Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/136807?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/136807?format=api", "purl": "pkg:deb/debian/xwayland@2:22.1.9-1?distro=trixie", "type": "deb", "namespace": "debian", "name": "xwayland", "version": "2:22.1.9-1", "qualifiers": { "distro": "trixie" }, "subpath": "", "is_vulnerable": true, "next_non_vulnerable_version": "2:23.2.2-1", "latest_non_vulnerable_version": "2:24.1.12-1", "affected_by_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91480?format=api", "vulnerability_id": "VCID-1hen-4651-9fay", "summary": "xorg-x11-server: heap buffer overflow in XISendDeviceHierarchyEvent", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21885.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21885.json" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256540", "reference_id": "2256540", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256540" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0320", "reference_id": "RHSA-2024:0320", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0320" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0557", "reference_id": "RHSA-2024:0557", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0557" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0558", "reference_id": "RHSA-2024:0558", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0558" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0597", "reference_id": "RHSA-2024:0597", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0597" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0607", "reference_id": "RHSA-2024:0607", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0607" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0614", "reference_id": "RHSA-2024:0614", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0614" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0617", "reference_id": "RHSA-2024:0617", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0617" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0621", "reference_id": "RHSA-2024:0621", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0621" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0626", "reference_id": "RHSA-2024:0626", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0626" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0629", "reference_id": "RHSA-2024:0629", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0629" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2170", "reference_id": "RHSA-2024:2170", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2996", "reference_id": "RHSA-2024:2996", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2996" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136823?format=api", "purl": "pkg:deb/debian/xwayland@2:23.2.4-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:23.2.4-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-21885" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1hen-4651-9fay" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/90720?format=api", "vulnerability_id": "VCID-4q3g-1az1-ybd6", "summary": "xorg-x11-server: Use-after-free in ProcRenderAddGlyphs", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31083.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31083.json" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272000", "reference_id": "2272000", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272000" }, { "reference_url": "https://security.gentoo.org/glsa/202411-08", "reference_id": "GLSA-202411-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202411-08" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:1785", "reference_id": "RHSA-2024:1785", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:1785" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2036", "reference_id": "RHSA-2024:2036", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2036" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2037", "reference_id": "RHSA-2024:2037", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2037" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2038", "reference_id": "RHSA-2024:2038", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2038" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2039", "reference_id": "RHSA-2024:2039", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2039" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2040", "reference_id": "RHSA-2024:2040", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2040" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2041", "reference_id": "RHSA-2024:2041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2042", "reference_id": "RHSA-2024:2042", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2042" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2080", "reference_id": "RHSA-2024:2080", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2080" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2616", "reference_id": "RHSA-2024:2616", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2616" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3258", "reference_id": "RHSA-2024:3258", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:3258" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3261", "reference_id": "RHSA-2024:3261", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:3261" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3343", "reference_id": "RHSA-2024:3343", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:3343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9093", "reference_id": "RHSA-2024:9093", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:9093" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9122", "reference_id": "RHSA-2024:9122", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:9122" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136824?format=api", "purl": "pkg:deb/debian/xwayland@2:23.2.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:23.2.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-31083" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4q3g-1az1-ybd6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91745?format=api", "vulnerability_id": "VCID-67p9-ddez-7ka1", "summary": "xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6377.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6377.json" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253291", "reference_id": "2253291", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253291" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7886", "reference_id": "RHSA-2023:7886", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7886" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0006", "reference_id": "RHSA-2024:0006", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0006" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0009", "reference_id": "RHSA-2024:0009", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0009" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0010", "reference_id": "RHSA-2024:0010", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0010" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0014", "reference_id": "RHSA-2024:0014", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0014" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0015", "reference_id": "RHSA-2024:0015", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0015" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0016", "reference_id": "RHSA-2024:0016", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0016" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0017", "reference_id": "RHSA-2024:0017", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0017" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0018", "reference_id": "RHSA-2024:0018", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0018" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0020", "reference_id": "RHSA-2024:0020", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0020" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2170", "reference_id": "RHSA-2024:2170", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2996", "reference_id": "RHSA-2024:2996", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2996" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:13998", "reference_id": "RHSA-2025:13998", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:13998" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136821?format=api", "purl": "pkg:deb/debian/xwayland@2:23.2.3-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:23.2.3-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-6377" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-67p9-ddez-7ka1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80411?format=api", "vulnerability_id": "VCID-6t55-ed2e-2bcw", "summary": "xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Integer Overflow in Big Requests Extension", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49176.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49176.json" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108073", "reference_id": "1108073", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108073" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369", "reference_id": "1108369", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369954", "reference_id": "2369954", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369954" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10258", "reference_id": "RHSA-2025:10258", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10258" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10342", "reference_id": "RHSA-2025:10342", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10343", "reference_id": "RHSA-2025:10343", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10344", "reference_id": "RHSA-2025:10344", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10346", "reference_id": "RHSA-2025:10346", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10346" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10347", "reference_id": "RHSA-2025:10347", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10347" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10348", "reference_id": "RHSA-2025:10348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10349", "reference_id": "RHSA-2025:10349", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10349" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10350", "reference_id": "RHSA-2025:10350", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10350" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10351", "reference_id": "RHSA-2025:10351", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10351" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10352", "reference_id": "RHSA-2025:10352", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10355", "reference_id": "RHSA-2025:10355", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10355" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10356", "reference_id": "RHSA-2025:10356", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10356" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10360", "reference_id": "RHSA-2025:10360", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10360" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10370", "reference_id": "RHSA-2025:10370", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10370" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10374", "reference_id": "RHSA-2025:10374", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10374" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10375", "reference_id": "RHSA-2025:10375", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10375" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10376", "reference_id": "RHSA-2025:10376", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10376" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10377", "reference_id": "RHSA-2025:10377", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10377" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10378", "reference_id": "RHSA-2025:10378", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10378" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10381", "reference_id": "RHSA-2025:10381", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10381" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10410", "reference_id": "RHSA-2025:10410", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10410" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9303", "reference_id": "RHSA-2025:9303", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9303" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9304", "reference_id": "RHSA-2025:9304", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9304" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9305", "reference_id": "RHSA-2025:9305", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9305" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9306", "reference_id": "RHSA-2025:9306", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9306" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9392", "reference_id": "RHSA-2025:9392", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9964", "reference_id": "RHSA-2025:9964", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9964" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136828?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.8-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.8-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-49176" ], "risk_score": 3.3, "exploitability": "0.5", "weighted_severity": "6.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6t55-ed2e-2bcw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91489?format=api", "vulnerability_id": "VCID-828y-hsz4-tqbe", "summary": "xorg-x11-server: reattaching to different master device may lead to out-of-bounds memory access", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0229.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0229.json" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256690", "reference_id": "2256690", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256690" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0320", "reference_id": "RHSA-2024:0320", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0320" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0557", "reference_id": "RHSA-2024:0557", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0557" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0558", "reference_id": "RHSA-2024:0558", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0558" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0597", "reference_id": "RHSA-2024:0597", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0597" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0607", "reference_id": "RHSA-2024:0607", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0607" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0614", "reference_id": "RHSA-2024:0614", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0614" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0617", "reference_id": "RHSA-2024:0617", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0617" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0621", "reference_id": "RHSA-2024:0621", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0621" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0626", "reference_id": "RHSA-2024:0626", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0626" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0629", "reference_id": "RHSA-2024:0629", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0629" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2170", "reference_id": "RHSA-2024:2170", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2996", "reference_id": "RHSA-2024:2996", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2996" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136823?format=api", "purl": "pkg:deb/debian/xwayland@2:23.2.4-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:23.2.4-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-0229" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-828y-hsz4-tqbe" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73042?format=api", "vulnerability_id": "VCID-8h6n-ntrj-q7g6", "summary": "xorg: xwayland: Use-after-free in Xkb client resource removal", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-62230.