PT-2023-2371 · X.Org+10 · X.Org Server+11
Jan-Niklas Sohn
·
Published
2022-01-25
·
Updated
2024-06-15
·
CVE-2023-1393
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
X.Org Server versions prior to 21.1.8
xwayland versions prior to 23.1.1
Description
A flaw was found in X.Org Server Overlay Window, where a Use-After-Free may lead to local privilege escalation. If a client explicitly destroys the compositor overlay window, the Xserver would leave a dangling pointer to that window in the CompScreen structure, which will trigger a use-after-free later. This issue may be exploited to elevate privileges in systems where the X server runs with root privileges.
Recommendations
For X.Org Server versions prior to 21.1.8, update to version 21.1.8 or later to resolve the issue.
For xwayland versions prior to 23.1.1, update to version 23.1.1 or later to resolve the issue.
As a temporary workaround, consider restricting access to the compositor overlay window to minimize the risk of exploitation.
Fix
LPE
Use After Free
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Almalinux
Astra Linux
Centos
Linuxmint
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu
X.Org Server
Xwayland