oss-sec mailing list archives

Re: X.Org Security Advisory: multiple security issues in X server extensions

From: Marc Deslauriers <marc.deslauriers () canonical com>
Date: Wed, 14 Dec 2022 07:21:13 -0500

On 2022-12-13 20:23, Peter Hutterer wrote:

* CVE-2022-46283/ZDI-CAN-19530: X.Org Server XkbGetKbdByName use-after-free
The XkbCopyNames function left a dangling pointer to freed memory, resulting inout-of-bounds memory access on subsequent XkbGetKbdByName requests.


I think there's a typo there, the CVE should be CVE-2022-4283.

Marc.

Current thread:

X.Org Security Advisory: multiple security issues in X server extensions Peter Hutterer (Dec 14)
- Re: X.Org Security Advisory: multiple security issues in X server extensions Marc Deslauriers (Dec 14)