CVE-2023-5380

CVSS 3.1 Score 4.7 of 10 (medium)

Details

Published Oct 25, 2023

Updated: May 22, 2024

CWE ID 416

Summary

CVE-2023-5380 is a use-after-free vulnerability affecting the xorg-x11-server. In a specific and legacy configuration, known as Zaphod mode, which involves a multi-screen setup with multiple protocol screens, an X server crash can occur. This vulnerability is triggered when the pointer is warped from a window on one screen to the root window of another screen, followed by the destruction of the original window and another window.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

X.Org Xserver
Red Hat Enterprise Linux
Fedora Operating System
Debian

Affected Vendors

Red Hat
Debian
Fedora Project
X.Org

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/s5DRkz
https://www.cve.org/CVERecord?id=CVE-2023-5380
https://nvd.nist.gov/vuln/detail/CVE-2023-5380

Back to Vulnerability Database