Wind River Support Network

HomeDefectsLIN1023-3358
Fixed

LIN1023-3358 : Security Advisory - xserver-xorg - CVE-2024-0229

Created: Jan 16, 2024    Updated: Apr 2, 2025
Resolved Date: Mar 24, 2025
Found In Version: 10.23.30.1
Fix Version: 10.23.30.16
Severity: Standard
Applicable for: Wind River Linux LTS 23
Component/s: Userspace

Description

An out-of-bounds memory access flaw was found in the X.Org server. This issue can be triggered when a device frozen by a sync grab is reattached to a different master device. This issue may lead to an application crash, local privilege escalation (if the server runs with extended privileges), or remote code execution in SSH X11 forwarding environments.

https://nvd.nist.gov/vuln/detail/CVE-2024-0229

CVEs

  • Linkedin
  • Facebook
  • Twitter
  • Youtube