{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2022-2320", "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "dateUpdated": "2024-08-03T00:32:09.611Z", "dateReserved": "2022-07-05T00:00:00", "datePublished": "2022-09-01T00:00:00"}, "containers": {"cna": {"providerMetadata": {"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat", "dateUpdated": "2022-11-04T00:00:00"}, "descriptions": [{"lang": "en", "value": "A flaw was found in the Xorg-x11-server. The specific flaw exists within the handling of ProcXkbSetDeviceInfo requests. The issue results from the lack of proper validation of user-supplied data, which can result in a memory access past the end of an allocated buffer. This flaw allows an attacker to escalate privileges and execute arbitrary code in the context of root."}], "affected": [{"vendor": "n/a", "product": "xorg-x11-server", "versions": [{"version": "xorg-x11-server 21.1", "status": "affected"}]}], "references": [{"url": "https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/938"}, {"url": "https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/939"}, {"url": "https://github.com/freedesktop/xorg-xserver/commit/dd8caf39e9e15d8f302e54045dd08d8ebf1025dc"}, {"url": "https://www.zerodayinitiative.com/advisories/ZDI-22-963/"}, {"url": "https://lists.freedesktop.org/archives/xorg-announce/2022-July/003192.html"}, {"name": "GLSA-202210-30", "tags": ["vendor-advisory"], "url": "https://security.gentoo.org/glsa/202210-30"}, {"url": "https://security.netapp.com/advisory/ntap-20221104-0003/"}], "problemTypes": [{"descriptions": [{"type": "CWE", "lang": "en", "description": "CWE-787", "cweId": "CWE-787"}]}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T00:32:09.611Z"}, "title": "CVE Program Container", "references": [{"url": "https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/938", "tags": ["x_transferred"]}, {"url": "https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/939", "tags": ["x_transferred"]}, {"url": "https://github.com/freedesktop/xorg-xserver/commit/dd8caf39e9e15d8f302e54045dd08d8ebf1025dc", "tags": ["x_transferred"]}, {"url": "https://www.zerodayinitiative.com/advisories/ZDI-22-963/", "tags": ["x_transferred"]}, {"url": "https://lists.freedesktop.org/archives/xorg-announce/2022-July/003192.html", "tags": ["x_transferred"]}, {"name": "GLSA-202210-30", "tags": ["vendor-advisory", "x_transferred"], "url": "https://security.gentoo.org/glsa/202210-30"}, {"url": "https://security.netapp.com/advisory/ntap-20221104-0003/", "tags": ["x_transferred"]}]}]}}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:x.org:xorg-server:21.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "6EC28ACF-0355-4ACC-BA11-BAE5CBD03C1B", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "A flaw was found in the Xorg-x11-server. The specific flaw exists within the handling of ProcXkbSetDeviceInfo requests. The issue results from the lack of proper validation of user-supplied data, which can result in a memory access past the end of an allocated buffer. This flaw allows an attacker to escalate privileges and execute arbitrary code in the context of root."}, {"lang": "es", "value": "Se ha encontrado un fallo en Xorg-x11-server. El fallo espec\u00edfico es producido en la administraci\u00f3n de las peticiones ProcXkbSetDeviceInfo. El problema es debido a que no se comprueban apropiadamente los datos suministrados por el usuario, lo que puede resultar en un acceso a la memoria m\u00e1s all\u00e1 del final de un b\u00fafer asignado. Este fallo permite a un atacante escalar privilegios y ejecutar c\u00f3digo arbitrario en el contexto de root"}], "id": "CVE-2022-2320", "lastModified": "2024-11-21T07:00:45.850", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2022-09-01T21:15:09.443", "references": [{"source": "secalert@redhat.com", "tags": ["Patch", "Third Party Advisory"], "url": "https://github.com/freedesktop/xorg-xserver/commit/dd8caf39e9e15d8f302e54045dd08d8ebf1025dc"}, {"source": "secalert@redhat.com", "tags": ["Patch", "Third Party Advisory"], "url": "https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/938"}, {"source": "secalert@redhat.com", "tags": ["Patch", "Third Party Advisory"], "url": "https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/939"}, {"source": "secalert@redhat.com", "tags": ["Patch", "Third Party Advisory"], "url": "https://lists.freedesktop.org/archives/xorg-announce/2022-July/003192.html"}, {"source": "secalert@redhat.com", "tags": ["Third Party Advisory"], "url": "https://security.gentoo.org/glsa/202210-30"}, {"source": "secalert@redhat.com", "tags": ["Third Party Advisory"], "url": "https://security.netapp.com/advisory/ntap-20221104-0003/"}, {"source": "secalert@redhat.