Select your cookie preferences

We use cookies and similar tools to enhance your experience, provide our services, deliver relevant advertising, and make improvements. Approved third parties also use these tools to help us deliver advertising and provide certain site features.

CVE-2024-31081

Public on 2024-04-04
Modified on 2024-04-05
Description

A heap-based buffer over-read vulnerability was found in the X.org server's ProcXIPassiveGrabDevice() function. This issue occurs when byte-swapped length values are used in replies, potentially leading to memory leakage and segmentation faults, particularly when triggered by a client with a different endianness. This vulnerability could be exploited by an attacker to cause the X server to read heap memory values and then transmit them back to the client until encountering an unmapped page, resulting in a crash. Despite the attacker's inability to control the specific memory copied into the replies, the small length values typically stored in a 32-bit integer can result in significant attempted out-of-bounds reads.

Severity
Medium
See what this means
CVSS v3 Base Score
5.4
See breakdown
Continue reading

Affected Packages

Platform Package Release Date Advisory
Amazon Linux 2 - Core tigervnc 2024-04-11 01:07 ALAS2-2024-2510
Amazon Linux 2 - Core xorg-x11-server 2024-04-11 01:07 ALAS2-2024-2511
Amazon Linux 2023 xorg-x11-server 2024-04-10 22:17 ALAS2023-2024-583

CVSS Scores

Score Type Score Vector
Amazon Linux CVSSv3 5.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L
NVD CVSSv3 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H

References

Red Hat: CVE-2024-31081 Mitre: CVE-2024-31081 FAQs regarding Amazon Linux ALAS/CVE Severity