Bugzilla – Bug 1222311
VUL-0: CVE-2024-31082: xorg-x11-server: Heap buffer overread/data leakage in ProcAppleDRICreatePixmap
Last modified: 2024-05-17 09:11:58 UTC
The ProcAppleDRICreatePixmap() function uses the byte-swapped length of the return data for the amount of data to return to the client, if the client has a different endianness than the X server. This function is only found in the Xquartz server for MacOS systems, and not in Xwayland, Xorg, or any other X servers. References: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-31082 https://gitlab.freedesktop.org/xorg/xserver/-/commit/96798fc1967491c80a4d0 https://seclists.org/oss-sec/2024/q2/22 https://gitlab.freedesktop.org/xorg/xserver/-/commit/3e77295f888c67fc7645d https://debbugs.gnu.org/cgi/bugreport.cgi?bug=69762 https://gitlab.freedesktop.org/xorg/xserver/-/commit/6c684d035c06fd41c727f https://gitlab.freedesktop.org/xorg/xserver/-/commit/bdca6c3d1f5057eeb3160 https://bugzilla.redhat.com/show_bug.cgi?id=2271999
xwayland not affected by this. XQuartz Xserver only.
xorg-x11-server done: - sle-12-sp5 - sle-15-sp2 - sle-15-sp4 - sle-15-sp5 - sle-15-sp6 - ALP
Reassigning back to security team.
SUSE-SU-2024:1199-1: An update that solves four vulnerabilities can now be installed. Category: security (important) Bug References: 1222309, 1222310, 1222311, 1222312 CVE References: CVE-2024-31080, CVE-2024-31081, CVE-2024-31082, CVE-2024-31083 Maintenance Incident: [SUSE:Maintenance:33211](https://smelt.suse.de/incident/33211/) Sources used: SUSE Linux Enterprise Software Development Kit 12 SP5 (src): xorg-x11-server-1.19.6-10.71.1 SUSE Linux Enterprise High Performance Computing 12 SP5 (src): xorg-x11-server-1.19.6-10.71.1 SUSE Linux Enterprise Server 12 SP5 (src): xorg-x11-server-1.19.6-10.71.1 SUSE Linux Enterprise Server for SAP Applications 12 SP5 (src): xorg-x11-server-1.19.6-10.71.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2024:1262-1: An update that solves four vulnerabilities and has one security fix can now be installed. Category: security (important) Bug References: 1222309, 1222310, 1222311, 1222312, 1222442 CVE References: CVE-2024-31080, CVE-2024-31081, CVE-2024-31082, CVE-2024-31083 Maintenance Incident: [SUSE:Maintenance:33214](https://smelt.suse.de/incident/33214/) Sources used: openSUSE Leap 15.5 (src): xorg-x11-server-21.1.4-150500.7.26.1 Basesystem Module 15-SP5 (src): xorg-x11-server-21.1.4-150500.7.26.1 Development Tools Module 15-SP5 (src): xorg-x11-server-21.1.4-150500.7.26.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2024:1261-1: An update that solves four vulnerabilities and has one security fix can now be installed. Category: security (important) Bug References: 1222309, 1222310, 1222311, 1222312, 1222442 CVE References: CVE-2024-31080, CVE-2024-31081, CVE-2024-31082, CVE-2024-31083 Maintenance Incident: [SUSE:Maintenance:33212](https://smelt.suse.de/incident/33212/) Sources used: SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (src): xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (src): xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (src): xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (src): xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (src): xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2 (src): xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server for SAP Applications 15 SP3 (src): xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Workstation Extension 15 SP5 (src): xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Enterprise Storage 7.1 (src): xorg-x11-server-1.20.3-150200.22.5.96.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2024:1260-1: An update that solves four vulnerabilities and has one security fix can now be installed. Category: security (important) Bug References: 1222309, 1222310, 1222311, 1222312, 1222442 CVE References: CVE-2024-31080, CVE-2024-31081, CVE-2024-31082, CVE-2024-31083 Maintenance Incident: [SUSE:Maintenance:33213](https://smelt.suse.de/incident/33213/) Sources used: openSUSE Leap 15.4 (src): xorg-x11-server-1.20.3-150400.38.48.1 SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (src): xorg-x11-server-1.20.3-150400.38.48.1 SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (src): xorg-x11-server-1.20.3-150400.38.48.1 SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (src): xorg-x11-server-1.20.3-150400.38.48.1 SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (src): xorg-x11-server-1.20.3-150400.38.48.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4 (src): xorg-x11-server-1.20.3-150400.38.48.1 SUSE Manager Proxy 4.3 (src): xorg-x11-server-1.20.3-150400.38.48.1 SUSE Manager Retail Branch Server 4.3 (src): xorg-x11-server-1.20.3-150400.38.48.1 SUSE Manager Server 4.3 (src): xorg-x11-server-1.20.3-150400.38.48.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.