Rapid7 Vulnerability & Exploit Database

Oracle Linux: CVE-2020-14344: ELSA-2021-1804: userspace graphics, xorg-x11, and mesa security, bug fix, and enhancement update (MODERATE) (Multiple Advisories)

Free InsightVM Trial No Credit Card Necessary

2024 Attack Intel Report Latest research by Rapid7 Labs

Back to Search

Oracle Linux: CVE-2020-14344: ELSA-2021-1804: userspace graphics, xorg-x11, and mesa security, bug fix, and enhancement update (MODERATE) (Multiple Advisories)

Severity

CVSS

(AV:L/AC:L/Au:N/C:P/I:P/A:P)

Published

07/31/2020

Created

05/29/2021

Added

05/26/2021

Modified

08/06/2024

Description

An integer overflow leading to a heap-buffer overflow was found in The X Input Method (XIM) client was implemented in libX11 before version 1.6.10. As per upstream this is security relevant when setuid programs call XIM client functions while running with elevated privileges. No such programs are shipped with Red Hat Enterprise Linux.

Solution(s)

oracle-linux-upgrade-egl-wayland
oracle-linux-upgrade-libdrm
oracle-linux-upgrade-libdrm-devel
oracle-linux-upgrade-libglvnd
oracle-linux-upgrade-libglvnd-core-devel
oracle-linux-upgrade-libglvnd-devel
oracle-linux-upgrade-libglvnd-egl
oracle-linux-upgrade-libglvnd-gles
oracle-linux-upgrade-libglvnd-glx
oracle-linux-upgrade-libglvnd-opengl
oracle-linux-upgrade-libinput
oracle-linux-upgrade-libinput-devel
oracle-linux-upgrade-libinput-utils
oracle-linux-upgrade-libwacom
oracle-linux-upgrade-libwacom-data
oracle-linux-upgrade-libwacom-devel
oracle-linux-upgrade-libx11
oracle-linux-upgrade-libx11-common
oracle-linux-upgrade-libx11-devel
oracle-linux-upgrade-libx11-xcb
oracle-linux-upgrade-mesa-dri-drivers
oracle-linux-upgrade-mesa-filesystem
oracle-linux-upgrade-mesa-libegl
oracle-linux-upgrade-mesa-libegl-devel
oracle-linux-upgrade-mesa-libgbm
oracle-linux-upgrade-mesa-libgbm-devel
oracle-linux-upgrade-mesa-libgl
oracle-linux-upgrade-mesa-libgl-devel
oracle-linux-upgrade-mesa-libglapi
oracle-linux-upgrade-mesa-libosmesa
oracle-linux-upgrade-mesa-libosmesa-devel
oracle-linux-upgrade-mesa-libxatracker
oracle-linux-upgrade-mesa-vdpau-drivers
oracle-linux-upgrade-mesa-vulkan-devel
oracle-linux-upgrade-mesa-vulkan-drivers
oracle-linux-upgrade-xorg-x11-drivers
oracle-linux-upgrade-xorg-x11-server-common
oracle-linux-upgrade-xorg-x11-server-devel
oracle-linux-upgrade-xorg-x11-server-source
oracle-linux-upgrade-xorg-x11-server-xdmx
oracle-linux-upgrade-xorg-x11-server-xephyr
oracle-linux-upgrade-xorg-x11-server-xnest
oracle-linux-upgrade-xorg-x11-server-xorg
oracle-linux-upgrade-xorg-x11-server-xvfb
oracle-linux-upgrade-xorg-x11-server-xwayland

References

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;

Rapid7 Vulnerability & Exploit Database

Oracle Linux: CVE-2020-14344: ELSA-2021-1804: userspace graphics, xorg-x11, and mesa security, bug fix, and enhancement update (MODERATE) (Multiple Advisories)

Oracle Linux: CVE-2020-14344: ELSA-2021-1804: userspace graphics, xorg-x11, and mesa security, bug fix, and enhancement update (MODERATE) (Multiple Advisories)

Description

Solution(s)

References

Success! Thank you for submission. We will be in touch shortly.

Oops! There was a problem in submission. Please try again.

Submit your information and we will get in touch with you.