user/xorg-server: multiple vulnerabilities
| Bugzilla ID | 390 |
| Alias(es) | CVE-2020-14360, CVE-2020-25712 |
| Reporter | Max Rees (sroracle) |
| Assignee | Max Rees (sroracle) |
| Reported | 2020-12-01 12:19:16 -0600 |
| Modified | 2020-12-01 12:19:16 -0600 |
| Status | CONFIRMED |
| Version | 1.0-RC1 |
| Hardware | Adélie Linux / All |
| Importance | --- / major |
| Package(s) | user/xorg-server |
| URL | https://www.openwall.com/lists/oss-security/2020/12/01/3 |
Description
These issues can lead to privileges elevations for authorized clients
on systems where the X server is running privileged.
- CVE-2020-14360 / ZDI CAN 11572 XkbSetMap Out-Of-Bounds Access
Insufficient checks on the lengths of the XkbSetMap request can lead to
out of bounds memory accesses in the X server.
Fixed in >= 1.20.10 https://gitlab.freedesktop.org/xorg/xserver/-/commit/06d1a032ee491547f7037c3ff042065dc2aeaa99
- CVE-2020-25712 / ZDI-CAN-11839 XkbSetDeviceInfo Heap-based Buffer Overflow
Insufficient checks on input of the XkbSetDeviceInfo request can lead
to a buffer overflow on the head in the X server.
Fixed in >= 1.20.10 https://gitlab.freedesktop.org/xorg/xserver/-/commit/7ccb3b0eabb4658daf0ecb2c78a53609ae2c263b