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-62230.json" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2402653", "reference_id": "2402653", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2402653" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19432", "reference_id": "RHSA-2025:19432", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19432" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19433", "reference_id": "RHSA-2025:19433", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19433" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19434", "reference_id": "RHSA-2025:19434", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19434" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19435", "reference_id": "RHSA-2025:19435", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19435" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19489", "reference_id": "RHSA-2025:19489", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19489" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19623", "reference_id": "RHSA-2025:19623", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19623" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19909", "reference_id": "RHSA-2025:19909", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19909" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20958", "reference_id": "RHSA-2025:20958", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:20958" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20960", "reference_id": "RHSA-2025:20960", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:20960" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20961", "reference_id": "RHSA-2025:20961", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:20961" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:21035", "reference_id": "RHSA-2025:21035", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:21035" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22040", "reference_id": "RHSA-2025:22040", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22040" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22041", "reference_id": "RHSA-2025:22041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22051", "reference_id": "RHSA-2025:22051", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22051" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22055", "reference_id": "RHSA-2025:22055", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22055" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22056", "reference_id": "RHSA-2025:22056", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22056" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22077", "reference_id": "RHSA-2025:22077", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22077" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22096", "reference_id": "RHSA-2025:22096", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22096" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22164", "reference_id": "RHSA-2025:22164", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22164" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22167", "reference_id": "RHSA-2025:22167", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22167" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22364", "reference_id": "RHSA-2025:22364", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22364" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22365", "reference_id": "RHSA-2025:22365", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22365" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22426", "reference_id": "RHSA-2025:22426", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22426" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22427", "reference_id": "RHSA-2025:22427", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22427" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22667", "reference_id": "RHSA-2025:22667", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22667" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22729", "reference_id": "RHSA-2025:22729", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22729" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22742", "reference_id": "RHSA-2025:22742", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22742" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22753", "reference_id": "RHSA-2025:22753", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22753" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0031", "reference_id": "RHSA-2026:0031", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0031" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0033", "reference_id": "RHSA-2026:0033", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0033" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0034", "reference_id": "RHSA-2026:0034", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0034" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0035", "reference_id": "RHSA-2026:0035", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0035" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0036", "reference_id": "RHSA-2026:0036", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0036" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136832?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.9-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-62230" ], "risk_score": 3.3, "exploitability": "0.5", "weighted_severity": "6.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8h6n-ntrj-q7g6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/62126?format=api", "vulnerability_id": "VCID-8mr3-m631-ykff", "summary": "xorg: xwayland: X.Org X server: Information exposure and denial of service via out-of-bounds memory access", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-34003.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-34003.json" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451113", "reference_id": "2451113", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451113" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10739", "reference_id": "RHSA-2026:10739", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10739" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11352", "reference_id": "RHSA-2026:11352", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:11352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11369", "reference_id": "RHSA-2026:11369", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:11369" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11388", "reference_id": "RHSA-2026:11388", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:11388" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11656", "reference_id": "RHSA-2026:11656", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:11656" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11692", "reference_id": "RHSA-2026:11692", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:11692" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13414", "reference_id": "RHSA-2026:13414", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13414" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19125", "reference_id": "RHSA-2026:19125", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19125" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19342", "reference_id": "RHSA-2026:19342", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19343", "reference_id": "RHSA-2026:19343", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19344", "reference_id": "RHSA-2026:19344", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20547", "reference_id": "RHSA-2026:20547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20547" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20555", "reference_id": "RHSA-2026:20555", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20555" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20557", "reference_id": "RHSA-2026:20557", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20557" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20558", "reference_id": "RHSA-2026:20558", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20558" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20560", "reference_id": "RHSA-2026:20560", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20560" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20561", "reference_id": "RHSA-2026:20561", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20561" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20562", "reference_id": "RHSA-2026:20562", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20562" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20563", "reference_id": "RHSA-2026:20563", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20563" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20575", "reference_id": "RHSA-2026:20575", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20575" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20576", "reference_id": "RHSA-2026:20576", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20576" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20590", "reference_id": "RHSA-2026:20590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21699", "reference_id": "RHSA-2026:21699", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:21699" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21712", "reference_id": "RHSA-2026:21712", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:21712" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21715", "reference_id": "RHSA-2026:21715", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:21715" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21716", "reference_id": "RHSA-2026:21716", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:21716" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21718", "reference_id": "RHSA-2026:21718", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:21718" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21741", "reference_id": "RHSA-2026:21741", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:21741" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21742", "reference_id": "RHSA-2026:21742", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:21742" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:22424", "reference_id": "RHSA-2026:22424", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:22424" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:22456", "reference_id": "RHSA-2026:22456", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:22456" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:23254", "reference_id": "RHSA-2026:23254", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:23254" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136835?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.10-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.10-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-34003" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8mr3-m631-ykff" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85250?format=api", "vulnerability_id": "VCID-95dx-8w8k-4kfp", "summary": "xorg: xwayland: Out-of-bounds write in CreatePointerBarrierClient()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26598.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26598.json" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906", "reference_id": "1098906", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907", "reference_id": "1098907", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345254", "reference_id": "2345254", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345254" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2500", "reference_id": "RHSA-2025:2500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2502", "reference_id": "RHSA-2025:2502", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2861", "reference_id": "RHSA-2025:2861", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2861" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2862", "reference_id": "RHSA-2025:2862", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2862" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2865", "reference_id": "RHSA-2025:2865", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2865" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2866", "reference_id": "RHSA-2025:2866", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2873", "reference_id": "RHSA-2025:2873", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2873" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2874", "reference_id": "RHSA-2025:2874", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2874" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2875", "reference_id": "RHSA-2025:2875", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2879", "reference_id": "RHSA-2025:2879", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2879" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2880", "reference_id": "RHSA-2025:2880", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2880" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3976", "reference_id": "RHSA-2025:3976", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:3976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7163", "reference_id": "RHSA-2025:7163", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7165", "reference_id": "RHSA-2025:7165", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7458", "reference_id": "RHSA-2025:7458", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7458" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-26598" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-95dx-8w8k-4kfp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85245?format=api", "vulnerability_id": "VCID-96ga-avmd-kubh", "summary": "xorg: xwayland: Use-after-free in PlayReleasedEvents()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26600.