CVE-2024-0229: Xorg-x11-server: reattaching to different master device may lead to out-of-bounds memory access
First published: Wed Jan 03 2024(Updated: )
An out-of-bounds memory access flaw was found in the X.Org server. This issue can be triggered when a device frozen by a sync grab is reattached to a different master device. This issue may lead to an application crash, local privilege escalation (if the server runs with extended privileges), or remote code execution in SSH X11 forwarding environments.
Credit: secalert@redhat.com secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/xorg-server | <21.1.11 | 21.1.11 |
| redhat/xwayland | <23.2.4 | 23.2.4 |
| debian/xorg-server | 2:1.20.11-1+deb11u13 2:1.20.11-1+deb11u14 2:21.1.7-3+deb12u8 2:21.1.15-3 | |
| debian/xwayland | <=2:22.1.9-1 | 2:24.1.5-1 |
| X.org Xserver | <21.1.11 | |
| Ubuntu Xwayland | <23.2.4 | |
| Fedora | =39 | |
| Red Hat Enterprise Linux | =7.0 | |
| Red Hat Enterprise Linux | =8.0 | |
| Red Hat Enterprise Linux | =9.0 | |
| redhat enterprise linux aus | =8.2 | |
| redhat enterprise linux aus | =8.4 | |
| redhat enterprise Linux eus | =8.6 | |
| redhat enterprise Linux eus | =8.8 | |
| redhat enterprise Linux eus | =9.0 | |
| redhat enterprise Linux eus | =9.2 | |
| redhat enterprise linux tus | =8.2 | |
| redhat enterprise linux tus | =8.4 | |
| Red Hat Enterprise Linux for SAP Solutions | =8.2 | |
| Red Hat Enterprise Linux for SAP Solutions | =8.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://access.redhat.com/errata/RHSA-2024:0320
- https://access.redhat.com/errata/RHSA-2024:0557
- https://access.redhat.com/errata/RHSA-2024:0558
- https://access.redhat.com/errata/RHSA-2024:0597
- https://access.redhat.com/errata/RHSA-2024:0607
- https://access.redhat.com/errata/RHSA-2024:0614
- https://access.redhat.com/errata/RHSA-2024:0617
- https://access.redhat.com/errata/RHSA-2024:0621
- https://access.redhat.com/errata/RHSA-2024:0626
- https://access.redhat.com/errata/RHSA-2024:0629
- https://access.redhat.com/errata/RHSA-2024:2169
- https://access.redhat.com/errata/RHSA-2024:2170
- https://access.redhat.com/errata/RHSA-2024:2995
- https://access.redhat.com/errata/RHSA-2024:2996
- https://access.redhat.com/security/cve/CVE-2024-0229
- https://bugzilla.redhat.com/show_bug.cgi?id=2256690
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2258929
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2258928
- https://launchpad.net/bugs/cve/CVE-2024-0229
- https://lists.x.org/archives/xorg/2024-January/061525.html
- https://gitlab.freedesktop.org/xorg/xserver/-/commit/ece23be888a93b741aa1209d1dbf64636109d6a5
- https://gitlab.freedesktop.org/xorg/xserver/-/commit/219c54b8a3337456ce5270ded6a67bcde53553d5
- https://gitlab.freedesktop.org/xorg/xserver/-/commit/df3c65706eb169d5938df0052059f3e0d5981b74
- https://security-tracker.debian.org/tracker/CVE-2024-0229
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229
- https://nvd.nist.gov/vuln/detail/CVE-2024-0229
- https://ubuntu.com/security/CVE-2024-0229
Frequently Asked Questions
What is the severity of CVE-2024-0229?
CVE-2024-0229 is classified as a high severity vulnerability due to its potential for local privilege escalation and application crashes.
How do I fix CVE-2024-0229?
To fix CVE-2024-0229, upgrade the affected packages to the patched versions specified by your distribution, such as xorg-server 21.1.11 or xwayland 23.2.4.
Which versions are affected by CVE-2024-0229?
CVE-2024-0229 affects several versions of xorg-server and xwayland, specifically versions prior to 21.1.11 for xorg-server and 23.2.4 for xwayland.
What could happen if CVE-2024-0229 is exploited?
Exploiting CVE-2024-0229 could result in application crashes or allow an attacker to gain elevated privileges on the affected system.
Is CVE-2024-0229 specific to a particular operating system?
CVE-2024-0229 primarily affects Red Hat and Debian distributions but the underlying X.Org server vulnerabilities can impact various systems using these components.
- agent/type
- agent/first-publish-date
- agent/title
- agent/severity
- agent/author
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2024-0229
- agent/software-canonical-lookup
- collector/launchpad-cve
- source/Launchpad
- agent/references
- collector/usn-cve
- source/Ubuntu
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/weakness
- agent/trending
- agent/source
- agent/event
- agent/tags
- collector/security-tracker-debian
- source/Debian
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup-request
- collector/nvd-cve
- package-manager/redhat
- package-manager/debian
- vendor/x.org
- canonical/x.org xserver
- canonical/ubuntu xwayland
- vendor/fedoraproject
- canonical/fedora
- version/fedora/39
- vendor/redhat
- canonical/red hat enterprise linux
- version/red hat enterprise linux/7.0
- version/red hat enterprise linux/8.0
- version/red hat enterprise linux/9.0
- canonical/redhat enterprise linux aus
- version/redhat enterprise linux aus/8.2
- version/redhat enterprise linux aus/8.4
- canonical/redhat enterprise linux eus
- version/redhat enterprise linux eus/8.6
- version/redhat enterprise linux eus/8.8
- version/redhat enterprise linux eus/9.0
- version/redhat enterprise linux eus/9.2
- canonical/redhat enterprise linux tus
- version/redhat enterprise linux tus/8.2
- version/redhat enterprise linux tus/8.4
- canonical/red hat enterprise linux for sap solutions
- version/red hat enterprise linux for sap solutions/8.2
- version/red hat enterprise linux for sap solutions/8.4