ALAS2-2022-1856 --- xorg-x11-serverID: oval:org.secpod.oval:def:1701011 | Date: (C)2022-10-17 (M)2024-02-08 |
Class: PATCH | Family: unix |
A flaw was found in the Xorg-x11-server. An out-of-bounds access issue can occur in the ProcXkbSetGeometry function due to improper validation of the request length. A flaw was found in the Xorg-x11-server. The specific flaw exists within the handling of ProcXkbSetDeviceInfo requests. The issue results from the lack of proper validation of user-supplied data, which can result in a memory access past the end of an allocated buffer. This flaw allows an attacker to escalate privileges and execute arbitrary code in the context of root