Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:ALSA-2023:2786
HistoryMay 16, 2023 - 12:00 a.m.

Moderate: wayland security, bug fix, and enhancement update

2023-05-1600:00:00
Google
osv.dev
10
wayland
protocol
c library
security fix
update
bug fix
enhancement
upstream version
cve-2021-3782

6.6 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H

0.0004 Low

EPSS

Percentile

12.8%

JSON

Wayland is a protocol for a compositor to talk to its clients, as well as a C library implementation of that protocol. The compositor can be a standalone display server running on Linux kernel modesetting and evdev input devices, an X application, or a wayland client itself. The clients can be traditional applications, X servers (rootless or fullscreen) or other display servers.

The following packages have been upgraded to a later upstream version: wayland (1.21.0). (BZ#2137625)

Security Fix(es):

  • wayland: libwayland-server wl_shm reference-count overflow (CVE-2021-3782)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.

Related

openvas 15
oraclelinux 1
nessus 27
osv 3
cvelist 1
ubuntucve 1
redhatcve 1
debiancve 1
ubuntu 2
nvd 1
almalinux 1
mageia 1
cbl_mariner 2
photon 2
prion 1
cve 1
alpinelinux 1
amazon 1
redhat 3
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2023:1864-1)
2024-02-28 00:00:00
Mageia: Security Advisory (MGASA-2022-0418)
2022-11-14 00:00:00
Huawei EulerOS: Security Advisory for wayland (EulerOS-SA-2023-1180)
2023-01-12 00:00:00
oraclelinux
oraclelinux
wayland security, bug fix, and enhancement update
2023-05-24 00:00:00
nessus
nessus
Ubuntu 16.04 ESM : Wayland vulnerability (USN-5614-2)
2022-10-05 00:00:00
SUSE SLES15 Security Update : wayland (SUSE-SU-2023:1873-1)
2023-04-20 00:00:00
Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS : Wayland vulnerability (USN-5614-1)
2022-09-15 00:00:00
osv
osv
wayland vulnerability
2022-09-15 16:43:06
CVE-2021-3782
2022-09-23 16:15:10
wayland vulnerability
2022-10-03 17:26:02
cvelist
cvelist
CVE-2021-3782
2022-09-23 15:26:59
ubuntucve
ubuntucve
CVE-2021-3782
2022-08-30 00:00:00
redhatcve
redhatcve
CVE-2021-3782
2022-08-30 11:09:37
debiancve
debiancve
CVE-2021-3782
2022-09-23 16:15:10
ubuntu
ubuntu
Wayland vulnerability
2022-10-03 00:00:00
Wayland vulnerability
2022-09-15 00:00:00
nvd
nvd
CVE-2021-3782
2022-09-23 16:15:10
almalinux
almalinux
Moderate: wayland security, bug fix, and enhancement update
2023-05-16 00:00:00
mageia
mageia
Updated wayland packages fix security vulnerability
2022-11-13 05:25:20
cbl_mariner
cbl_mariner
CVE-2021-3782 affecting package wayland 1.20.0-4
2022-10-13 01:25:18
CVE-2021-3782 affecting package wayland for versions less than 1.21.0-1
2022-10-17 22:54:37
photon
photon
Critical Photon OS Security Update - PHSA-2022-0253
2022-09-29 00:00:00
Moderate Photon OS Security Update - PHSA-2022-4.0-0253
2022-09-29 00:00:00
prion
prion
Design/Logic Flaw
2022-09-23 16:15:00
cve
cve
CVE-2021-3782
2022-09-23 16:15:10
alpinelinux
alpinelinux
CVE-2021-3782
2022-09-23 16:15:10
amazon
amazon
Medium: wayland
2023-06-21 19:11:00
redhat
redhat
(RHSA-2023:2786) Moderate: wayland security, bug fix, and enhancement update
2023-05-16 05:54:38
(RHSA-2023:3813) Moderate: Migration Toolkit for Runtimes security update
2023-06-27 10:52:18
(RHSA-2023:3664) Moderate: OpenShift Jenkins image and Jenkins agent base image security update
2023-06-19 10:30:37

6.6 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H

0.0004 Low

EPSS

Percentile

12.8%

JSON
Related for OSV:ALSA-2023:2786
openvas15oraclelinux1nessus27osv3cvelist1ubuntucve1redhatcve1debiancve1ubuntu2nvd1almalinux1mageia1cbl_mariner2photon2prion1cve1alpinelinux1amazon1redhat3