Description
A use-after-free flaw was found in the X.Org X server and Xwayland in miSyncDestroyFence(). A client that sets up multiple fence triggers can trigger a use-after-free function pointer call. An attacker would connect to the X server to set up a fence and await that fence, then a second X connection destroys the fence, causing the use-after-free. This may be used to crash the server, or for privilege escalation if the X server runs as root.
Published: 2026-06-05
Score: 7.8 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A use‑after‑free flaw exists in the X.Org X server and Xwayland within miSyncDestroyFence(). By configuring multiple fence triggers, an attacker can cause the server to invoke a freed function pointer, which may crash the server or even execute code if the X server runs with elevated privileges.

Affected Systems

Red Hat Enterprise Linux 10, 6, 7, 8, and 9 are impacted; any installation of the bundled Xorg X server package on these distributions should be considered vulnerable until a patch is applied.

Risk and Exploitability

The CVSS score of 7.8 indicates high severity. No EPSS score is available, so the precise likelihood of exploitation remains uncertain, but the vulnerability can be triggered remotely via an X client, enabling denial of service or potential privilege escalation when the X server runs as root. The flaw is not listed in CISA’s KEV catalog, suggesting no confirmed large‑scale exploitation yet. Administrators should treat the risk as significant and prepare to mitigate it promptly.

Generated by OpenCVE AI on June 5, 2026 at 12:23 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest Red Hat security update that patches the xorg-x11-server package for your RHEL release.
  • If an update is not yet available, restrict remote connections to the X server by binding it to localhost or using firewall rules to allow only trusted hosts and thereby limit fence‑trigger exploitation attempts.
  • Monitor X server logs for abnormal fence or SyncFence activity and enforce that the X server does not run with root privileges, following best practices for minimizing privileged service exposure.

Generated by OpenCVE AI on June 5, 2026 at 12:23 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 05 Jun 2026 12:15:00 +0000

Type Values Removed Values Added
References
Metrics threat_severity

None

 threat_severity

Important

Fri, 05 Jun 2026 11:45:00 +0000

Type Values Removed Values Added
Description A use-after-free flaw was found in the X.Org X server and Xwayland in miSyncDestroyFence(). A client that sets up multiple fence triggers can trigger a use-after-free function pointer call. An attacker would connect to the X server to set up a fence and await that fence, then a second X connection destroys the fence, causing the use-after-free. This may be used to crash the server, or for privilege escalation if the X server runs as root.
Title Xorg-x11-server: xorg-x11-server-xwayland: xorg-x11-server: use-after-free in misyncdestroyfence()
First Time appeared Redhat
Redhat enterprise Linux
Weaknesses CWE-416
CPEs cpe:/o:redhat:enterprise_linux:10
cpe:/o:redhat:enterprise_linux:6
cpe:/o:redhat:enterprise_linux:7
cpe:/o:redhat:enterprise_linux:8
cpe:/o:redhat:enterprise_linux:9
Vendors & Products Redhat
Redhat enterprise Linux
References
Metrics cvssV3_1

{'score': 7.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}

Subscriptions

Redhat Enterprise Linux
cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published:

Updated: 2026-06-05T10:31:22.052Z

Reserved: 2026-06-04T14:55:24.011Z

Link: CVE-2026-50257

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Undergoing Analysis

Published: 2026-06-05T12:16:38.907

Modified: 2026-06-05T13:27:38.750

Link: CVE-2026-50257

cve-icon Redhat

Severity : Important

Publid Date: 2026-06-02T00:00:00Z

Links: CVE-2026-50257 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-06-05T12:30:40Z

Weaknesses