Techly NewsGet the app

Get the latest tech news

Local Privilege Escalation Vulnerability Affecting X.Org Server For 18 Years


CVE-2024-9632 was made public today as the latest security vulnerability affecting the X.Org Server

By providing a modified bitmap to the X.Org Server, a heap-based buffer overflow privilege escalation can occur. This security issue is within _XkbSetCompatMap() and stems from not updating the heap size properly and can lead to local privilege escalation if the server is run as root or as a remote code execution with X11 over SSH. The X.Org Server 21.1.4 and XWayland 24.1.4 releases fix the issue, which was discovered by the Trend Micro Zero Day Initiative.

Get the Android app

Or read this on Phoronix

Read more on:

Photo of years

years

Photo of x.org

x.org

Photo of x.org server

x.org server

Related news:

News photo

Musk Speaks at FII, Years After Feud With Saudi Wealth Fund Boss

News photo

Google exempt from Online News Act for 5 years, must pay news outlets $100M: CRTC

News photo

UK man who used AI to create child sexual abuse imagery sentenced to 18 years in prison

« Sony closes Concord studio and permanently shuts down the game
Microsoft just made it way easier for developers to build AI apps — and it could be bad news for AWS »