CVE-2023-43785

Summary

CVE	CVE-2023-43785
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2023-10-10 13:15:00 UTC
Updated	2023-11-07 04:21:00 UTC
Description	A vulnerability was found in libX11 due to a boundary condition within the _XkbReadKeySyms() function. This flaw allows a local user to trigger an out-of-bounds read error and read the contents of memory on the system.

Risk And Classification

Problem Types: CWE-125

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Operating System	Fedoraproject	Fedora	38	All	All	All
Operating System	Redhat	Enterprise Linux	8.0	All	All	All
Operating System	Redhat	Enterprise Linux	9.0	All	All	All
Application	X.org	Libx11	All	All	All	All

References

Reference	Source	Link	Tags
2242252 – (CVE-2023-43785) CVE-2023-43785 libX11: out-of-bounds memory access in _XkbReadKeySyms()	MISC	bugzilla.redhat.com
October 2023 libX11 Vulnerabilities in NetApp Products \| NetApp Product Security	MISC	security.netapp.com
cve-details	MISC	access.redhat.com
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

Legacy QID Mappings

199800 Ubuntu Security Notification for libx11 Vulnerabilities (USN-6407-1)
199821 Ubuntu Security Notification for libx11 Vulnerabilities (USN-6407-2)
285225 Fedora Security Update for libX11 (FEDORA-2023-06bff5611a)
296108 Oracle Solaris 11.4 Support Repository Update (SRU) 66.164.1 Missing (CPUJAN2024)
356439 Amazon Linux Security Advisory for libX11 : ALAS2-2023-2296
356449 Amazon Linux Security Advisory for libX11 : ALAS-2023-1859
356542 Amazon Linux Security Advisory for libX11 : ALAS2023-2023-383
356979 Amazon Linux Security Advisory for libX11 : AL2012-2023-463
503467 Alpine Linux Security Update for libx11
505891 Alpine Linux Security Update for libx11
6000133 Debian Security Update for libx11 (DLA 3602-1)
6000211 Debian Security Update for libx11 (DSA 5517-1)
673510 EulerOS Security Update for libx11 (EulerOS-SA-2023-3249)
673653 EulerOS Security Update for libx11 (EulerOS-SA-2024-1150)
673658 EulerOS Security Update for libx11 (EulerOS-SA-2024-1281)
673682 EulerOS Security Update for libx11 (EulerOS-SA-2024-1089)
673699 EulerOS Security Update for libx11 (EulerOS-SA-2023-3310)
673940 EulerOS Security Update for libx11 (EulerOS-SA-2023-3277)
674022 EulerOS Security Update for libx11 (EulerOS-SA-2023-3342)
674040 EulerOS Security Update for libx11 (EulerOS-SA-2024-1065)
691325 Free Berkeley Software Distribution (FreeBSD) Security Update for 11/libx11 Multiple Vulnerabilities (bd92f1ab-690c-11ee-9ed0-001fc69cd6dc)
755028 SUSE Enterprise Linux Security Update for libX11 (SUSE-SU-2023:3963-1)
755044 SUSE Enterprise Linux Security Update for libX11 (SUSE-SU-2023:3989-1)
907540 Common Base Linux Mariner (CBL-Mariner) Security Update for libX11 (31320-1)