CVE-2025-26598

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2025-26598

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-26598.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2025-26598

Related

Published

2025-02-25T16:15:38Z

Modified

2025-03-17T04:42:41.669669Z

Summary

[none]

Details

An out-of-bounds write flaw was found in X.Org and Xwayland. The function GetBarrierDevice() searches for the pointer device based on its device ID and returns the matching value, or supposedly NULL, if no match was found. However, the code will return the last element of the list if no matching device ID is found, which can lead to out-of-bounds memory access.

References

Affected packages

Debian:11 / xorg-server

Package

Name: xorg-server
Purl: pkg:deb/debian/xorg-server?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:1.20.11-1+deb11u15

Affected versions

2:1.*

2:1.20.11-1

2:1.20.11-1+deb11u1

2:1.20.11-1+deb11u2

2:1.20.11-1+deb11u3

2:1.20.11-1+deb11u4

2:1.20.11-1+deb11u5

2:1.20.11-1+deb11u6

2:1.20.11-1+deb11u7

2:1.20.11-1+deb11u8

2:1.20.11-1+deb11u9

2:1.20.11-1+deb11u10

2:1.20.11-1+deb11u11

2:1.20.11-1+deb11u12

2:1.20.11-1+deb11u13

2:1.20.11-1+deb11u14

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:12 / xorg-server

Package

Name: xorg-server
Purl: pkg:deb/debian/xorg-server?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:21.1.7-3+deb12u9

Affected versions

2:21.*

2:21.1.7-3

2:21.1.7-3+deb12u1

2:21.1.7-3+deb12u2

2:21.1.7-3+deb12u3

2:21.1.7-3+deb12u4

2:21.1.7-3+deb12u5

2:21.1.7-3+deb12u6

2:21.1.7-3+deb12u7

2:21.1.7-3+deb12u8

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / xorg-server

Package

Name: xorg-server
Purl: pkg:deb/debian/xorg-server?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:21.1.16-1

Affected versions

2:21.*

2:21.1.7-3

2:21.1.8-1

2:21.1.9-1

2:21.1.9-1+hurd.1

2:21.1.10-1

2:21.1.11-1

2:21.1.11-2

2:21.1.11-3

2:21.1.12-1

2:21.1.13-1

2:21.1.13-2

2:21.1.13-3

2:21.1.13-3.1

2:21.1.14-1

2:21.1.14-2

2:21.1.15-1

2:21.1.15-2

2:21.1.15-3

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:12 / xwayland

Package

Name: xwayland
Purl: pkg:deb/debian/xwayland?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

2:22.*

2:22.1.9-1

2:23.*

2:23.1.0-1

2:23.1.1-1

2:23.2.0-1

2:23.2.1-1

2:23.2.2-1

2:23.2.3-1

2:23.2.4-1

2:23.2.6-1

2:24.*

2:24.0.99.901-1

2:24.1.0-1

2:24.1.2-1

2:24.1.3-1

2:24.1.4-1

2:24.1.4-2

2:24.1.4-3

2:24.1.5-1

2:24.1.6-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / xwayland

Package

Name: xwayland
Purl: pkg:deb/debian/xwayland?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2:24.1.6-1

Affected versions

2:22.*

2:22.1.9-1

2:23.*

2:23.1.0-1

2:23.1.1-1

2:23.2.0-1

2:23.2.1-1

2:23.2.2-1

2:23.2.3-1

2:23.2.4-1

2:23.2.6-1

2:24.*

2:24.0.99.901-1

2:24.1.0-1

2:24.1.2-1

2:24.1.3-1

2:24.1.4-1

2:24.1.4-2

2:24.1.4-3

2:24.1.5-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}