vulnerability
Red Hat: CVE-2020-14347: Leak of uninitialized heap memory from the X server to clients in AllocatePixmap of dix/pixmap.c (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 2 | (AV:L/AC:L/Au:N/C:P/I:N/A:N) | 2020-08-05 | 2020-12-15 | 2024-11-26 |
Severity
2
CVSS
(AV:L/AC:L/Au:N/C:P/I:N/A:N)
Published
2020-08-05
Added
2020-12-15
Modified
2024-11-26
Description
A flaw was found in the way xserver memory was not properly initialized. This could leak parts of server memory to the X client. In cases where Xorg server runs with elevated privileges, this could result in possible ASLR bypass. Xorg-server before version 1.20.9 is vulnerable.
Solution(s)
redhat-upgrade-drm-utils-debuginforedhat-upgrade-egl-waylandredhat-upgrade-egl-wayland-debuginforedhat-upgrade-egl-wayland-debugsourceredhat-upgrade-libdrmredhat-upgrade-libdrm-debuginforedhat-upgrade-libdrm-debugsourceredhat-upgrade-libdrm-develredhat-upgrade-libglvndredhat-upgrade-libglvnd-core-develredhat-upgrade-libglvnd-debuginforedhat-upgrade-libglvnd-debugsourceredhat-upgrade-libglvnd-develredhat-upgrade-libglvnd-eglredhat-upgrade-libglvnd-egl-debuginforedhat-upgrade-libglvnd-glesredhat-upgrade-libglvnd-gles-debuginforedhat-upgrade-libglvnd-glxredhat-upgrade-libglvnd-glx-debuginforedhat-upgrade-libglvnd-openglredhat-upgrade-libglvnd-opengl-debuginforedhat-upgrade-libinputredhat-upgrade-libinput-debuginforedhat-upgrade-libinput-debugsourceredhat-upgrade-libinput-develredhat-upgrade-libinput-test-debuginforedhat-upgrade-libinput-utilsredhat-upgrade-libinput-utils-debuginforedhat-upgrade-libwacomredhat-upgrade-libwacom-dataredhat-upgrade-libwacom-debuginforedhat-upgrade-libwacom-debugsourceredhat-upgrade-libwacom-develredhat-upgrade-libx11redhat-upgrade-libx11-commonredhat-upgrade-libx11-debuginforedhat-upgrade-libx11-debugsourceredhat-upgrade-libx11-develredhat-upgrade-libx11-xcbredhat-upgrade-libx11-xcb-debuginforedhat-upgrade-mesa-debuginforedhat-upgrade-mesa-debugsourceredhat-upgrade-mesa-dri-driversredhat-upgrade-mesa-dri-drivers-debuginforedhat-upgrade-mesa-filesystemredhat-upgrade-mesa-libeglredhat-upgrade-mesa-libegl-debuginforedhat-upgrade-mesa-libegl-develredhat-upgrade-mesa-libgbmredhat-upgrade-mesa-libgbm-debuginforedhat-upgrade-mesa-libgbm-develredhat-upgrade-mesa-libglredhat-upgrade-mesa-libgl-debuginforedhat-upgrade-mesa-libgl-develredhat-upgrade-mesa-libglapiredhat-upgrade-mesa-libglapi-debuginforedhat-upgrade-mesa-libosmesaredhat-upgrade-mesa-libosmesa-debuginforedhat-upgrade-mesa-libosmesa-develredhat-upgrade-mesa-libxatrackerredhat-upgrade-mesa-libxatracker-debuginforedhat-upgrade-mesa-vdpau-driversredhat-upgrade-mesa-vdpau-drivers-debuginforedhat-upgrade-mesa-vulkan-develredhat-upgrade-mesa-vulkan-driversredhat-upgrade-mesa-vulkan-drivers-debuginforedhat-upgrade-xorg-x11-driversredhat-upgrade-xorg-x11-server-commonredhat-upgrade-xorg-x11-server-debuginforedhat-upgrade-xorg-x11-server-debugsourceredhat-upgrade-xorg-x11-server-develredhat-upgrade-xorg-x11-server-sourceredhat-upgrade-xorg-x11-server-xdmxredhat-upgrade-xorg-x11-server-xdmx-debuginforedhat-upgrade-xorg-x11-server-xephyrredhat-upgrade-xorg-x11-server-xephyr-debuginforedhat-upgrade-xorg-x11-server-xnestredhat-upgrade-xorg-x11-server-xnest-debuginforedhat-upgrade-xorg-x11-server-xorgredhat-upgrade-xorg-x11-server-xorg-debuginforedhat-upgrade-xorg-x11-server-xvfbredhat-upgrade-xorg-x11-server-xvfb-debuginforedhat-upgrade-xorg-x11-server-xwaylandredhat-upgrade-xorg-x11-server-xwayland-debuginfo
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.