Buffer Overflow Vulnerability in X.Org and Xwayland Products
CVE-2025-26597

7.8HIGH

Key Information:

Vendor: Red Hat
Status: Red Hat Enterprise Linux 6; Red Hat Enterprise Linux 7; Red Hat Enterprise Linux 8; Red Hat Enterprise Linux 9
Vendor: CVE Published:; 25 February 2025

Summary

A vulnerability exists within X.Org and Xwayland due to a buffer overflow flaw triggered by the function XkbChangeTypesOfKey(). When invoked with a specific group value of 0, it incorrectly resizes the key symbols table while leaving the key actions unchanged. This mismatch leads to potential buffer overflow issues if the function is subsequently called with a non-zero group value, as the key actions will not align with the resized key symbols table, resulting in unintended behavior or memory corruption.

References

https://access.redhat.com/security/cve/CVE-2025-26597

vdb-entryx_refsource_REDHAT

https://bugzilla.redhat.com/show_bug.cgi?id=2345255

issue-trackingx_refsource_REDHAT

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 25, 2025
Vulnerability Reserved
Feb 12, 2025