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26600.json" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906", "reference_id": "1098906", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907", "reference_id": "1098907", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345252", "reference_id": "2345252", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345252" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2500", "reference_id": "RHSA-2025:2500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2502", "reference_id": "RHSA-2025:2502", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2861", "reference_id": "RHSA-2025:2861", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2861" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2862", "reference_id": "RHSA-2025:2862", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2862" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2865", "reference_id": "RHSA-2025:2865", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2865" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2866", "reference_id": "RHSA-2025:2866", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2873", "reference_id": "RHSA-2025:2873", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2873" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2874", "reference_id": "RHSA-2025:2874", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2874" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2875", "reference_id": "RHSA-2025:2875", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2879", "reference_id": "RHSA-2025:2879", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2879" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2880", "reference_id": "RHSA-2025:2880", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2880" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3976", "reference_id": "RHSA-2025:3976", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:3976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7163", "reference_id": "RHSA-2025:7163", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7165", "reference_id": "RHSA-2025:7165", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7458", "reference_id": "RHSA-2025:7458", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7458" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-26600" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-96ga-avmd-kubh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80475?format=api", "vulnerability_id": "VCID-9pnm-jep8-3bf9", "summary": "xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Integer overflow in X Record extension", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49179.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49179.json" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369", "reference_id": "1108369", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369978", "reference_id": "2369978", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369978" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10258", "reference_id": "RHSA-2025:10258", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10258" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10342", "reference_id": "RHSA-2025:10342", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10343", "reference_id": "RHSA-2025:10343", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10344", "reference_id": "RHSA-2025:10344", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10346", "reference_id": "RHSA-2025:10346", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10346" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10347", "reference_id": "RHSA-2025:10347", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10347" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10348", "reference_id": "RHSA-2025:10348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10349", "reference_id": "RHSA-2025:10349", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10349" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10350", "reference_id": "RHSA-2025:10350", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10350" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10351", "reference_id": "RHSA-2025:10351", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10351" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10352", "reference_id": "RHSA-2025:10352", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10355", "reference_id": "RHSA-2025:10355", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10355" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10356", "reference_id": "RHSA-2025:10356", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10356" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10360", "reference_id": "RHSA-2025:10360", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10360" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10370", "reference_id": "RHSA-2025:10370", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10370" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10374", "reference_id": "RHSA-2025:10374", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10374" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10375", "reference_id": "RHSA-2025:10375", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10375" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10376", "reference_id": "RHSA-2025:10376", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10376" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10377", "reference_id": "RHSA-2025:10377", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10377" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10378", "reference_id": "RHSA-2025:10378", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10378" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10381", "reference_id": "RHSA-2025:10381", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10381" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10410", "reference_id": "RHSA-2025:10410", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10410" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9303", "reference_id": "RHSA-2025:9303", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9303" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9304", "reference_id": "RHSA-2025:9304", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9304" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9305", "reference_id": "RHSA-2025:9305", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9305" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9306", "reference_id": "RHSA-2025:9306", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9306" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9392", "reference_id": "RHSA-2025:9392", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9964", "reference_id": "RHSA-2025:9964", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9964" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136828?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.8-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.8-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-49179" ], "risk_score": 3.3, "exploitability": "0.5", "weighted_severity": "6.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9pnm-jep8-3bf9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91494?format=api", "vulnerability_id": "VCID-czx3-mdx4-hbey", "summary": "xorg-x11-server: SELinux unlabeled GLX PBuffer", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0408.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0408.json" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257689", "reference_id": "2257689", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257689" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0320", "reference_id": "RHSA-2024:0320", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0320" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2170", "reference_id": "RHSA-2024:2170", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2996", "reference_id": "RHSA-2024:2996", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2996" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136823?format=api", "purl": "pkg:deb/debian/xwayland@2:23.2.4-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:23.2.4-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-0408" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-czx3-mdx4-hbey" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91496?format=api", "vulnerability_id": "VCID-fr1v-dcuh-jbhs", "summary": "xorg-x11-server: SELinux context corruption", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0409.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0409.json" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257690", "reference_id": "2257690", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257690" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0320", "reference_id": "RHSA-2024:0320", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0320" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2170", "reference_id": "RHSA-2024:2170", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2996", "reference_id": "RHSA-2024:2996", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2996" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136823?format=api", "purl": "pkg:deb/debian/xwayland@2:23.2.4-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:23.2.4-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-0409" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fr1v-dcuh-jbhs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80443?format=api", "vulnerability_id": "VCID-gq7x-petb-hfau", "summary": "xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Unprocessed Client Request Due to Bytes to Ignore", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49178.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49178.json" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369", "reference_id": "1108369", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369977", "reference_id": "2369977", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369977" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10258", "reference_id": "RHSA-2025:10258", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10258" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10342", "reference_id": "RHSA-2025:10342", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10343", "reference_id": "RHSA-2025:10343", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10344", "reference_id": "RHSA-2025:10344", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10346", "reference_id": "RHSA-2025:10346", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10346" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10347", "reference_id": "RHSA-2025:10347", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10347" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10348", "reference_id": "RHSA-2025:10348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10349", "reference_id": "RHSA-2025:10349", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10349" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10350", "reference_id": "RHSA-2025:10350", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10350" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10351", "reference_id": "RHSA-2025:10351", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10351" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10352", "reference_id": "RHSA-2025:10352", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10355", "reference_id": "RHSA-2025:10355", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10355" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10356", "reference_id": "RHSA-2025:10356", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10356" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10360", "reference_id": "RHSA-2025:10360", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10360" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10370", "reference_id": "RHSA-2025:10370", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10370" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10374", "reference_id": "RHSA-2025:10374", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10374" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10375", "reference_id": "RHSA-2025:10375", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10375" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10376", "reference_id": "RHSA-2025:10376", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10376" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10377", "reference_id": "RHSA-2025:10377", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10377" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10378", "reference_id": "RHSA-2025:10378", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10378" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10381", "reference_id": "RHSA-2025:10381", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10381" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10410", "reference_id": "RHSA-2025:10410", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10410" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9303", "reference_id": "RHSA-2025:9303", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9303" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9304", "reference_id": "RHSA-2025:9304", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9304" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9305", "reference_id": "RHSA-2025:9305", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9305" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9306", "reference_id": "RHSA-2025:9306", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9306" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9392", "reference_id": "RHSA-2025:9392", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9964", "reference_id": "RHSA-2025:9964", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9964" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136828?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.8-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.8-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-49178" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gq7x-petb-hfau" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/62177?format=api", "vulnerability_id": "VCID-mksc-f652-2qcd", "summary": "xorg: xwayland: X.Org X server: Denial of Service via integer underflow in XKB compatibility map handling", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-33999.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-33999.json" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451106", "reference_id": "2451106", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451106" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10739", "reference_id": "RHSA-2026:10739", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10739" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11352", "reference_id": "RHSA-2026:11352", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:11352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11369", "reference_id": "RHSA-2026:11369", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:11369" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11388", "reference_id": "RHSA-2026:11388", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:11388" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11656", "reference_id": "RHSA-2026:11656", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:11656" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11692", "reference_id": "RHSA-2026:11692", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:11692" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13414", "reference_id": "RHSA-2026:13414", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13414" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19125", "reference_id": "RHSA-2026:19125", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19125" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19342", "reference_id": "RHSA-2026:19342", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19343", "reference_id": "RHSA-2026:19343", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19344", "reference_id": "RHSA-2026:19344", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20547", "reference_id": "RHSA-2026:20547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20547" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20555", "reference_id": "RHSA-2026:20555", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20555" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20557", "reference_id": "RHSA-2026:20557", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20557" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20558", "reference_id": "RHSA-2026:20558", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20558" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20560", "reference_id": "RHSA-2026:20560", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20560" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20561", "reference_id": "RHSA-2026:20561", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20561" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20562", "reference_id": "RHSA-2026:20562", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20562" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20563", "reference_id": "RHSA-2026:20563", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20563" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20575", "reference_id": "RHSA-2026:20575", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20575" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20576", "reference_id": "RHSA-2026:20576", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20576" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20590", "reference_id": "RHSA-2026:20590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21699", "reference_id": "RHSA-2026:21699", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:21699" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21712", "reference_id": "RHSA-2026:21712", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:21712" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21715", "reference_id": "RHSA-2026:21715", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:21715" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21716", "reference_id": "RHSA-2026:21716", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:21716" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21718", "reference_id": "RHSA-2026:21718", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:21718" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21741", "reference_id": "RHSA-2026:21741", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:21741" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21742", "reference_id": "RHSA-2026:21742", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:21742" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:22424", "reference_id": "RHSA-2026:22424", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:22424" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:22456", "reference_id": "RHSA-2026:22456", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:22456" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:23254", "reference_id": "RHSA-2026:23254", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:23254" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136835?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.10-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.10-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-33999" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mksc-f652-2qcd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/62158?format=api", "vulnerability_id": "VCID-mux3-jggq-bqej", "summary": "xorg: xwayland: X.Org X server: Use-after-free vulnerability leads to server crash and potential memory corruption", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-34001.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-34001.json" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451109", "reference_id": "2451109", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451109" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:10739", "reference_id": "RHSA-2026:10739", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:10739" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11352", "reference_id": "RHSA-2026:11352", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:11352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11369", "reference_id": "RHSA-2026:11369", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:11369" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11388", "reference_id": "RHSA-2026:11388", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:11388" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11656", "reference_id": "RHSA-2026:11656", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:11656" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:11692", "reference_id": "RHSA-2026:11692", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:11692" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:13414", "reference_id": "RHSA-2026:13414", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:13414" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19125", "reference_id": "RHSA-2026:19125", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19125" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19342", "reference_id": "RHSA-2026:19342", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19343", "reference_id": "RHSA-2026:19343", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19344", "reference_id": "RHSA-2026:19344", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20547", "reference_id": "RHSA-2026:20547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20547" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20555", "reference_id": "RHSA-2026:20555", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20555" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20557", "reference_id": "RHSA-2026:20557", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20557" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20558", "reference_id": "RHSA-2026:20558", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20558" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20560", "reference_id": "RHSA-2026:20560", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20560" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20561", "reference_id": "RHSA-2026:20561", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20561" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20562", "reference_id": "RHSA-2026:20562", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20562" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20563", "reference_id": "RHSA-2026:20563", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20563" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20575", "reference_id": "RHSA-2026:20575", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20575" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20576", "reference_id": "RHSA-2026:20576", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20576" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20590", "reference_id": "RHSA-2026:20590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21699", "reference_id": "RHSA-2026:21699", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:21699" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21712", "reference_id": "RHSA-2026:21712", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:21712" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21715", "reference_id": "RHSA-2026:21715", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:21715" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21716", "reference_id": "RHSA-2026:21716", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:21716" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21718", "reference_id": "RHSA-2026:21718", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:21718" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21741", "reference_id": "RHSA-2026:21741", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:21741" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21742", "reference_id": "RHSA-2026:21742", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:21742" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:22424", "reference_id": "RHSA-2026:22424", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:22424" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:22456", "reference_id": "RHSA-2026:22456", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:22456" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:23254", "reference_id": "RHSA-2026:23254", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:23254" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136835?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.10-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.10-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-34001" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mux3-jggq-bqej" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85262?format=api", "vulnerability_id": "VCID-nce7-2t7k-vfdt", "summary": "Xorg: xwayland: Buffer overflow in XkbVModMaskText()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26595.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26595.json" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906", "reference_id": "1098906", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907", "reference_id": "1098907", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345257", "reference_id": "2345257", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345257" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2500", "reference_id": "RHSA-2025:2500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2502", "reference_id": "RHSA-2025:2502", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2861", "reference_id": "RHSA-2025:2861", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2861" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2862", "reference_id": "RHSA-2025:2862", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2862" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2865", "reference_id": "RHSA-2025:2865", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2865" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2866", "reference_id": "RHSA-2025:2866", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2873", "reference_id": "RHSA-2025:2873", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2873" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2874", "reference_id": "RHSA-2025:2874", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2874" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2875", "reference_id": "RHSA-2025:2875", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2879", "reference_id": "RHSA-2025:2879", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2879" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2880", "reference_id": "RHSA-2025:2880", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2880" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3976", "reference_id": "RHSA-2025:3976", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:3976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7163", "reference_id": "RHSA-2025:7163", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7165", "reference_id": "RHSA-2025:7165", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7458", "reference_id": "RHSA-2025:7458", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7458" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-26595" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nce7-2t7k-vfdt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73075?format=api", "vulnerability_id": "VCID-r8bp-sg6q-sqgj", "summary": "xorg: xmayland: Value overflow in XkbSetCompatMap()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-62231.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-62231.json" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2402660", "reference_id": "2402660", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2402660" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19432", "reference_id": "RHSA-2025:19432", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19432" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19433", "reference_id": "RHSA-2025:19433", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19433" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19434", "reference_id": "RHSA-2025:19434", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19434" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19435", "reference_id": "RHSA-2025:19435", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19435" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19489", "reference_id": "RHSA-2025:19489", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19489" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19623", "reference_id": "RHSA-2025:19623", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19623" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19909", "reference_id": "RHSA-2025:19909", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19909" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20958", "reference_id": "RHSA-2025:20958", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:20958" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20960", "reference_id": "RHSA-2025:20960", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:20960" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20961", "reference_id": "RHSA-2025:20961", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:20961" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:21035", "reference_id": "RHSA-2025:21035", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:21035" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22040", "reference_id": "RHSA-2025:22040", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22040" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22041", "reference_id": "RHSA-2025:22041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22051", "reference_id": "RHSA-2025:22051", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22051" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22055", "reference_id": "RHSA-2025:22055", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22055" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22056", "reference_id": "RHSA-2025:22056", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22056" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22077", "reference_id": "RHSA-2025:22077", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22077" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22096", "reference_id": "RHSA-2025:22096", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22096" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22164", "reference_id": "RHSA-2025:22164", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22164" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22167", "reference_id": "RHSA-2025:22167", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22167" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22364", "reference_id": "RHSA-2025:22364", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22364" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22365", "reference_id": "RHSA-2025:22365", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22365" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22426", "reference_id": "RHSA-2025:22426", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22426" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22427", "reference_id": "RHSA-2025:22427", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22427" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22667", "reference_id": "RHSA-2025:22667", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22667" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22729", "reference_id": "RHSA-2025:22729", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22729" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22742", "reference_id": "RHSA-2025:22742", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22742" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22753", "reference_id": "RHSA-2025:22753", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22753" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0031", "reference_id": "RHSA-2026:0031", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0031" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0033", "reference_id": "RHSA-2026:0033", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0033" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0034", "reference_id": "RHSA-2026:0034", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0034" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0035", "reference_id": "RHSA-2026:0035", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0035" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0036", "reference_id": "RHSA-2026:0036", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0036" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136832?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.9-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-62231" ], "risk_score": 3.3, "exploitability": "0.5", "weighted_severity": "6.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-r8bp-sg6q-sqgj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85235?format=api", "vulnerability_id": "VCID-rq9m-9qtm-m3bv", "summary": "X.Org: Xwayland: Use-after-free of the root cursor", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26594.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26594.json" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906", "reference_id": "1098906", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907", "reference_id": "1098907", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345248", "reference_id": "2345248", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2500", "reference_id": "RHSA-2025:2500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2502", "reference_id": "RHSA-2025:2502", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2861", "reference_id": "RHSA-2025:2861", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2861" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2862", "reference_id": "RHSA-2025:2862", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2862" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2865", "reference_id": "RHSA-2025:2865", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2865" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2866", "reference_id": "RHSA-2025:2866", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2873", "reference_id": "RHSA-2025:2873", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2873" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2874", "reference_id": "RHSA-2025:2874", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2874" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2875", "reference_id": "RHSA-2025:2875", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2879", "reference_id": "RHSA-2025:2879", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2879" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2880", "reference_id": "RHSA-2025:2880", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2880" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3976", "reference_id": "RHSA-2025:3976", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:3976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7163", "reference_id": "RHSA-2025:7163", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7165", "reference_id": "RHSA-2025:7165", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7458", "reference_id": "RHSA-2025:7458", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7458" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-26594" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rq9m-9qtm-m3bv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/87721?format=api", "vulnerability_id": "VCID-sbxv-5gr6-8be3", "summary": "xorg-x11-server: tigervnc: heap-based buffer overflow privilege escalation vulnerability", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-9632.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-9632.json" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1086244", "reference_id": "1086244", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1086244" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1086245", "reference_id": "1086245", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1086245" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2317233", "reference_id": "2317233", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2317233" }, { "reference_url": "https://security.gentoo.org/glsa/202411-08", "reference_id": "GLSA-202411-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202411-08" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:10090", "reference_id": "RHSA-2024:10090", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:10090" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:8798", "reference_id": "RHSA-2024:8798", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:8798" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9540", "reference_id": "RHSA-2024:9540", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:9540" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9579", "reference_id": "RHSA-2024:9579", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:9579" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9601", "reference_id": "RHSA-2024:9601", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:9601" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9690", "reference_id": "RHSA-2024:9690", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:9690" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9816", "reference_id": "RHSA-2024:9816", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:9816" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9818", "reference_id": "RHSA-2024:9818", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:9818" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9819", "reference_id": "RHSA-2024:9819", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:9819" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9820", "reference_id": "RHSA-2024:9820", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:9820" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9901", "reference_id": "RHSA-2024:9901", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:9901" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7163", "reference_id": "RHSA-2025:7163", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7165", "reference_id": "RHSA-2025:7165", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7458", "reference_id": "RHSA-2025:7458", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7458" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136826?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.4-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.4-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-9632" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-sbxv-5gr6-8be3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91751?format=api", "vulnerability_id": "VCID-t19y-2rhp-23cx", "summary": "xorg-x11-server: out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6478.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6478.json" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253298", "reference_id": "2253298", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253298" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7886", "reference_id": "RHSA-2023:7886", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7886" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0006", "reference_id": "RHSA-2024:0006", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0006" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0009", "reference_id": "RHSA-2024:0009", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0009" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0010", "reference_id": "RHSA-2024:0010", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0010" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0014", "reference_id": "RHSA-2024:0014", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0014" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0015", "reference_id": "RHSA-2024:0015", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0015" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0016", "reference_id": "RHSA-2024:0016", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0016" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0017", "reference_id": "RHSA-2024:0017", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0017" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0018", "reference_id": "RHSA-2024:0018", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0018" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0020", "reference_id": "RHSA-2024:0020", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0020" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2170", "reference_id": "RHSA-2024:2170", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2996", "reference_id": "RHSA-2024:2996", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2996" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136821?format=api", "purl": "pkg:deb/debian/xwayland@2:23.2.3-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:23.2.3-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-6478" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-t19y-2rhp-23cx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/90718?format=api", "vulnerability_id": "VCID-t6z8-cefj-jqa2", "summary": "xorg-x11-server: Heap buffer overread/data leakage in ProcXIPassiveGrabDevice", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31081.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31081.json" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271998", "reference_id": "2271998", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271998" }, { "reference_url": "https://security.gentoo.org/glsa/202411-08", "reference_id": "GLSA-202411-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202411-08" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:1785", "reference_id": "RHSA-2024:1785", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:1785" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2036", "reference_id": "RHSA-2024:2036", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2036" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2037", "reference_id": "RHSA-2024:2037", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2037" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2038", "reference_id": "RHSA-2024:2038", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2038" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2039", "reference_id": "RHSA-2024:2039", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2039" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2040", "reference_id": "RHSA-2024:2040", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2040" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2041", "reference_id": "RHSA-2024:2041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2042", "reference_id": "RHSA-2024:2042", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2042" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2080", "reference_id": "RHSA-2024:2080", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2080" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2616", "reference_id": "RHSA-2024:2616", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2616" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3258", "reference_id": "RHSA-2024:3258", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:3258" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3261", "reference_id": "RHSA-2024:3261", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:3261" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3343", "reference_id": "RHSA-2024:3343", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:3343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9093", "reference_id": "RHSA-2024:9093", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:9093" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9122", "reference_id": "RHSA-2024:9122", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:9122" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136824?format=api", "purl": "pkg:deb/debian/xwayland@2:23.2.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:23.2.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-31081" ], "risk_score": 3.3, "exploitability": "0.5", "weighted_severity": "6.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-t6z8-cefj-jqa2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91481?format=api", "vulnerability_id": "VCID-tzs1-bp73-zycb", "summary": "xorg-x11-server: heap buffer overflow in DisableDevice", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21886.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21886.json" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256542", "reference_id": "2256542", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256542" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0320", "reference_id": "RHSA-2024:0320", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0320" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0557", "reference_id": "RHSA-2024:0557", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0557" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0558", "reference_id": "RHSA-2024:0558", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0558" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0597", "reference_id": "RHSA-2024:0597", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0597" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0607", "reference_id": "RHSA-2024:0607", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0607" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0614", "reference_id": "RHSA-2024:0614", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0614" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0617", "reference_id": "RHSA-2024:0617", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0617" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0621", "reference_id": "RHSA-2024:0621", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0621" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0626", "reference_id": "RHSA-2024:0626", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0626" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0629", "reference_id": "RHSA-2024:0629", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0629" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2170", "reference_id": "RHSA-2024:2170", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2996", "reference_id": "RHSA-2024:2996", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2996" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136823?format=api", "purl": "pkg:deb/debian/xwayland@2:23.2.4-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:23.2.4-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-21886" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tzs1-bp73-zycb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61084?format=api", "vulnerability_id": "VCID-ucf1-81as-eucj", "summary": "xwayland: xorg: X.Org X server: Information disclosure and denial of service via out-of-bounds read in XKB geometry processing.