VDB
ALPINE-CVE-2020-14346
ALPINE-CVE-2020-14346
PUBLISHED
CVSS 7.800000190734863 HIGH
A flaw was found in xorg-x11-server before 1.20.9. An integer underflow in the X input extension protocol decoding in the X server may lead to arbitrary access of memory contents. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
Risk Scores
CVSS v3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Alpine:v3.10 | xorg-server | 0, 1.10.0-r0, 1.10.0.901-r0 |
| Alpine:v3.12 | xorg-server | 1.11.1-r1, 1.15.1-r0, 1.18.0-r0 |
| Alpine:v3.9 | xorg-server | 0, 1.10.0-r0, 1.10.0.901-r0 |
| Alpine:v3.11 | xorg-server | 1.18.4-r0, 1.18.4-r1, 1.18.4-r2 |
Timeline
- Sep 15, 2020 CVE Published
- Nov 19, 2025 CVE Updated
- Apr 30, 2026 Distribution Patch