xserver-xorg: fix CVE-2024-9632 - linux/poky.git - Mirror of git.yoctoproject.org/poky

diff options

author	Yogita Urade <yogita.urade@windriver.com>	2024-12-12 10:30:36 +0000
committer	Steve Sakoman <steve@sakoman.com>	2024-12-20 06:01:45 -0800
commit	5ea79cac19c212dc2ac85216003cf6224a071f2f (patch)
tree	3921ebb413bc68296e7524a29ed3014908236365 /scripts/lib/checklayer/context.py
parent	ce1fa3eec036c866e1c0fb091057349f203ea6a2 (diff)
download	poky-5ea79cac19c212dc2ac85216003cf6224a071f2f.tar.gz

xserver-xorg: fix CVE-2024-9632

A flaw was found in the X.org server. Due to improperly tracked allocation size in _XkbSetCompatMap, a local attacker may be able to trigger a buffer overflow condition via a specially crafted payload, leading to denial of service or local privilege escalation in distributions where the X.org server is run with root privileges. Reference: https://nvd.nist.gov/vuln/detail/CVE-2024-9632 Upstream patch: https://gitlab.freedesktop.org/xorg/xserver/-/commit/ba1d14f8eff2a123bd7ff4d48c02e1d5131358e0 (From OE-Core rev: 95027410dba7a2a7e9b93f76279272f22445399b) Signed-off-by: Yogita Urade <yogita.urade@windriver.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>

Diffstat (limited to 'scripts/lib/checklayer/context.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: