vulnerability
Alma Linux: CVE-2022-46343: Moderate: xorg-x11-server security and bug fix update (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 9 | (AV:N/AC:L/Au:S/C:C/I:C/A:C) | Dec 14, 2022 | May 15, 2023 | Mar 31, 2026 |
Severity
9
CVSS
(AV:N/AC:L/Au:S/C:C/I:C/A:C)
Published
Dec 14, 2022
Added
May 15, 2023
Modified
Mar 31, 2026
Description
A vulnerability was found in X.Org. This security flaw occurs because the handler for the ScreenSaverSetAttributes request may write to memory after it has been freed. This issue can lead to local privileges elevation on systems where the X server is running privileged and remote code execution for ssh X forwarding sessions.
Solutions
alma-upgrade-tigervncalma-upgrade-tigervnc-iconsalma-upgrade-tigervnc-licensealma-upgrade-tigervnc-selinuxalma-upgrade-tigervnc-serveralma-upgrade-tigervnc-server-minimalalma-upgrade-tigervnc-server-modulealma-upgrade-xorg-x11-server-commonalma-upgrade-xorg-x11-server-develalma-upgrade-xorg-x11-server-sourcealma-upgrade-xorg-x11-server-xdmxalma-upgrade-xorg-x11-server-xephyralma-upgrade-xorg-x11-server-xnestalma-upgrade-xorg-x11-server-xorgalma-upgrade-xorg-x11-server-xvfbalma-upgrade-xorg-x11-server-xwayland
References
- CVE-2022-46343
- https://attackerkb.com/topics/CVE-2022-46343
- CWE-416
- EUVD-EUVD-2022-49159
- https://errata.almalinux.org/8/ALSA-2023-2805.html
- https://errata.almalinux.org/8/ALSA-2023-2806.html
- https://errata.almalinux.org/8/ALSA-2023-2830.html
- https://errata.almalinux.org/9/ALSA-2023-2248.html
- https://errata.almalinux.org/9/ALSA-2023-2249.html
- https://errata.almalinux.org/9/ALSA-2023-2257.html
- https://euvd.enisa.europa.eu/vulnerability/EUVD-2022-49159
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.