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-34000.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-34000.json" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451107", "reference_id": "2451107", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451107" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:19342", "reference_id": "RHSA-2026:19342", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:19342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20547", "reference_id": "RHSA-2026:20547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20547" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20555", "reference_id": "RHSA-2026:20555", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20555" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20557", "reference_id": "RHSA-2026:20557", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20557" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20558", "reference_id": "RHSA-2026:20558", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20558" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20560", "reference_id": "RHSA-2026:20560", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20560" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20561", "reference_id": "RHSA-2026:20561", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20561" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20562", "reference_id": "RHSA-2026:20562", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20562" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20563", "reference_id": "RHSA-2026:20563", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20563" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20575", "reference_id": "RHSA-2026:20575", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20575" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20576", "reference_id": "RHSA-2026:20576", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20576" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20590", "reference_id": "RHSA-2026:20590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21699", "reference_id": "RHSA-2026:21699", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:21699" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21712", "reference_id": "RHSA-2026:21712", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:21712" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21715", "reference_id": "RHSA-2026:21715", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:21715" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21716", "reference_id": "RHSA-2026:21716", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:21716" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21718", "reference_id": "RHSA-2026:21718", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:21718" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21741", "reference_id": "RHSA-2026:21741", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:21741" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21742", "reference_id": "RHSA-2026:21742", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:21742" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:22424", "reference_id": "RHSA-2026:22424", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:22424" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:22456", "reference_id": "RHSA-2026:22456", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:22456" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:23254", "reference_id": "RHSA-2026:23254", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:23254" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136835?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.10-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.10-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-34000" ], "risk_score": 2.8, "exploitability": "0.5", "weighted_severity": "5.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ucf1-81as-eucj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73009?format=api", "vulnerability_id": "VCID-vs7d-ydc7-w7ec", "summary": "xorg: xmayland: Use-after-free in XPresentNotify structure creation", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-62229.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-62229.json" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2402649", "reference_id": "2402649", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2402649" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19432", "reference_id": "RHSA-2025:19432", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19432" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19433", "reference_id": "RHSA-2025:19433", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19433" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19434", "reference_id": "RHSA-2025:19434", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19434" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19435", "reference_id": "RHSA-2025:19435", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19435" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19489", "reference_id": "RHSA-2025:19489", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19489" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19623", "reference_id": "RHSA-2025:19623", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19623" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19909", "reference_id": "RHSA-2025:19909", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19909" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20958", "reference_id": "RHSA-2025:20958", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:20958" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20960", "reference_id": "RHSA-2025:20960", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:20960" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20961", "reference_id": "RHSA-2025:20961", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:20961" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:21035", "reference_id": "RHSA-2025:21035", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:21035" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22040", "reference_id": "RHSA-2025:22040", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22040" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22041", "reference_id": "RHSA-2025:22041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22051", "reference_id": "RHSA-2025:22051", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22051" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22055", "reference_id": "RHSA-2025:22055", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22055" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22056", "reference_id": "RHSA-2025:22056", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22056" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22077", "reference_id": "RHSA-2025:22077", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22077" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22096", "reference_id": "RHSA-2025:22096", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22096" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22164", "reference_id": "RHSA-2025:22164", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22164" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22167", "reference_id": "RHSA-2025:22167", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22167" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22364", "reference_id": "RHSA-2025:22364", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22364" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22365", "reference_id": "RHSA-2025:22365", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22365" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22426", "reference_id": "RHSA-2025:22426", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22426" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22427", "reference_id": "RHSA-2025:22427", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22427" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22667", "reference_id": "RHSA-2025:22667", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22667" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22729", "reference_id": "RHSA-2025:22729", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22729" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22742", "reference_id": "RHSA-2025:22742", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22742" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22753", "reference_id": "RHSA-2025:22753", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:22753" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0031", "reference_id": "RHSA-2026:0031", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0031" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0033", "reference_id": "RHSA-2026:0033", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0033" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0034", "reference_id": "RHSA-2026:0034", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0034" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0035", "reference_id": "RHSA-2026:0035", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0035" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0036", "reference_id": "RHSA-2026:0036", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0036" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136832?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.9-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-62229" ], "risk_score": 3.3, "exploitability": "0.5", "weighted_severity": "6.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vs7d-ydc7-w7ec" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85253?format=api", "vulnerability_id": "VCID-waxn-nrqv-k7ca", "summary": "xorg: xwayland: Buffer overflow in XkbChangeTypesOfKey()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26597.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26597.json" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906", "reference_id": "1098906", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907", "reference_id": "1098907", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345255", "reference_id": "2345255", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345255" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2500", "reference_id": "RHSA-2025:2500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2502", "reference_id": "RHSA-2025:2502", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2861", "reference_id": "RHSA-2025:2861", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2861" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2862", "reference_id": "RHSA-2025:2862", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2862" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2865", "reference_id": "RHSA-2025:2865", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2865" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2866", "reference_id": "RHSA-2025:2866", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2873", "reference_id": "RHSA-2025:2873", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2873" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2874", "reference_id": "RHSA-2025:2874", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2874" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2875", "reference_id": "RHSA-2025:2875", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2879", "reference_id": "RHSA-2025:2879", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2879" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2880", "reference_id": "RHSA-2025:2880", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2880" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3976", "reference_id": "RHSA-2025:3976", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:3976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7163", "reference_id": "RHSA-2025:7163", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7165", "reference_id": "RHSA-2025:7165", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7458", "reference_id": "RHSA-2025:7458", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7458" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-26597" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-waxn-nrqv-k7ca" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91497?format=api", "vulnerability_id": "VCID-wv2b-584d-uyc2", "summary": "xorg-x11-server: Heap buffer overflow in DeviceFocusEvent and ProcXIQueryPointer", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6816.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6816.json" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257691", "reference_id": "2257691", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257691" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0320", "reference_id": "RHSA-2024:0320", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0320" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0557", "reference_id": "RHSA-2024:0557", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0557" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0558", "reference_id": "RHSA-2024:0558", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0558" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0597", "reference_id": "RHSA-2024:0597", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0597" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0607", "reference_id": "RHSA-2024:0607", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0607" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0614", "reference_id": "RHSA-2024:0614", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0614" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0617", "reference_id": "RHSA-2024:0617", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0617" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0621", "reference_id": "RHSA-2024:0621", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0621" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0626", "reference_id": "RHSA-2024:0626", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0626" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0629", "reference_id": "RHSA-2024:0629", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0629" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2170", "reference_id": "RHSA-2024:2170", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2996", "reference_id": "RHSA-2024:2996", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2996" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136823?format=api", "purl": "pkg:deb/debian/xwayland@2:23.2.4-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:23.2.4-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-6816" ], "risk_score": 4.4, "exploitability": "0.5", "weighted_severity": "8.