vulnerability
Amazon Linux AMI: CVE-2024-21886: Security patch for xorg-x11-server (ALAS-2024-1932)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:L/Au:S/C:C/I:C/A:C) | Feb 28, 2024 | Apr 29, 2024 | May 21, 2025 |
Severity
7
CVSS
(AV:L/AC:L/Au:S/C:C/I:C/A:C)
Published
Feb 28, 2024
Added
Apr 29, 2024
Modified
May 21, 2025
Description
A heap buffer overflow flaw was found in the DisableDevice function in the X.Org server. This issue may lead to an application crash or, in some circumstances, remote code execution in SSH X11 forwarding environments.
Solution
amazon-linux-upgrade-xorg-x11-server
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.