Heap buffer overflow in DeviceFocusEvent and ProcXIQueryPointer2024-01-16
BSD
OpenBSD 7.3 Errata 025: SECURITY FIX2024-01-16
CVE-2023-6816 (CRITICAL CVSS 9.8) | A flaw was found in X.Org server | cvebase.io