Xorg X11 Server Out-of-Bounds Read Vulnerability in Animated Cursor Handling

Vulnerability

A flaw exists in the X Rendering extension of the Xorg X11 server's handling of animated cursors. When a client does not provide any cursors, the server incorrectly assumes that at least one is available. This misjudgment can lead to an out-of-bounds read, potentially causing a server crash.

Impact

Exploitation of this vulnerability leads to an out-of-bounds read, which can cause a crash of the Xorg X11 server.

Added: Jun 17, 2025, 4:49 PM

Updated: Jun 17, 2025, 4:49 PM

Vulnerability Rating

Custom Algorithm

spread

8.1

impact

2.5

exploitability

4.9

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.1

impact

2.5

exploitability

4.9

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Xorg X11 Server Out-of-Bounds Read Vulnerability in Animated Cursor Handling

Vulnerability

Impact

Affected Products

Red Hat xorg-x11-server

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating