CVE-2013-4394

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2013-4394

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2013-4394.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2013-4394

Downstream

DEBIAN-CVE-2013-4394

DSA-2777-1

Published

2013-10-28T22:55:03Z

Modified

2025-08-09T19:01:28Z

Summary

[none]

Details

The SetX11Keyboard function in systemd, when PolicyKit Local Authority (PKLA) is used to change the group permissions on the X Keyboard Extension (XKB) layouts description, allows local users in the group to modify the Xorg X11 Server configuration file and possibly gain privileges via vectors involving "special and control characters."

References

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=725357
http://www.debian.org/security/2013/dsa-2777
http://www.openwall.com/lists/oss-security/2013/10/01/9
https://bugzilla.redhat.com/show_bug.cgi?id=862324
https://security.gentoo.org/glsa/201612-34

CVE-2013-4394

Affected packages