CVE-2024-0409

CWE-787 — Out-of-bounds Write12 documents10 sources

Severity

7.8HIGH

EPSS

0.0%

top 95.19%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Tigervnc Tigervnc X.org X Server X.org Xwayland +9 more

Timeline

PublishedJan 18

Latest updateMay 13

Description

A flaw was found in the X.Org server. The cursor code in both Xephyr and Xwayland uses the wrong type of private at creation. It uses the cursor bits type with the cursor as private, and when initiating the cursor, that overwrites the XSELINUX context.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages8 packages

▶NVDx.org/x_server< 21.1.11

▶NVDx.org/xwayland< 23.2.4

▶Debianxwayland< 2:23.2.4-1+1

▶Debianxorg-server< 2:1.20.11-1+deb11u11+3

▶NVDredhat/enterprise_linux_server7.0

Also affects: Fedora 39, Enterprise Linux 6.0, 7.0, 8.0, 9.0

🔴Vulnerability Details

OSV

CVE-2024-0409: A flaw was found in the X↗2024-01-18

▶

CVEList

Xorg-x11-server: selinux context corruption↗2024-01-18

▶

GHSA

GHSA-w668-xcxf-v3gg: A flaw was found in the X↗2024-01-18

▶

📋Vendor Advisories

Chrome

Long Term Support Channel Update for ChromeOS: CVE-2024-0409↗2024-05-13

▶

Ubuntu

X.Org X Server vulnerabilities↗2024-01-22

▶

Red Hat

xorg-x11-server: SELinux context corruption↗2024-01-16

▶

BSD

OpenBSD 7.3 Errata 025: SECURITY FIX↗2024-01-16

▶

Ubuntu

X.Org X Server vulnerabilities↗2024-01-16

▶