Security Advisory

CVE-2023-6816

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-01-18 04:31:07

Last updated 2026-03-19 21:23:24

Assigner redhat

State PUBLISHED

Description

A flaw was found in X.Org server. Both DeviceFocusEvent and the XIQueryPointer reply contain a bit for each logical button currently down. Buttons can be arbitrarily mapped to any value up to 255, but the X.Org Server was only allocating space for the devices particular number of buttons, leading to a heap overflow if a bigger value was used.

← Browse all CVEs View on cve.org ↗