github - ghsa-2x93-8973-5mgq

ghsa-2x93-8973-5mgq

Vulnerability from github

Published

2024-02-28 15:30

Modified

2024-05-22 18:30

Severity

7.8 (High) - CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

A flaw was found in X.Org server. In the XISendDeviceHierarchyEvent function, it is possible to exceed the allocated array length when certain new device IDs are added to the xXIHierarchyInfo struct. This can trigger a heap buffer overflow condition, which may lead to an application crash or remote code execution in SSH X11 forwarding environments.

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2024-21885"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-120",
      "CWE-122"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2024-02-28T13:15:08Z",
    "severity": "HIGH"
  },
  "details": "A flaw was found in X.Org server. In the XISendDeviceHierarchyEvent function, it is possible to exceed the allocated array length when certain new device IDs are added to the xXIHierarchyInfo struct. This can trigger a heap buffer overflow condition, which may lead to an application crash or remote code execution in SSH X11 forwarding environments.",
  "id": "GHSA-2x93-8973-5mgq",
  "modified": "2024-05-22T18:30:39Z",
  "published": "2024-02-28T15:30:56Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-21885"
    },
    {
      "type": "WEB",
      "url": "https://security.netapp.com/advisory/ntap-20240503-0004"
    },
    {
      "type": "WEB",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256540"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/security/cve/CVE-2024-21885"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/errata/RHSA-2024:2996"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/errata/RHSA-2024:2995"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/errata/RHSA-2024:2170"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/errata/RHSA-2024:2169"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/errata/RHSA-2024:0629"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/errata/RHSA-2024:0626"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/errata/RHSA-2024:0621"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/errata/RHSA-2024:0617"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/errata/RHSA-2024:0614"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/errata/RHSA-2024:0607"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/errata/RHSA-2024:0597"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/errata/RHSA-2024:0558"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/errata/RHSA-2024:0557"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/errata/RHSA-2024:0320"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

cve-2024-21885

Vulnerability from cvelistv5

Published

2024-02-28 12:11

Modified

2024-09-16 15:31

Severity

7.8 (High) - cvssV3_1 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Summary

Xorg-x11-server: heap buffer overflow in xisenddevicehierarchyevent

References

URL	Tags
https://access.redhat.com/errata/RHSA-2024:0320	vendor-advisory, x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:0557	vendor-advisory, x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:0558	vendor-advisory, x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:0597	vendor-advisory, x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:0607	vendor-advisory, x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:0614	vendor-advisory, x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:0617	vendor-advisory, x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:0621	vendor-advisory, x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:0626	vendor-advisory, x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:0629	vendor-advisory, x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:2169	vendor-advisory, x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:2170	vendor-advisory, x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:2995	vendor-advisory, x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:2996	vendor-advisory, x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2024-21885	vdb-entry, x_refsource_REDHAT
https://bugzilla.redhat.com/show_bug.cgi?id=2256540	issue-tracking, x_refsource_REDHAT

Impacted products

Vendor	Product
Red Hat	Red Hat Enterprise Linux 7
Red Hat	Red Hat Enterprise Linux 7
Red Hat	Red Hat Enterprise Linux 8
Red Hat	Red Hat Enterprise Linux 8
Red Hat	Red Hat Enterprise Linux 8
Red Hat	Red Hat Enterprise Linux 8.2 Advanced Update Support
Red Hat	Red Hat Enterprise Linux 8.2 Telecommunications Update Service
Red Hat	Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions
Red Hat	Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support
Red Hat	Red Hat Enterprise Linux 8.4 Telecommunications Update Service
Red Hat	Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions
Red Hat	Red Hat Enterprise Linux 8.6 Extended Update Support
Red Hat	Red Hat Enterprise Linux 8.8 Extended Update Support
Red Hat	Red Hat Enterprise Linux 9
Red Hat	Red Hat Enterprise Linux 9
Red Hat	Red Hat Enterprise Linux 9
Red Hat	Red Hat Enterprise Linux 9.0 Extended Update Support
Red Hat	Red Hat Enterprise Linux 9.2 Extended Update Support
Red Hat	Red Hat Enterprise Linux 6
Red Hat	Red Hat Enterprise Linux 6

Show details on NVD website