CVE-2022-2320

A flaw was found in the Xorg-x11-server. The specific flaw exists within the handling of ProcXkbSetDeviceInfo requests. The issue results from the lack of proper validation of user-supplied data, which can result in a memory access past the end of an allocated buffer. This flaw allows an attacker to escalate privileges and execute arbitrary code in the context of root.

CVSS v3 7.8 HIGH

7.8^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://github.com/freedesktop/xorg-xserver/commit/dd8caf39e9e15d8f302e54045dd08d8ebf1025dc	Patch Third Party Advisory
https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/938	Patch Third Party Advisory
https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/939	Patch Third Party Advisory
https://lists.freedesktop.org/archives/xorg-announce/2022-July/003192.html	Patch Third Party Advisory
https://security.gentoo.org/glsa/202210-30	Third Party Advisory
https://security.netapp.com/advisory/ntap-20221104-0003/	Third Party Advisory
https://www.zerodayinitiative.com/advisories/ZDI-22-963/	Third Party Advisory VDB Entry
https://github.com/freedesktop/xorg-xserver/commit/dd8caf39e9e15d8f302e54045dd08d8ebf1025dc	Patch Third Party Advisory
https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/938	Patch Third Party Advisory
https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/939	Patch Third Party Advisory
https://lists.freedesktop.org/archives/xorg-announce/2022-July/003192.html	Patch Third Party Advisory
https://security.gentoo.org/glsa/202210-30	Third Party Advisory
https://security.netapp.com/advisory/ntap-20221104-0003/	Third Party Advisory
https://www.zerodayinitiative.com/advisories/ZDI-22-963/	Third Party Advisory VDB Entry

Configurations

Configuration 1 (hide)

cpe:2.3:a:x.org:xorg-server:21.1.0:*:*:*:*:*:*:*

History

21 Nov 2024, 07:00

Type	Values Removed	Values Added
References	~~() https://github.com/freedesktop/xorg-xserver/commit/dd8caf39e9e15d8f302e54045dd08d8ebf1025dc - Patch, Third Party Advisory~~	() https://github.com/freedesktop/xorg-xserver/commit/dd8caf39e9e15d8f302e54045dd08d8ebf1025dc - Patch, Third Party Advisory
References	~~() https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/938 - Patch, Third Party Advisory~~	() https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/938 - Patch, Third Party Advisory
References	~~() https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/939 - Patch, Third Party Advisory~~	() https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/939 - Patch, Third Party Advisory
References	~~() https://lists.freedesktop.org/archives/xorg-announce/2022-July/003192.html - Patch, Third Party Advisory~~	() https://lists.freedesktop.org/archives/xorg-announce/2022-July/003192.html - Patch, Third Party Advisory
References	~~() https://security.gentoo.org/glsa/202210-30 - Third Party Advisory~~	() https://security.gentoo.org/glsa/202210-30 - Third Party Advisory
References	~~() https://security.netapp.com/advisory/ntap-20221104-0003/ - Third Party Advisory~~	() https://security.netapp.com/advisory/ntap-20221104-0003/ - Third Party Advisory
References	~~() https://www.zerodayinitiative.com/advisories/ZDI-22-963/ - Third Party Advisory, VDB Entry~~	() https://www.zerodayinitiative.com/advisories/ZDI-22-963/ - Third Party Advisory, VDB Entry

03 Dec 2022, 01:12

Type	Values Removed	Values Added
References	~~(GENTOO) https://security.gentoo.org/glsa/202210-30 -~~	(GENTOO) https://security.gentoo.org/glsa/202210-30 - Third Party Advisory
References	~~(CONFIRM) https://security.netapp.com/advisory/ntap-20221104-0003/ -~~	(CONFIRM) https://security.netapp.com/advisory/ntap-20221104-0003/ - Third Party Advisory

04 Nov 2022, 16:15

Type	Values Removed	Values Added
References		(GENTOO) https://security.gentoo.org/glsa/202210-30 - (MISC) https://www.zerodayinitiative.com/advisories/ZDI-22-963/ - Third Party Advisory, VDB Entry (MISC) https://lists.freedesktop.org/archives/xorg-announce/2022-July/003192.html - Patch, Third Party Advisory (CONFIRM) https://security.netapp.com/advisory/ntap-20221104-0003/ -

