PT-2024-2937 · Unknown+11 · Xorg-Server+11

Tej Rathi

Published

2024-03-04

Updated

2025-03-17

CVE-2024-31081

CVSS v3.1

7.3

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H

Name of the Vulnerable Software and Affected Versions Xorg-server (affected versions not specified)

Description The issue is related to a heap-based buffer over-read vulnerability in the ProcXIPassiveGrabDevice() function of the Xorg-server. This vulnerability occurs when byte-swapped length values are used in replies, potentially leading to memory leakage and segmentation faults, especially when triggered by a client with a different endianness. An attacker could exploit this to cause the X server to read heap memory values and transmit them back to the client until encountering an unmapped page, resulting in a crash. Although the attacker cannot control the specific memory copied into the replies, the small length values typically stored in a 32-bit integer can result in significant attempted out-of-bounds reads.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Buffer Over-read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-126

Related Identifiers

ALSA-2024:2037

ALSA-2024:2616

ALSA-2024:3258

ALSA-2024:3261

ALSA-2024:3343

ALSA-2024:9093

ALSA-2024:9122

ALT-PU-2024-5110

ALT-PU-2024-5112

ALT-PU-2024-7021

ALT-PU-2024-7023

AZL-39172

AZL-44637

BDU:2024-03104

BDU:2024-03109

CESA-2024_2037

CESA-2024_3258

CESA-2024_3261

CESA-2024_3343

CVE-2024-31081

DLA-3787-1

DSA-5657-1

INFSA-2024_2616

INFSA-2024_3258

INFSA-2024_3261

INFSA-2024_3343

INFSA-2024_9093

INFSA-2024_9122

MGASA-2024-0121

OESA-2024-1416

OESA-2024-1548

OESA-2024-1556

OESA-2024-1557

OPENSUSE-SU-2024:13828-1

OPENSUSE-SU-2024:13829-1

OPENSUSE-SU-2024_1262-1

OPENSUSE-SU-2024_2776-1

RHSA-2024:1785

RHSA-2024:2036

RHSA-2024:2037

RHSA-2024:2038

RHSA-2024:2039

RHSA-2024:2040

RHSA-2024:2041

RHSA-2024:2042

RHSA-2024:2080

RHSA-2024:2616

RHSA-2024:3258

RHSA-2024:3261

RHSA-2024:3343

RHSA-2024:9093

RHSA-2024:9122

RHSA-2024_1785

RHSA-2024_2037

RHSA-2024_2080

RHSA-2024_2616

RHSA-2024_3258

RHSA-2024_3261

RHSA-2024_3343

RHSA-2024_9093

RHSA-2024_9122

RHSA-2025:12751

RLSA-2024:2037

RLSA-2024:2616

RLSA-2024:3258

RLSA-2024:3261

RLSA-2024:3343

RLSA-2024:9093

RLSA-2024:9122

SUSE-SU-2024:1199-1

SUSE-SU-2024:1260-1

SUSE-SU-2024:1261-1

SUSE-SU-2024:1262-1

SUSE-SU-2024:1264-1

SUSE-SU-2024:1265-1

SUSE-SU-2024:2776-1

USN-6721-1

USN-6721-2

Affected Products

Alt Linux

Almalinux

Astra Linux

Centos

Debian

Linuxmint

Red Hat

Red Os

Rocky Linux

Suse

Ubuntu

Xorg-Server

PT-2024-2937 · Unknown+11 · Xorg-Server+11

CVE-2024-31081

Weakness Enumeration

Related Identifiers

Affected Products

References · 152