DEBIAN-CVE-2013-4394

DEBIAN-CVE-2013-4394 PUBLISHED CVSS 6.900000095367432 MEDIUM

The SetX11Keyboard function in systemd, when PolicyKit Local Authority (PKLA) is used to change the group permissions on the X Keyboard Extension (XKB) layouts description, allows local users in the group to modify the Xorg X11 Server configuration file and possibly gain privileges via vectors involving "special and control characters."

Risk Scores

CVSS v4.0

6.900000095367432

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Affected Products

Vendor	Product	Versions
Debian:13	systemd	0, 0, 0
Debian:11	systemd	0, 0, 0
Debian:12	systemd	0, 0, 0
Debian:14	systemd	0, 0, 0

Timeline

Oct 28, 2013 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2013-4394 advisory

Open in Interactive Console →