REDHAT-BUG-2140698: Buffer Overflow
First published: Mon Nov 07 2022(Updated: )
A vulnerability classified as critical was found in X.org Server. Affected by this vulnerability is the function _GetCountedString of the file xkb/xkb.c. The manipulation leads to buffer overflow. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-211051. Reference: <a href="https://vuldb.com/?id.211051">https://vuldb.com/?id.211051</a> Upstream patch: <a href="https://cgit.freedesktop.org/xorg/xserver/commit/?id=11beef0b7f1ed290348e45618e5fa0d2bffcb72e">https://cgit.freedesktop.org/xorg/xserver/commit/?id=11beef0b7f1ed290348e45618e5fa0d2bffcb72e</a>
| Affected Software | Affected Version | How to fix |
|---|---|---|
| X.org X.org Server |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://vuldb.com/?id.211051
- https://cgit.freedesktop.org/xorg/xserver/commit/?id=11beef0b7f1ed290348e45618e5fa0d2bffcb72e
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2140699
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=2140700
- https://access.redhat.com/errata/RHSA-2022:8491
- https://access.redhat.com/security/cve/cve-2022-3550
- https://access.redhat.com/errata/RHSA-2023:2248
- https://access.redhat.com/errata/RHSA-2023:2249
- https://access.redhat.com/errata/RHSA-2023:2805
- https://access.redhat.com/errata/RHSA-2023:2806
- https://bugzilla.redhat.com/show_bug.cgi?id=2140698
Frequently Asked Questions
What is the severity of REDHAT-BUG-2140698?
The severity of REDHAT-BUG-2140698 is classified as critical due to the potential for buffer overflow.
What software is affected by REDHAT-BUG-2140698?
REDHAT-BUG-2140698 affects the X.org Server software.
How do I fix REDHAT-BUG-2140698?
To fix REDHAT-BUG-2140698, it is recommended to apply the latest patch provided by the maintainers.
What type of vulnerability is REDHAT-BUG-2140698?
REDHAT-BUG-2140698 is a buffer overflow vulnerability.
What specific function is involved in REDHAT-BUG-2140698?
The function involved in REDHAT-BUG-2140698 is _GetCountedString in the file xkb/xkb.c.
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2022-3550
- agent/event
- agent/weakness
- agent/references
- agent/severity
- agent/description
- agent/source
- agent/softwarecombine
- agent/tags
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/x.org
- canonical/x.org server