CVE-2020-14360 - log back

CVE-2020-14360 edited at 01 Dec 2020 15:32:26
Description
- A security issue was discovered in xorg-server before 1.20.10. Insufficient checks on the lengths of the XkbSetMap request can lead to out of bounds memory accesses in the X server. This issue can lead to privileges elevations for authorized clients on systems where the X server is running privileged.
+ A security issue was discovered in xorg-server before 1.20.10. Insufficient checks on the lengths of the XkbSetMap request can lead to out of bounds memory accesses in the X server. This issue can lead to privilege escalation for authorized clients on systems where the X server is running privileged.
CVE-2020-14360 edited at 01 Dec 2020 15:29:09
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Local
Type
- Unknown
+ Arbitrary code execution
Description
+ A security issue was discovered in xorg-server before 1.20.10. Insufficient checks on the lengths of the XkbSetMap request can lead to out of bounds memory accesses in the X server. This issue can lead to privileges elevations for authorized clients on systems where the X server is running privileged.
References
+ https://www.openwall.com/lists/oss-security/2020/12/01/3
+ https://gitlab.freedesktop.org/xorg/xserver/-/commit/446ff2d3177087b8173fa779fa5b77a2a128988b
Notes
CVE-2020-14360 created at 01 Dec 2020 15:26:02