Fluid Attacks Database

Description

A flaw was found in the X.Org X server's XKB key types request validation. A local attacker could send a specially crafted request to the X server, leading to an out-of-bounds memory access vulnerability. This could result in the disclosure of sensitive information or cause the server to crash, leading to a Denial of Service (DoS). In certain configurations, higher impact outcomes may be possible.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
rpm rhel10	xorg-x11-server-Xwayland	<0:24.1.5-6.el10_1 \|\| >=0:24.1.9, <0:24.1.9-4.el10_2	0:24.1.9-4.el10_2
debian 14	xorg-server	=2:21.1.16-1.3 \|\| =2:21.1.18-1 \|\| =2:21.1.18-2 \|\| =2:21.1.20-1 \|\| =2:21.1.21-1 \|\| >=0 <2:21.1.22-1	2:21.1.22-1
rpm rhel6	xorg-x11-server	-	-
rpm rhel9	xorg-x11-server	<0:1.20.11-34.el9_8	0:1.20.11-34.el9_8
debian 14	xwayland	=2:24.1.6-1 \|\| =2:24.1.8-1 \|\| =2:24.1.9-1 \|\| >=0 <2:24.1.10-1	2:24.1.10-1
rpm rhel6	tigervnc	-	-
rpm rhel8	tigervnc	<0:1.15.0-9.el8_10	0:1.15.0-9.el8_10
rpm rhel8	xorg-x11-server	<0:1.20.11-28.el8_10	0:1.20.11-28.el8_10
debian 11	xorg-server	=2:1.20.11-1 \|\| =2:1.20.11-1+deb11u1 \|\| =2:1.20.11-1+deb11u10 \|\| =2:1.20.11-1+deb11u11 \|\| =2:1.20.11-1+deb11u12 \|\| =2:1.20.11-1+deb11u13 \|\| =2:1.20.11-1+deb11u14 \|\| =2:1.20.11-1+deb11u15 \|\| =2:1.20.11-1+deb11u16 \|\| =2:1.20.11-1+deb11u17 \|\| =2:1.20.11-1+deb11u2 \|\| =2:1.20.11-1+deb11u3 \|\| =2:1.20.11-1+deb11u4 \|\| =2:1.20.11-1+deb11u5 \|\| =2:1.20.11-1+deb11u6 \|\| =2:1.20.11-1+deb11u7 \|\| =2:1.20.11-1+deb11u8 \|\| =2:1.20.11-1+deb11u9 \|\| =2:1.20.13-1 \|\| =2:1.20.13-2 \|\| =2:1.20.13-3 \|\| =2:1.20.14-1 \|\| =2:21.1.1-1 \|\| =2:21.1.1-2 \|\| =2:21.1.10-1 \|\| =2:21.1.11-1 \|\| =2:21.1.11-2 \|\| =2:21.1.11-3 \|\| =2:21.1.12-1 \|\| =2:21.1.13-1 \|\| =2:21.1.13-2 \|\| =2:21.1.13-3 \|\| =2:21.1.13-3.1 \|\| =2:21.1.14-1 \|\| =2:21.1.14-2 \|\| =2:21.1.15-1 \|\| =2:21.1.15-2 \|\| =2:21.1.15-3 \|\| =2:21.1.16-1 \|\| =2:21.1.16-1.1 \|\| =2:21.1.16-1.2 \|\| =2:21.1.16-1.3 \|\| =2:21.1.18-1 \|\| =2:21.1.18-2 \|\| =2:21.1.20-1 \|\| =2:21.1.21-1 \|\| =2:21.1.22-1 \|\| =2:21.1.3-1 \|\| =2:21.1.3-2 \|\| =2:21.1.4-1 \|\| =2:21.1.4-2 \|\| =2:21.1.4-3 \|\| =2:21.1.5-1 \|\| =2:21.1.6-1 \|\| =2:21.1.7-1 \|\| =2:21.1.7-2 \|\| =2:21.1.7-3 \|\| =2:21.1.8-1 \|\| =2:21.1.9-1 \|\| =2:21.1.9-1+hurd.1	-
rpm rhel8	xorg-x11-server-Xwayland	<0:21.1.3-20.el8_10	0:21.1.3-20.el8_10

1-10 of 27

Aliases

1. CVE-2026-340032. NVD-2026-340033. OSV-2026-340034. OSV-DEBIAN-2026-340035. SECURITY-TRACKER-CVE-2026-34003

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.