CVE-2022-46340
First published: Thu Dec 08 2022(Updated: )
A vulnerability was found in X.Org. This security flaw occurs becuase the swap handler for the XTestFakeInput request of the XTest extension may corrupt the stack if GenericEvents with lengths larger than 32 bytes are sent through a the XTestFakeInput request. This issue can lead to local privileges elevation on systems where the X server is running privileged and remote code execution for ssh X forwarding sessions. This issue does not affect systems where client and server use the same byte order.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| X.Org X Server | =1.20.4 | |
| Redhat Enterprise Linux | =6.0 | |
| Redhat Enterprise Linux | =7.0 | |
| Redhat Enterprise Linux | =8.0 | |
| Redhat Enterprise Linux | =9.0 | |
| Fedoraproject Fedora | =36 | |
| Fedoraproject Fedora | =37 | |
| Debian Debian Linux | =11.0 | |
| debian/xorg-server | <=2:1.20.4-1+deb10u4 | 2:1.20.4-1+deb10u12 2:1.20.11-1+deb11u6 2:1.20.11-1+deb11u10 2:21.1.7-3+deb12u2 2:21.1.7-3+deb12u4 2:21.1.10-1 |
| debian/xwayland | 2:22.1.9-1 2:23.2.3-1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://access.redhat.com/security/cve/CVE-2022-46340
- https://bugzilla.redhat.com/show_bug.cgi?id=2151755
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RWTH3SNJ3GKYDSN7I3QDGWYEPSMWU6EP/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z67QC4C3I2FI2WRFIUPEHKC36J362MLA/
- https://security.gentoo.org/glsa/202305-30
- https://www.debian.org/security/2022/dsa-5304
- https://lists.x.org/archives/xorg-announce/2022-December/003302.html
- https://gitlab.freedesktop.org/xorg/xserver/commit/b320ca0ffe4c0c872eeb3a93d9bde21f765c7c63
- https://security-tracker.debian.org/tracker/CVE-2022-46340
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2153115
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2153116
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2153117
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2153118
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2154207
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2154208
- https://access.redhat.com/errata/RHSA-2023:0045
- https://access.redhat.com/errata/RHSA-2023:0046
- https://access.redhat.com/security/cve/cve-2022-46340
- https://access.redhat.com/errata/RHSA-2023:2248
- https://access.redhat.com/errata/RHSA-2023:2249
- https://access.redhat.com/errata/RHSA-2023:2257
- https://access.redhat.com/errata/RHSA-2023:2805
- https://access.redhat.com/errata/RHSA-2023:2806
- https://access.redhat.com/errata/RHSA-2023:2830
Frequently Asked Questions
What is CVE-2022-46340?
CVE-2022-46340 is a vulnerability in X.Org that occurs due to a stack corruption issue in the XTestFakeInput request of the XTest extension.
What is the severity of CVE-2022-46340?
The severity of CVE-2022-46340 is high with a CVSS score of 8.8.
Which software versions are affected by CVE-2022-46340?
The affected software versions include xorg-server versions 2:1.20.4-1+deb10u9, 2:1.20.11-1+deb11u6, 2:21.1.7-3, and 2:21.1.8-1.
How can I fix CVE-2022-46340?
To fix CVE-2022-46340, update xorg-server to versions 2:1.20.4-1+deb10u9, 2:1.20.11-1+deb11u6, 2:21.1.7-3, or 2:21.1.8-1.
Is Redhat Enterprise Linux vulnerable to CVE-2022-46340?
No, Redhat Enterprise Linux versions 6.0, 7.0, 8.0, and 9.0 are not vulnerable to CVE-2022-46340.
- collector/nvd-index
- collector/security-tracker-debian
- agent/type
- agent/weakness
- agent/references
- agent/severity
- agent/author
- agent/description
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2022-46340
- collector/mitre-cve
- source/MITRE
- vendor/x.org
- canonical/x.org x server
- version/x.org x server/1.20.4
- vendor/redhat
- canonical/redhat enterprise linux
- version/redhat enterprise linux/6.0
- version/redhat enterprise linux/7.0
- version/redhat enterprise linux/8.0
- version/redhat enterprise linux/9.0
- vendor/fedoraproject
- canonical/fedoraproject fedora
- version/fedoraproject fedora/36
- version/fedoraproject fedora/37
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/11.0
- package-manager/debian