CVE-2025-26599
Public on 2025-02-25
Modified on 2025-02-28
Description
An access to an uninitialized pointer flaw was found in X.Org and Xwayland. The function compCheckRedirect() may fail if it cannot allocate the backing pixmap. In that case, compRedirectWindow() will return a BadAlloc error without validating the window tree marked just before, which leaves the validated data partly initialized and the use of an uninitialized pointer later.
CVSS v3 Base Score
See breakdown
Affected Packages
| Platform | Package | Release Date | Advisory | Status |
|---|---|---|---|---|
| Amazon Linux 1 | xorg-x11-server | No Fix Planned | ||
| Amazon Linux 2 - Core | xorg-x11-server | 2025-03-06 | ALAS2-2025-2791 | Fixed |
| Amazon Linux 2023 | xorg-x11-server | 2025-03-26 | ALAS2023-2025-892 | Fixed |
| Amazon Linux 2023 | xorg-x11-server-Xwayland | 2025-03-26 | ALAS2023-2025-895 | Fixed |
CVSS Scores
| Score Type | Score | Vector | |
|---|---|---|---|
| Amazon Linux | CVSSv3 | 4.5 | CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L |
| NVD | CVSSv3 | 7.8 | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |