QwikSec

Security Database

CVE

CWE

Training

CVE-2021-4008

Published: Dec 17, 2021

Modified: Aug 3, 2024

PUBLISHED

Description

A flaw was found in xorg-x11-server in versions before 21.1.2 and before 1.20.14. An out-of-bounds access can occur in the SProcRenderCompositeGlyphs function. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

Vendor	Product	Versions
n/a	xorg-x11-server	affected `xorg-x11-server 21.1.2, xorg-x11-server 1.20.14`

Weaknesses (CWE)

References

https://lists.x.org/archives/xorg-announce/2021-December/003122.html

https://lists.x.org/archives/xorg-announce/2021-December/003124.html

FEDORA-2021-2eb603951b

vendor-advisory

FEDORA-2021-a7fd510294

vendor-advisory

https://www.zerodayinitiative.com/advisories/ZDI-21-1547/

vendor-advisory

[debian-lts-announce] 20211229 [SECURITY] [DLA 2869-1] xorg-server security update

mailing-list

FEDORA-2021-69e96c8f68

vendor-advisory

FEDORA-2021-664a6554a1

vendor-advisory

https://security.netapp.com/advisory/ntap-20220114-0004/

vendor-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.