07 Sep 2022, 19:54

Type	Values Removed	Values Added
References	~~(MISC) https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/938 -~~	(MISC) https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/938 - Patch, Third Party Advisory
References	~~(MISC) https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/939 -~~	(MISC) https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/939 - Patch, Third Party Advisory
References	~~(MISC) https://github.com/freedesktop/xorg-xserver/commit/dd8caf39e9e15d8f302e54045dd08d8ebf1025dc -~~	(MISC) https://github.com/freedesktop/xorg-xserver/commit/dd8caf39e9e15d8f302e54045dd08d8ebf1025dc - Patch, Third Party Advisory
CWE		CWE-787
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 7.8
CPE		cpe:2.3:a:x.org:xorg-server:21.1.0:::::::*

02 Sep 2022, 12:56

Type	Values Removed	Values Added
New CVE

Information

Published : 2022-09-01 21:15

Updated : 2024-11-21 07:00

NVD link : CVE-2022-2320

Mitre link : CVE-2022-2320

CVE.ORG link : CVE-2022-2320

JSON object : View

Products Affected

x.org

xorg-server

CWE

CWE-787

Out-of-bounds Write

{"id": "CVE-2022-2320", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.8}]}, "published": "2022-09-01T21:15:09.443", "references": [{"url": "https://github.com/freedesktop/xorg-xserver/commit/dd8caf39e9e15d8f302e54045dd08d8ebf1025dc", "tags": ["Patch", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/938", "tags": ["Patch", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/939", "tags": ["Patch", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://lists.freedesktop.org/archives/xorg-announce/2022-July/003192.html", "tags": ["Patch", "Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://security.gentoo.org/glsa/202210-30", "tags": ["Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://security.netapp.com/advisory/ntap-20221104-0003/", "tags": ["Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://www.zerodayinitiative.com/advisories/ZDI-22-963/", "tags": ["Third Party Advisory", "VDB Entry"], "source": "secalert@redhat.com"}, {"url": "https://github.com/freedesktop/xorg-xserver/commit/dd8caf39e9e15d8f302e54045dd08d8ebf1025dc", "tags": ["Patch", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/938", "tags": ["Patch", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/939", "tags": ["Patch", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://lists.freedesktop.org/archives/xorg-announce/2022-July/003192.html", "tags": ["Patch", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://security.gentoo.org/glsa/202210-30", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://security.netapp.com/advisory/ntap-20221104-0003/", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.zerodayinitiative.com/advisories/ZDI-22-963/", "tags": ["Third Party Advisory", "VDB Entry"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "secalert@redhat.com", "description": [{"lang": "en", "value": "CWE-787"}]}, {"type": "Secondary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-787"}]}], "descriptions": [{"lang": "en", "value": "A flaw was found in the Xorg-x11-server. The specific flaw exists within the handling of ProcXkbSetDeviceInfo requests. The issue results from the lack of proper validation of user-supplied data, which can result in a memory access past the end of an allocated buffer. This flaw allows an attacker to escalate privileges and execute arbitrary code in the context of root."}, {"lang": "es", "value": "Se ha encontrado un fallo en Xorg-x11-server. El fallo espec\u00edfico es producido en la administraci\u00f3n de las peticiones ProcXkbSetDeviceInfo. El problema es debido a que no se comprueban apropiadamente los datos suministrados por el usuario, lo que puede resultar en un acceso a la memoria m\u00e1s all\u00e1 del final de un b\u00fafer asignado. Este fallo permite a un atacante escalar privilegios y ejecutar c\u00f3digo arbitrario en el contexto de root"}], "lastModified": "2024-11-21T07:00:45.850", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:x.org:xorg-server:21.1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6EC28ACF-0355-4ACC-BA11-BAE5CBD03C1B"}], "operator": "OR"}]}], "sourceIdentifier": "secalert@redhat.com"}

7.8 /10