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wv2b-584d-uyc2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/92130?format=api", "vulnerability_id": "VCID-xg2s-qrvs-ybca", "summary": "xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5367.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5367.json" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243091", "reference_id": "2243091", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243091" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6802", "reference_id": "RHSA-2023:6802", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6802" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6808", "reference_id": "RHSA-2023:6808", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6808" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7373", "reference_id": "RHSA-2023:7373", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7373" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7388", "reference_id": "RHSA-2023:7388", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7388" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7405", "reference_id": "RHSA-2023:7405", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7405" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7428", "reference_id": "RHSA-2023:7428", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7428" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7436", "reference_id": "RHSA-2023:7436", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7436" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7526", "reference_id": "RHSA-2023:7526", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7526" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7533", "reference_id": "RHSA-2023:7533", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7533" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0010", "reference_id": "RHSA-2024:0010", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0010" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0128", "reference_id": "RHSA-2024:0128", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0128" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2170", "reference_id": "RHSA-2024:2170", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2996", "reference_id": "RHSA-2024:2996", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2996" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136820?format=api", "purl": "pkg:deb/debian/xwayland@2:23.2.2-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:23.2.2-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-5367" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xg2s-qrvs-ybca" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85258?format=api", "vulnerability_id": "VCID-xq35-8sqg-9fcf", "summary": "xorg: xwayland: Heap overflow in XkbWriteKeySyms()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26596.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26596.json" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906", "reference_id": "1098906", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907", "reference_id": "1098907", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345256", "reference_id": "2345256", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345256" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2500", "reference_id": "RHSA-2025:2500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2502", "reference_id": "RHSA-2025:2502", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2861", "reference_id": "RHSA-2025:2861", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2861" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2862", "reference_id": "RHSA-2025:2862", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2862" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2865", "reference_id": "RHSA-2025:2865", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2865" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2866", "reference_id": "RHSA-2025:2866", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2873", "reference_id": "RHSA-2025:2873", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2873" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2874", "reference_id": "RHSA-2025:2874", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2874" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2875", "reference_id": "RHSA-2025:2875", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2879", "reference_id": "RHSA-2025:2879", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2879" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2880", "reference_id": "RHSA-2025:2880", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2880" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3976", "reference_id": "RHSA-2025:3976", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:3976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7163", "reference_id": "RHSA-2025:7163", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7165", "reference_id": "RHSA-2025:7165", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7458", "reference_id": "RHSA-2025:7458", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7458" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-26596" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xq35-8sqg-9fcf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85240?format=api", "vulnerability_id": "VCID-y5rf-aq67-nbcd", "summary": "xorg: xwayland: Use-after-free in SyncInitTrigger()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26601.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26601.json" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906", "reference_id": "1098906", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907", "reference_id": "1098907", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345251", "reference_id": "2345251", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345251" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2500", "reference_id": "RHSA-2025:2500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2502", "reference_id": "RHSA-2025:2502", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2861", "reference_id": "RHSA-2025:2861", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2861" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2862", "reference_id": "RHSA-2025:2862", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2862" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2865", "reference_id": "RHSA-2025:2865", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2865" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2866", "reference_id": "RHSA-2025:2866", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2873", "reference_id": "RHSA-2025:2873", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2873" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2874", "reference_id": "RHSA-2025:2874", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2874" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2875", "reference_id": "RHSA-2025:2875", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2879", "reference_id": "RHSA-2025:2879", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2879" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2880", "reference_id": "RHSA-2025:2880", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2880" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3976", "reference_id": "RHSA-2025:3976", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:3976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7163", "reference_id": "RHSA-2025:7163", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7165", "reference_id": "RHSA-2025:7165", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7458", "reference_id": "RHSA-2025:7458", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7458" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-26601" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-y5rf-aq67-nbcd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61059?format=api", "vulnerability_id": "VCID-ydth-wf4d-zugb", "summary": "xorg: xwayland: X.Org X server: Information disclosure or Denial of Service via out-of-bounds read in XKB modifier map handling", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-34002.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-34002.json" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451112", "reference_id": "2451112", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451112" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20547", "reference_id": "RHSA-2026:20547", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20547" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20555", "reference_id": "RHSA-2026:20555", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20555" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20557", "reference_id": "RHSA-2026:20557", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20557" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20558", "reference_id": "RHSA-2026:20558", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20558" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20560", "reference_id": "RHSA-2026:20560", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20560" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20561", "reference_id": "RHSA-2026:20561", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20561" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20562", "reference_id": "RHSA-2026:20562", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20562" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20563", "reference_id": "RHSA-2026:20563", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20563" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20575", "reference_id": "RHSA-2026:20575", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20575" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20576", "reference_id": "RHSA-2026:20576", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20576" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:20590", "reference_id": "RHSA-2026:20590", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:20590" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21699", "reference_id": "RHSA-2026:21699", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:21699" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21712", "reference_id": "RHSA-2026:21712", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:21712" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21715", "reference_id": "RHSA-2026:21715", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:21715" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21716", "reference_id": "RHSA-2026:21716", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:21716" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21718", "reference_id": "RHSA-2026:21718", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:21718" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21741", "reference_id": "RHSA-2026:21741", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:21741" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:21742", "reference_id": "RHSA-2026:21742", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:21742" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:22424", "reference_id": "RHSA-2026:22424", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:22424" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:22456", "reference_id": "RHSA-2026:22456", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:22456" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:23254", "reference_id": "RHSA-2026:23254", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:23254" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136835?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.10-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.10-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-34002" ], "risk_score": 2.8, "exploitability": "0.5", "weighted_severity": "5.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ydth-wf4d-zugb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85246?format=api", "vulnerability_id": "VCID-yqg5-wy1b-hfgx", "summary": "xorg: xwayland: Use of uninitialized pointer in compRedirectWindow()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26599.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26599.json" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906", "reference_id": "1098906", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907", "reference_id": "1098907", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345253", "reference_id": "2345253", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345253" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2500", "reference_id": "RHSA-2025:2500", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2502", "reference_id": "RHSA-2025:2502", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2861", "reference_id": "RHSA-2025:2861", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2861" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2862", "reference_id": "RHSA-2025:2862", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2862" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2865", "reference_id": "RHSA-2025:2865", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2865" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2866", "reference_id": "RHSA-2025:2866", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2873", "reference_id": "RHSA-2025:2873", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2873" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2874", "reference_id": "RHSA-2025:2874", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2874" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2875", "reference_id": "RHSA-2025:2875", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2879", "reference_id": "RHSA-2025:2879", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2879" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2880", "reference_id": "RHSA-2025:2880", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:2880" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3976", "reference_id": "RHSA-2025:3976", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:3976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7163", "reference_id": "RHSA-2025:7163", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7165", "reference_id": "RHSA-2025:7165", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7458", "reference_id": "RHSA-2025:7458", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:7458" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-26599" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yqg5-wy1b-hfgx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/90717?format=api", "vulnerability_id": "VCID-z2sj-4r7t-3ycm", "summary": "xorg-x11-server: Heap buffer overread/data leakage in ProcXIGetSelectedEvents", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31080.