Fluid Attacks Database

Description

A vulnerability, which was classified as problematic, has been found in X.org Server. Affected by this issue is the function ProcXkbGetKbdByName of the file xkb/xkb.c. The manipulation leads to memory leak. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-211052.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 11	xorg-server	=2:1.20.11-1 \|\| =2:1.20.11-1+deb11u1 \|\| =2:1.20.11-1+deb11u2 \|\| >=0 <2:1.20.11-1+deb11u3	2:1.20.11-1+deb11u3
debian 12	xorg-server	>=0 <2:21.1.4-3	2:21.1.4-3
debian 13	xorg-server	>=0 <2:21.1.4-3	2:21.1.4-3
debian 14	xorg-server	>=0 <2:21.1.4-3	2:21.1.4-3
debian 12	xwayland	>=0 <2:22.1.5-1	2:22.1.5-1
debian 13	xwayland	>=0 <2:22.1.5-1	2:22.1.5-1
debian 14	xwayland	>=0 <2:22.1.5-1	2:22.1.5-1
rpm rhel6	xorg-x11-server	-	-
rpm rhel7	xorg-x11-server	<0:1.20.4-19.el7_9	0:1.20.4-19.el7_9
rpm rhel8	xorg-x11-server	<0:1.20.11-15.el8	0:1.20.11-15.el8

1-10 of 13

Aliases

1. CVE-2022-35512. NVD-2022-35513. OSV-DEBIAN-2022-35514. OSV-2022-35515. SECURITY-TRACKER-CVE-2022-3551

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.