CVE-2024-0229

CVSS V2 None CVSS V3 None

Description

An out-of-bounds memory access flaw was found in the X.Org server. This issue can be triggered when a device frozen by a sync grab is reattached to a different master device. This issue may lead to an application crash, local privilege escalation (if the server runs with extended privileges), or remote code execution in SSH X11 forwarding environments.

Overview

CVE ID
CVE-2024-0229

Assigner
redhat

Vulnerability Status
PUBLISHED

Published Version
2024-02-09T06:29:51.542Z

Last Modified Date
2024-05-29T23:25:41.266Z

Weakness Enumerations

CWE	URL
CWE-788	http://cwe.mitre.org/data/definitions/788.html

References

Reference URL	Reference Tags
https://access.redhat.com/errata/RHSA-2024:0320	vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:0557	vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:0558	vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:0597	vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:0607	vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:0614	vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:0617	vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:0621	vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:0626	vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:0629	vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:2169	vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:2170	vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:2995	vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:2996	vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2024-0229	vdb-entry x_refsource_REDHAT
https://bugzilla.redhat.com/show_bug.cgi?id=2256690	issue-tracking x_refsource_REDHAT

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2024-0229
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229

History

Created	Old Value	New Value	Data Type	Notes
2024-06-26 10:27:14				Added to TrackCVE