QID 355062

Package updates are available for Amazon Linux that fix the following vulnerabilities:
CVE-2022-46344:
A vulnerability was found in X.Org. The issue occurs because the handler for the XIChangeProperty request has a length-validation issue, resulting in out-of-bounds memory reads and potential information disclosure. This flaw can lead to local privilege elevation on systems where the X server runs privileged and remote code execution for ssh X forwarding sessions. 2151760: CVE-2022-46344 xorg-x11-server: X.Org Server XIChangeProperty out-of-bounds access CVE-2022-46343:
A vulnerability was found in X.Org. This issue occurs because the handler for the ScreenSaverSetAttributes request may write to memory after it has been freed. This flaw can lead to local privileges elevation on systems where the X server runs privileged and remote code execution for ssh X forwarding sessions. 2151758: CVE-2022-46343 xorg-x11-server: X.Org Server ScreenSaverSetAttributes use-after-free CVE-2022-46342:
A vulnerability was found in X.Org. This flaw occurs because the handler for the XvdiSelectVideoNotify request may write to memory after it has been freed. This flaw can lead to local privilege elevation on systems where the X server runs privileged and remote code execution for ssh X forwarding sessions. 2151757: CVE-2022-46342 xorg-x11-server: X.Org Server XvdiSelectVideoNotify use-after-free CVE-2022-46341:
A vulnerability was found in X.Org. This issue occurs because the handler for the XIPassiveUngrab request accesses out-of-bounds memory when invoked with a high keycode or button code. This flaw can lead to local privilege elevation on systems where the X server runs privileged and remote code execution for ssh X forwarding sessions. 2151756: CVE-2022-46341 xorg-x11-server: X.Org Server XIPassiveUngrab out-of-bounds access CVE-2022-46340:
A vulnerability was found in X.Org. The issue occurs due to the swap handler for the XTestFakeInput request of the XTest extension, possibly corrupting the stack if GenericEvents with lengths larger than 32 bytes are sent through the XTestFakeInput request. This flaw can lead to local privilege elevation on systems where the X server runs privileged and remote code execution for ssh X forwarding sessions. This issue does not affect systems where the client and server use the same byte order. 2151755: CVE-2022-46340 xorg-x11-server: X.Org Server XTestSwapFakeInput stack overflow CVE-2022-4283:
A vulnerability was found in X.Org. This issue occurs because the XkbCopyNames function leaves a dangling pointer to freed memory, resulting in out-of-bounds memory access on subsequent XkbGetKbdByName requests. This flaw can lead to local privilege elevation on systems where the X server runs privileged and remote code execution for ssh X forwarding sessions. 2151761: CVE-2022-4283 xorg-x11-server: X.Org Server XkbGetKbdByName use-after-free CVE-2022-2320:
A flaw was found in the Xorg-x11-server. The specific flaw exists within the handling of ProcXkbSetDeviceInfo requests. The issue results from the lack of proper validation of user-supplied data, which can result in a memory access past the end of an allocated buffer. This flaw allows an attacker to escalate privileges and execute arbitrary code in the context of root. 2106683: CVE-2022-2320 xorg-x11-server: out-of-bounds access in ProcXkbSetDeviceInfo request handler of the Xkb extension

Successful exploitation of this vulnerability could lead to a security breach or could affect integrity, availability, and confidentiality.