PT-2025-7895 · Xwayland+12 · Xwayland+12

Published

2025-02-25

·

Updated

2026-06-08

·

CVE-2025-26597

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions X.Org and Xwayland (affected versions not specified)
Description A buffer overflow flaw was found. The issue arises when the function XkbChangeTypesOfKey() is called with a 0 group, which resizes the key symbols table to 0 but leaves the key actions unchanged. If the same function is later called with a non-zero value of groups, it causes a buffer overflow because the key actions are of the wrong size.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Buffer Overflow

Heap Based Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-122

Related Identifiers

ALSA-2025:2500
ALSA-2025:2502
ALSA-2025:7163
ALSA-2025:7165
ALT-PU-2025-3550
ALT-PU-2025-3552
AZL-57283
AZL-57383
AZL-57479
BDU:2025-06974
CESA-2025_2502
CVE-2025-26597
DLA-4072-1
DSA-5872-1
INFSA-2025_2500
INFSA-2025_2502
INFSA-2025_7163
INFSA-2025_7165
MGASA-2025-0086
OESA-2025-1429
OESA-2026-1587
OESA-2026-1588
OESA-2026-1589
OESA-2026-1590
OESA-2026-1591
OPENSUSE-SU-2025:14837-1
OPENSUSE-SU-2025:14841-1
OPENSUSE-SU-2025:14842-1
OPENSUSE-SU-2025_0729-1
OPENSUSE-SU-2025_0730-1
OPENSUSE-SU-2025_0731-1
OPENSUSE-SU-2025_0732-1
OPENSUSE-SU-2025_0739-1
RHSA-2025:2500
RHSA-2025:2502
RHSA-2025:2861
RHSA-2025:2862
RHSA-2025:2865
RHSA-2025:2866
RHSA-2025:2873
RHSA-2025:2874
RHSA-2025:2875
RHSA-2025:2879
RHSA-2025:2880
RHSA-2025:3976
RHSA-2025:7163
RHSA-2025:7165
RHSA-2025:7458
RHSA-2025_2500
RHSA-2025_2502
RHSA-2025_7163
RHSA-2025_7165
ROSA-SA-2025-2870
ROSA-SA-2025-2871
SUSE-SU-2025:0729-1
SUSE-SU-2025:0730-1
SUSE-SU-2025:0731-1
SUSE-SU-2025:0732-1
SUSE-SU-2025:0733-1
SUSE-SU-2025:0734-1
SUSE-SU-2025:0739-1
SUSE-SU-2025:0740-1
SUSE-SU-2025:0757-1
SUSE-SU-2025:20161-1
SUSE-SU-2025:20299-1
SUSE-SU-2025_0739-1
SUSE-SU-2025_0740-1
SUSE-SU-2025_0757-1
USN-7299-1
USN-7299-2
USN-7299-3
USN-7299-4
ZDI-25-140

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Debian
Linuxmint
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu
X.Org
Xwayland