Nixpkgs Security Tracker

Untriaged

Permalink CVE-2023-5574

7.0 HIGH

CVSS version: 3.1
Attack vector (AV): LOCAL
Attack complexity (AC): HIGH
Privileges required (PR): LOW
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): HIGH
Integrity impact (I): HIGH
Availability impact (A): HIGH

created 6 months ago

Xorg-x11-server: use-after-free bug in damagedestroy

A use-after-free flaw was found in xorg-x11-server-Xvfb. This issue occurs in Xvfb with a very specific and legacy configuration (a multi-screen setup with multiple protocol screens, also known as Zaphod mode). If the pointer is warped from a screen 1 to a screen 0, a use-after-free issue may be triggered during shutdown or reset of the Xvfb server, allowing for possible escalation of privileges or denial of service.

References

RHBZ#2244735 issue-tracking x_refsource_REDHAT
https://lists.x.org/archives/xorg-announce/2023-October/003430.html
https://security.netapp.com/advisory/ntap-20231130-0004/
https://access.redhat.com/security/cve/CVE-2023-5574 x_refsource_REDHAT vdb-entry
https://access.redhat.com/security/cve/CVE-2023-5574 x_refsource_REDHAT vdb-entry
RHBZ#2244735 issue-tracking x_refsource_REDHAT
https://lists.x.org/archives/xorg-announce/2023-October/003430.html
https://security.netapp.com/advisory/ntap-20231130-0004/
RHSA-2024:2298 x_refsource_REDHAT vendor-advisory
https://access.redhat.com/security/cve/CVE-2023-5574 x_refsource_REDHAT vdb-entry
RHBZ#2244735 issue-tracking x_refsource_REDHAT
https://lists.x.org/archives/xorg-announce/2023-October/003430.html
https://security.netapp.com/advisory/ntap-20231130-0004/
RHSA-2024:2298 x_refsource_REDHAT vendor-advisory
https://access.redhat.com/security/cve/CVE-2023-5574 x_refsource_REDHAT vdb-entry
RHBZ#2244735 issue-tracking x_refsource_REDHAT
https://lists.x.org/archives/xorg-announce/2023-October/003430.html
https://security.netapp.com/advisory/ntap-20231130-0004/
RHSA-2024:2298 x_refsource_REDHAT vendor-advisory
https://access.redhat.com/security/cve/CVE-2023-5574 x_refsource_REDHAT vdb-entry
RHBZ#2244735 issue-tracking x_refsource_REDHAT
https://lists.x.org/archives/xorg-announce/2023-October/003430.html
https://security.netapp.com/advisory/ntap-20231130-0004/
RHBZ#2244735 issue-tracking x_refsource_REDHAT x_transferred
https://lists.x.org/archives/xorg-announce/2023-October/003430.html x_transferred
https://security.netapp.com/advisory/ntap-20231130-0004/ x_transferred
RHSA-2024:2298 x_refsource_REDHAT vendor-advisory x_transferred
https://access.redhat.com/security/cve/CVE-2023-5574 x_refsource_REDHAT vdb-entry x_transferred
RHSA-2024:2298 x_refsource_REDHAT vendor-advisory
https://access.redhat.com/security/cve/CVE-2023-5574 x_refsource_REDHAT vdb-entry
RHBZ#2244735 issue-tracking x_refsource_REDHAT
https://lists.x.org/archives/xorg-announce/2023-October/003430.html
https://security.netapp.com/advisory/ntap-20231130-0004/
RHSA-2024:2298 x_refsource_REDHAT vendor-advisory x_transferred
https://access.redhat.com/security/cve/CVE-2023-5574 x_refsource_REDHAT vdb-entry x_transferred
RHBZ#2244735 issue-tracking x_refsource_REDHAT x_transferred
https://lists.x.org/archives/xorg-announce/2023-October/003430.html x_transferred
https://security.netapp.com/advisory/ntap-20231130-0004/ x_transferred
RHSA-2024:2298 x_refsource_REDHAT vendor-advisory
https://access.redhat.com/security/cve/CVE-2023-5574 x_refsource_REDHAT vdb-entry
RHBZ#2244735 issue-tracking x_refsource_REDHAT
https://lists.x.org/archives/xorg-announce/2023-October/003430.html
https://security.netapp.com/advisory/ntap-20231130-0004/
RHSA-2024:2298 x_refsource_REDHAT vendor-advisory x_transferred
