QID 354658
Date Published: 2023-01-24
QID 354658: Amazon Linux Security Advisory for xorg-x11-server : ALAS2-2023-1910
A vulnerability classified as critical was found in x.org server.
Affected by this vulnerability is the function _getcountedstring of the file xkb/xkb.c.
The manipulation leads to buffer overflow.
It is recommended to apply a patch to fix this issue.
The associated identifier of this vulnerability is vdb-211051. (
( CVE-2022-3550) a vulnerability, which was classified as problematic, has been found in x.org server.
Affected by this issue is the function procxkbgetkbdbyname of the file xkb/xkb.c.
The manipulation leads to memory leak.
The identifier of this vulnerability is vdb-211052. (
( CVE-2022-3551)
Note: The preceding description block is extracted directly from the security advisory. Using automation, we have attempted to clean and format it as much as possible without introducing additional issues.
Successful exploitation of this vulnerability could lead to a securitybreach or could affect integrity, availability, and confidentiality.
Solution
Please refer to Amazon advisory: ALAS2-2023-1910 for affected packages and patching details, or update with your package manager.
Vendor References
- ALAS2-2023-1910 -
alas.aws.amazon.com/AL2/ALAS-2023-1910.html
CVEs related to QID 354658
Software Advisories
| Advisory ID | Software | Component | Link |
|---|---|---|---|
| ALAS2-2023-1910 | amazon linux 2 |
alas.aws.amazon.com/AL2/ALAS-2023-1910.html |