CVE-2025-62230
7.3
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H
Exploitability: 1.8 / Impact: 5.5
Source: secalert@redhat.com (Secondary)
Description
A flaw was discovered in the X.Org X server’s X Keyboard (Xkb) extension when handling client resource cleanup. The software frees certain data structures without properly detaching related resources, leading to a use-after-free condition. This can cause memory corruption or a crash when affected clients disconnect.
Affected (24)
Configuration A
Configuration B
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Version 11.0 |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Version 10.0 | |
| Version 8.2 | |
| Version 6.0 | |
| Version 8.4 | |
| Version 8.6 | |
| Version 8.6 |
References (38)
Source: secalert@redhat.com
Third Party Advisory
Source: secalert@redhat.com
Issue TrackingThird Party Advisory
Source: secalert@redhat.com
Mailing ListVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListPatch
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Timeline
No history available yet.