VDB

GCVE-VVD-MAGEIA-2021-573

GCVE-VVD-MAGEIA-2021-573
Advisory Published
Vulnetix · Advisory published December 21, 2021
Updated x11-server packages fix security vulnerabilities: The handler for the CompositeGlyphs request of the Render extension does not properly validate the request length leading to out of bounds memory write (CVE-2021-4008). The handler for the CreatePointerBarrier request of the XFixes extension does not properly validate the request length leading to out of bounds memory write (CVE-2021-4009). The handler for the Suspend request of the Screen Saver extension does not properly validate the request length leading to out of bounds memory write (CVE-2021-4010). The handlers for the RecordCreateContext and RecordRegisterClients requests of the Record extension do not properly validate the request length leading to out of bounds memory write (CVE-2021-4011). All of these issues can lead to local privileges elevation on systems where the X server is running privileged and remote code execution for ssh X forwarding sessions.
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiax11-server0 (affected), 1.20.14-1.mga8 (unaffected)

References

Updated x11-server packages fix security vulnerabilities
advisory
Updated x11-server packages fix security vulnerabilities
issue
Updated x11-server packages fix security vulnerabilities
issue

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›