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "https://www.zerodayinitiative.com/advisories/ZDI-22-963/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Third Party Advisory"], "url": "https://github.com/freedesktop/xorg-xserver/commit/dd8caf39e9e15d8f302e54045dd08d8ebf1025dc"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Third Party Advisory"], "url": "https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/938"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Third Party Advisory"], "url": "https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/939"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Third Party Advisory"], "url": "https://lists.freedesktop.org/archives/xorg-announce/2022-July/003192.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://security.gentoo.org/glsa/202210-30"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://security.netapp.com/advisory/ntap-20221104-0003/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "VDB Entry"], "url": "https://www.zerodayinitiative.com/advisories/ZDI-22-963/"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-787"}], "source": "secalert@redhat.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "CWE-787"}], "source": "nvd@nist.gov", "type": "Secondary"}]}

{"acknowledgement": "Upstream acknowledges Jan-Niklas Sohn as the original reporter.", "affected_release": [{"advisory": "RHSA-2022:5905", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "xorg-x11-server-0:1.20.4-18.el7_9", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2022-08-04T00:00:00Z"}, {"advisory": "RHSA-2022:7583", "cpe": "cpe:/a:redhat:enterprise_linux:8", "package": "xorg-x11-server-0:1.20.11-9.el8", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2022-11-08T00:00:00Z"}, {"advisory": "RHSA-2022:7583", "cpe": "cpe:/a:redhat:enterprise_linux:8", "package": "xorg-x11-server-Xwayland-0:21.1.3-6.el8", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2022-11-08T00:00:00Z"}, {"advisory": "RHSA-2022:8221", "cpe": "cpe:/a:redhat:enterprise_linux:9", "package": "xorg-x11-server-0:1.20.11-11.el9", "product_name": "Red Hat Enterprise Linux 9", "release_date": "2022-11-15T00:00:00Z"}, {"advisory": "RHSA-2022:8222", "cpe": "cpe:/a:redhat:enterprise_linux:9", "package": "xorg-x11-server-Xwayland-0:21.1.3-3.el9", "product_name": "Red Hat Enterprise Linux 9", "release_date": "2022-11-15T00:00:00Z"}], "bugzilla": {"description": "xorg-x11-server: out-of-bounds access in ProcXkbSetDeviceInfo request handler of the Xkb extension", "id": "2106683", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2106683"}, "csaw": false, "cvss3": {"cvss3_base_score": "7.8", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "status": "verified"}, "cwe": "CWE-787", "details": ["A flaw was found in the Xorg-x11-server. The specific flaw exists within the handling of ProcXkbSetDeviceInfo requests. The issue results from the lack of proper validation of user-supplied data, which can result in a memory access past the end of an allocated buffer. This flaw allows an attacker to escalate privileges and execute arbitrary code in the context of root.", "A flaw was found in the Xorg-x11-server. The specific flaw exists within the handling of ProcXkbSetDeviceInfo requests. The issue results from the lack of proper validation of user-supplied data, which can result in a memory access past the end of an allocated buffer. This flaw allows an attacker to escalate privileges and execute arbitrary code in the context of root."], "name": "CVE-2022-2320", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Out of support scope", "package_name": "xorg-x11-server", "product_name": "Red Hat Enterprise Linux 6"}], "public_date": "2022-07-12T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2022-2320\nhttps://nvd.nist.gov/vuln/detail/CVE-2022-2320\nhttps://www.zerodayinitiative.com/advisories/ZDI-22-963/"], "statement": "Xorg server does not run with root privileges in Red Hat Enterprise Linux 8, therefore this flaw has been rated as having Moderate impact.", "threat_severity": "Moderate"}