[Bug 270540] x11-servers/xorg-server: CVE-2023-1393

Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Thu, 30 Mar 2023 10:46:50 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=270540

            Bug ID: 270540
           Summary: x11-servers/xorg-server: CVE-2023-1393
           Product: Ports & Packages
           Version: Latest
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Many People
          Priority: ---
         Component: Individual Port(s)
          Assignee: x11@FreeBSD.org
          Reporter: Black_N@ukr.net
          Assignee: x11@FreeBSD.org
             Flags: maintainer-feedback?(x11@FreeBSD.org)

xorg-server-21.1.7 have:
ZDI-CAN-19866/CVE-2023-1393: X.Org Server Overlay Window Use-After-Free
Local Privilege Escalation Vulnerability

https://lists.x.org/archives/xorg/2023-March/061312.html

https://cgit.freedesktop.org/xorg/xserver/commit/?id=26ef545b3502f61ca722a7a3373507e88ef64110

https://gitlab.freedesktop.org/xorg/xserver/-/commit/26ef545b3

fixed in version xorg-server 21.1.8

-- 
You are receiving this mail because:
You are the assignee for the bug.