Lucene search
Jan-Niklas SohnZDI-20-1420HistoryDec 09, 2020 - 12:00 a.m.
X.Org Server XkbSetMap Out-Of-Bounds Access Privilege Escalation Vulnerability
2020-12-0900:00:00
Jan-Niklas Sohn
www.zerodayinitiative.com
35
0.0004 Low
EPSS
Percentile
16.1%
This vulnerability allows local attackers to escalate privileges on affected installations of X.Org Server. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of XkbSetMap requests. The issue results from the lack of proper validation of user-supplied data, which can result in a memory access past the end of an allocated data structure. An attacker can leverage this vulnerability to escalate privileges and execute code in the context of root.
Related
cve
cve
CVE-2020-14360
2021-01-20 16:15:13
redhatcve
redhatcve
CVE-2020-14360
2020-12-01 18:00:35
debiancve
debiancve
CVE-2020-14360
2021-01-20 16:15:13
alpinelinux
alpinelinux
CVE-2020-14360
2021-01-20 16:15:13
ubuntucve
ubuntucve
CVE-2020-14360
2020-12-01 00:00:00
veracode
veracode
Privilege Escalation
2020-12-04 16:43:09
prion
prion
Privilege escalation
2021-01-20 16:15:00
osv
osv
CVE-2020-14360
2021-01-20 16:15:13
xorg-server vulnerabilities
2020-12-07 15:14:43
xorg-server - security update
2020-12-04 00:00:00
cvelist
cvelist
CVE-2020-14360
2021-01-20 15:18:20
nvd
nvd
CVE-2020-14360
2021-01-20 16:15:13
nessus
nessus
SUSE SLES11 Security Update : xorg-x11-server (SUSE-SU-2020:14553-1)
2021-06-10 00:00:00
EulerOS 2.0 SP9 : xorg-x11-server (EulerOS-SA-2021-1019)
2021-01-04 00:00:00
Debian DSA-4803-1 : xorg-server - security update
2020-12-07 00:00:00
mageia
mageia
Updated x11-server packages fix security vulnerabilities
2020-12-17 16:10:41
altlinux
altlinux
Security fix for the ALT Linux 10 package xorg-server version 2:1.20.10-alt1
2020-12-02 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for xorg-x11-server (EulerOS-SA-2021-1019)
2021-01-08 00:00:00
Fedora: Security Advisory for xorg-x11-server (FEDORA-2020-c8a7df24d4)
2020-12-05 00:00:00
SUSE: Security Advisory (SUSE-SU-2020:3589-1)
2021-04-19 00:00:00
suse
suse
Security update for xorg-x11-server (important)
2020-12-07 00:00:00
Security update for xorg-x11-server (important)
2020-12-02 00:00:00
fedora
fedora
[SECURITY] Fedora 32 Update: xorg-x11-server-1.20.10-1.fc32
2020-12-05 01:17:03
[SECURITY] Fedora 33 Update: xorg-x11-server-1.20.10-1.fc33
2020-12-05 01:41:14
freebsd
freebsd
xorg-server -- Multiple input validation failures in X server XKB extension
2020-12-01 00:00:00
archlinux
archlinux
[ASA-202012-6] xorg-server: arbitrary code execution
2020-12-05 00:00:00
debian
debian
[SECURITY] [DSA 4803-1] xorg-server security update
2020-12-04 18:12:18
[SECURITY] [DLA 2486-1] xorg-server security update
2020-12-09 10:27:48
ubuntu
ubuntu
X.Org X Server vulnerabilities
2020-12-01 00:00:00
X.Org X Server vulnerabilities
2020-12-07 00:00:00
amazon
amazon
Important: xorg-x11-server
2021-01-25 23:09:00
centos
centos
xorg security update
2021-02-27 14:19:46
redhat
redhat
oraclelinux
oraclelinux
xorg-x11-server security update
2020-12-14 00:00:00
gentoo
gentoo
X.Org X Server: Multiple vulnerabilities
2020-12-07 00:00:00
almalinux
almalinux
rocky
rocky
ibm
ibm