CVE-2020-14346
7.8HIGHA flaw was found in xorg-x11-server before 1.20.9. An integer underflow in the X input extension protocol decoding in the X server may lead to arbitrary access of memory contents. The highest threat f
Published: 9/15/2020Updated: 8/29/2025
Description
A flaw was found in xorg-x11-server before 1.20.9. An integer underflow in the X input extension protocol decoding in the X server may lead to arbitrary access of memory contents. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
AI AnalysisPowered by AI
Affected Products
x.orgx_server
canonicalubuntu_linux
14.04
redhatenterprise_linux
6.0
redhatenterprise_linux
7.0
redhatenterprise_linux
8.0
References
- https://bugzilla.redhat.com/show_bug.cgi?id=1862246Issue TrackingThird Party Advisory
- https://lists.x.org/archives/xorg-announce/2020-August/003058.htmlMailing ListPatchVendor Advisory
- https://security.gentoo.org/glsa/202012-01Third Party Advisory
- https://usn.ubuntu.com/4488-2/Third Party Advisory
- https://www.zerodayinitiative.com/advisories/ZDI-20-1417/Third Party AdvisoryVDB Entry
- https://bugzilla.redhat.com/show_bug.cgi?id=1862246Issue TrackingThird Party Advisory
- https://lists.x.org/archives/xorg-announce/2020-August/003058.htmlMailing ListPatchVendor Advisory
- https://security.gentoo.org/glsa/202012-01Third Party Advisory
- https://usn.ubuntu.com/4488-2/Third Party Advisory
- https://www.zerodayinitiative.com/advisories/ZDI-20-1417/Third Party AdvisoryVDB Entry