Wind River Support Network

HomeDefectsLIN1023-3005

Fixed

LIN1023-3005 : Security Advisory - xserver-xorg - CVE-2023-6478

Created: Dec 14, 2023 Updated: Dec 30, 2023

Resolved Date: Dec 28, 2023

Found In Version: 10.23.30.1

Fix Version: 10.23.30.5

Severity: Standard

Applicable for: Wind River Linux LTS 23

Component/s: Userspace

Description

A flaw was found in xorg-server. A specially crafted request to RRChangeProviderProperty or RRChangeOutputProperty can trigger an integer overflow which may lead to a disclosure of sensitive information.

CREATE(Triage):(User=admin) CVE-2023-6478 (https://nvd.nist.gov/vuln/detail/CVE-2023-6478)

CVEs

CVE-2023-6478