Untriaged
Permalink
CVE-2023-1393
7.8 HIGH
- CVSS version: 3.1
- Attack vector (AV): LOCAL
- Attack complexity (AC): LOW
- Privileges required (PR): LOW
- User interaction (UI): NONE
- Scope (S): UNCHANGED
- Confidentiality impact (C): HIGH
- Integrity impact (I): HIGH
- Availability impact (A): HIGH
A flaw was found in X.Org Server Overlay Window. A …
A flaw was found in X.Org Server Overlay Window. A Use-After-Free may lead to local privilege escalation. If a client explicitly destroys the compositor overlay window (aka COW), the Xserver would leave a dangling pointer to that window in the CompScreen structure, which will trigger a use-after-free later.
References
- FEDORA-2023-f754e7abfd vendor-advisory
- FEDORA-2023-66d5af0278 vendor-advisory
- FEDORA-2023-239bae4b57 vendor-advisory
- FEDORA-2023-fe18ae3e85 vendor-advisory
- FEDORA-2023-6f3f9ee721 vendor-advisory
- GLSA-202305-30 vendor-advisory
- https://gitlab.freedesktop.org/xorg/xserver/-/commit/26ef545b3502f61ca722a7a337…
- https://www.openwall.com/lists/oss-security/2023/03/29/1
- FEDORA-2023-eb3c27ff25 vendor-advisory
- FEDORA-2023-b7835960ac vendor-advisory
- FEDORA-2023-b87fd3a628 vendor-advisory
- https://www.openwall.com/lists/oss-security/2023/03/29/1 x_transferred
- FEDORA-2023-eb3c27ff25 vendor-advisory x_transferred
- FEDORA-2023-b7835960ac vendor-advisory x_transferred
- FEDORA-2023-b87fd3a628 vendor-advisory x_transferred
- FEDORA-2023-f754e7abfd vendor-advisory x_transferred
- FEDORA-2023-66d5af0278 vendor-advisory x_transferred
- FEDORA-2023-239bae4b57 vendor-advisory x_transferred
- FEDORA-2023-fe18ae3e85 vendor-advisory x_transferred
- FEDORA-2023-6f3f9ee721 vendor-advisory x_transferred
- GLSA-202305-30 vendor-advisory x_transferred
- https://gitlab.freedesktop.org/xorg/xserver/-/commit/26ef545b3502f61ca722a7a337… x_transferred
- https://www.openwall.com/lists/oss-security/2023/03/29/1
- FEDORA-2023-eb3c27ff25 vendor-advisory
- FEDORA-2023-b7835960ac vendor-advisory
- FEDORA-2023-b87fd3a628 vendor-advisory
- FEDORA-2023-f754e7abfd vendor-advisory
- FEDORA-2023-66d5af0278 vendor-advisory
- FEDORA-2023-239bae4b57 vendor-advisory
- FEDORA-2023-fe18ae3e85 vendor-advisory
- FEDORA-2023-6f3f9ee721 vendor-advisory
- GLSA-202305-30 vendor-advisory
- https://gitlab.freedesktop.org/xorg/xserver/-/commit/26ef545b3502f61ca722a7a337…
- https://www.openwall.com/lists/oss-security/2023/03/29/1 x_transferred
- FEDORA-2023-eb3c27ff25 vendor-advisory x_transferred
- FEDORA-2023-b7835960ac vendor-advisory x_transferred
- FEDORA-2023-b87fd3a628 vendor-advisory x_transferred
- FEDORA-2023-f754e7abfd vendor-advisory x_transferred
- FEDORA-2023-66d5af0278 vendor-advisory x_transferred
- FEDORA-2023-239bae4b57 vendor-advisory x_transferred
- FEDORA-2023-fe18ae3e85 vendor-advisory x_transferred
- FEDORA-2023-6f3f9ee721 vendor-advisory x_transferred
- GLSA-202305-30 vendor-advisory x_transferred
- https://gitlab.freedesktop.org/xorg/xserver/-/commit/26ef545b3502f61ca722a7a337… x_transferred
- FEDORA-2023-66d5af0278 vendor-advisory
- FEDORA-2023-239bae4b57 vendor-advisory
- FEDORA-2023-fe18ae3e85 vendor-advisory
- FEDORA-2023-6f3f9ee721 vendor-advisory
- GLSA-202305-30 vendor-advisory
- https://gitlab.freedesktop.org/xorg/xserver/-/commit/26ef545b3502f61ca722a7a337…
- https://www.openwall.com/lists/oss-security/2023/03/29/1
- FEDORA-2023-eb3c27ff25 vendor-advisory
- FEDORA-2023-b7835960ac vendor-advisory
- FEDORA-2023-b87fd3a628 vendor-advisory
- FEDORA-2023-f754e7abfd vendor-advisory
- https://www.openwall.com/lists/oss-security/2023/03/29/1 x_transferred
- FEDORA-2023-eb3c27ff25 vendor-advisory x_transferred
- FEDORA-2023-b7835960ac vendor-advisory x_transferred
- FEDORA-2023-b87fd3a628 vendor-advisory x_transferred
- FEDORA-2023-f754e7abfd vendor-advisory x_transferred
- FEDORA-2023-66d5af0278 vendor-advisory x_transferred
- FEDORA-2023-239bae4b57 vendor-advisory x_transferred
- FEDORA-2023-fe18ae3e85 vendor-advisory x_transferred
- FEDORA-2023-6f3f9ee721 vendor-advisory x_transferred
- GLSA-202305-30 vendor-advisory x_transferred
- https://gitlab.freedesktop.org/xorg/xserver/-/commit/26ef545b3502f61ca722a7a337… x_transferred
Affected products
xorg-server
- ==xorg-server 21.1.8