https://access.redhat.com/security/cve/CVE-2023-5574 x_refsource_REDHAT vdb-entry x_transferred
RHBZ#2244735 issue-tracking x_refsource_REDHAT x_transferred
https://lists.x.org/archives/xorg-announce/2023-October/003430.html x_transferred
https://security.netapp.com/advisory/ntap-20231130-0004/ x_transferred
RHSA-2024:2298 x_refsource_REDHAT vendor-advisory
https://access.redhat.com/security/cve/CVE-2023-5574 x_refsource_REDHAT vdb-entry
RHBZ#2244735 issue-tracking x_refsource_REDHAT
https://lists.x.org/archives/xorg-announce/2023-October/003430.html
RHSA-2024:2298 x_refsource_REDHAT vendor-advisory x_transferred
https://access.redhat.com/security/cve/CVE-2023-5574 x_refsource_REDHAT vdb-entry x_transferred
RHBZ#2244735 issue-tracking x_refsource_REDHAT x_transferred
https://lists.x.org/archives/xorg-announce/2023-October/003430.html x_transferred
https://security.netapp.com/advisory/ntap-20231130-0004/ x_transferred
RHBZ#2244735 issue-tracking x_refsource_REDHAT
https://lists.x.org/archives/xorg-announce/2023-October/003430.html
RHSA-2024:2298 x_refsource_REDHAT vendor-advisory
https://access.redhat.com/security/cve/CVE-2023-5574 x_refsource_REDHAT vdb-entry
RHSA-2024:2298 x_refsource_REDHAT vendor-advisory x_transferred
https://access.redhat.com/security/cve/CVE-2023-5574 x_refsource_REDHAT vdb-entry x_transferred
RHBZ#2244735 issue-tracking x_refsource_REDHAT x_transferred
https://lists.x.org/archives/xorg-announce/2023-October/003430.html x_transferred
https://security.netapp.com/advisory/ntap-20231130-0004/ x_transferred
RHSA-2024:2298 x_refsource_REDHAT vendor-advisory
https://access.redhat.com/security/cve/CVE-2023-5574 x_refsource_REDHAT vdb-entry
RHBZ#2244735 issue-tracking x_refsource_REDHAT
https://lists.x.org/archives/xorg-announce/2023-October/003430.html
https://access.redhat.com/security/cve/CVE-2023-5574 x_refsource_REDHAT vdb-entry x_transferred
RHBZ#2244735 issue-tracking x_refsource_REDHAT x_transferred
https://lists.x.org/archives/xorg-announce/2023-October/003430.html x_transferred
https://security.netapp.com/advisory/ntap-20231130-0004/ x_transferred
RHSA-2024:2298 x_refsource_REDHAT vendor-advisory x_transferred
RHSA-2024:2298 x_refsource_REDHAT vendor-advisory
https://access.redhat.com/security/cve/CVE-2023-5574 x_refsource_REDHAT vdb-entry
RHBZ#2244735 issue-tracking x_refsource_REDHAT
https://lists.x.org/archives/xorg-announce/2023-October/003430.html
RHSA-2024:2298 x_refsource_REDHAT vendor-advisory x_transferred
https://access.redhat.com/security/cve/CVE-2023-5574 x_refsource_REDHAT vdb-entry x_transferred
RHBZ#2244735 issue-tracking x_refsource_REDHAT x_transferred
https://lists.x.org/archives/xorg-announce/2023-October/003430.html x_transferred
https://security.netapp.com/advisory/ntap-20231130-0004/ x_transferred
RHSA-2024:2298 x_refsource_REDHAT vendor-advisory
https://access.redhat.com/security/cve/CVE-2023-5574 x_refsource_REDHAT vdb-entry
RHBZ#2244735 issue-tracking x_refsource_REDHAT
https://lists.x.org/archives/xorg-announce/2023-October/003430.html
RHSA-2024:2298 x_refsource_REDHAT vendor-advisory x_transferred
https://access.redhat.com/security/cve/CVE-2023-5574 x_refsource_REDHAT vdb-entry x_transferred
RHBZ#2244735 issue-tracking x_refsource_REDHAT x_transferred
https://lists.x.org/archives/xorg-announce/2023-October/003430.html x_transferred
https://security.netapp.com/advisory/ntap-20231130-0004/ x_transferred

Affected products

tigervnc

xorg-server

==21.1.9

xorg-x11-server

xorg-x11-server-Xwayland

Matching in nixpkgs

pkgs.tigervnc

Fork of tightVNC, made in cooperation with VirtualGL

nixos-unstable -
- nixpkgs-unstable 1.15.0

Suggestion detail

References

Affected products

Matching in nixpkgs

pkgs.tigervnc