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31080.json" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271997", "reference_id": "2271997", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271997" }, { "reference_url": "https://security.gentoo.org/glsa/202411-08", "reference_id": "GLSA-202411-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202411-08" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:1785", "reference_id": "RHSA-2024:1785", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:1785" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2036", "reference_id": "RHSA-2024:2036", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2036" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2037", "reference_id": "RHSA-2024:2037", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2037" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2038", "reference_id": "RHSA-2024:2038", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2038" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2039", "reference_id": "RHSA-2024:2039", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2039" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2040", "reference_id": "RHSA-2024:2040", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2040" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2041", "reference_id": "RHSA-2024:2041", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2042", "reference_id": "RHSA-2024:2042", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2042" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2080", "reference_id": "RHSA-2024:2080", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2080" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2616", "reference_id": "RHSA-2024:2616", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2616" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3258", "reference_id": "RHSA-2024:3258", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:3258" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3261", "reference_id": "RHSA-2024:3261", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:3261" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3343", "reference_id": "RHSA-2024:3343", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:3343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9093", "reference_id": "RHSA-2024:9093", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:9093" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9122", "reference_id": "RHSA-2024:9122", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:9122" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136824?format=api", "purl": "pkg:deb/debian/xwayland@2:23.2.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:23.2.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-31080" ], "risk_score": 3.3, "exploitability": "0.5", "weighted_severity": "6.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z2sj-4r7t-3ycm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80512?format=api", "vulnerability_id": "VCID-z6tv-7fmc-13bw", "summary": "xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Integer Overflow in X Resize, Rotate and Reflect (RandR) Extension", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49180.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49180.json" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369", "reference_id": "1108369", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369981", "reference_id": "2369981", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369981" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10258", "reference_id": "RHSA-2025:10258", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10258" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10342", "reference_id": "RHSA-2025:10342", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10343", "reference_id": "RHSA-2025:10343", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10344", "reference_id": "RHSA-2025:10344", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10346", "reference_id": "RHSA-2025:10346", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10346" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10347", "reference_id": "RHSA-2025:10347", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10347" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10348", "reference_id": "RHSA-2025:10348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10349", "reference_id": "RHSA-2025:10349", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10349" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10350", "reference_id": "RHSA-2025:10350", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10350" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10351", "reference_id": "RHSA-2025:10351", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10351" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10352", "reference_id": "RHSA-2025:10352", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10355", "reference_id": "RHSA-2025:10355", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10355" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10356", "reference_id": "RHSA-2025:10356", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10356" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10360", "reference_id": "RHSA-2025:10360", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10360" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10370", "reference_id": "RHSA-2025:10370", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10370" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10374", "reference_id": "RHSA-2025:10374", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10374" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10375", "reference_id": "RHSA-2025:10375", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10375" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10376", "reference_id": "RHSA-2025:10376", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10376" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10377", "reference_id": "RHSA-2025:10377", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10377" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10378", "reference_id": "RHSA-2025:10378", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10378" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10381", "reference_id": "RHSA-2025:10381", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10381" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10410", "reference_id": "RHSA-2025:10410", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10410" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9303", "reference_id": "RHSA-2025:9303", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9303" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9304", "reference_id": "RHSA-2025:9304", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9304" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9305", "reference_id": "RHSA-2025:9305", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9305" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9306", "reference_id": "RHSA-2025:9306", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9306" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9392", "reference_id": "RHSA-2025:9392", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9964", "reference_id": "RHSA-2025:9964", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9964" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136828?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.8-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.8-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-49180" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z6tv-7fmc-13bw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80381?format=api", "vulnerability_id": "VCID-zb61-sksa-e3c5", "summary": "xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Out-of-Bounds Read in X Rendering Extension Animated Cursors", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49175.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49175.json" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369", "reference_id": "1108369", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369947", "reference_id": "2369947", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369947" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10258", "reference_id": "RHSA-2025:10258", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10258" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10342", "reference_id": "RHSA-2025:10342", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10343", "reference_id": "RHSA-2025:10343", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10344", "reference_id": "RHSA-2025:10344", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10346", "reference_id": "RHSA-2025:10346", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10346" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10347", "reference_id": "RHSA-2025:10347", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10347" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10348", "reference_id": "RHSA-2025:10348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10349", "reference_id": "RHSA-2025:10349", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10349" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10350", "reference_id": "RHSA-2025:10350", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10350" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10351", "reference_id": "RHSA-2025:10351", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10351" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10352", "reference_id": "RHSA-2025:10352", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10355", "reference_id": "RHSA-2025:10355", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10355" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10356", "reference_id": "RHSA-2025:10356", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10356" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10360", "reference_id": "RHSA-2025:10360", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10360" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10370", "reference_id": "RHSA-2025:10370", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10370" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10374", "reference_id": "RHSA-2025:10374", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10374" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10375", "reference_id": "RHSA-2025:10375", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10375" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10376", "reference_id": "RHSA-2025:10376", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10376" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10377", "reference_id": "RHSA-2025:10377", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10377" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10378", "reference_id": "RHSA-2025:10378", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10378" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10381", "reference_id": "RHSA-2025:10381", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10381" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10410", "reference_id": "RHSA-2025:10410", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10410" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9303", "reference_id": "RHSA-2025:9303", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9303" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9304", "reference_id": "RHSA-2025:9304", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9304" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9305", "reference_id": "RHSA-2025:9305", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9305" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9306", "reference_id": "RHSA-2025:9306", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9306" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9392", "reference_id": "RHSA-2025:9392", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9964", "reference_id": "RHSA-2025:9964", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9964" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136828?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.8-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.8-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-49175" ], "risk_score": 2.8, "exploitability": "0.5", "weighted_severity": "5.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zb61-sksa-e3c5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80439?format=api", "vulnerability_id": "VCID-zuaj-1yvr-sug9", "summary": "xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Data Leak in XFIXES Extension's XFixesSetClientDisconnectMode", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49177.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49177.json" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369", "reference_id": "1108369", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369955", "reference_id": "2369955", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369955" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10258", "reference_id": "RHSA-2025:10258", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:10258" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9303", "reference_id": "RHSA-2025:9303", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9303" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9304", "reference_id": "RHSA-2025:9304", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:9304" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136828?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.8-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.8-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-49177" ], "risk_score": 2.8, "exploitability": "0.5", "weighted_severity": "5.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zuaj-1yvr-sug9" } ], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5018?format=api", "vulnerability_id": "VCID-1xeu-h1q2-5bfh", "summary": "arbitrary code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4008.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4008.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4008", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.2254", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4008" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2026059", "reference_id": "2026059", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2026059" }, { "reference_url": "https://security.archlinux.org/AVG-2636", "reference_id": "AVG-2636", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2636" }, { "reference_url": "https://security.archlinux.org/AVG-2640", "reference_id": "AVG-2640", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2640" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0003", "reference_id": "RHSA-2022:0003", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0003" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1917", "reference_id": "RHSA-2022:1917", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1917" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136809?format=api", "purl": "pkg:deb/debian/xwayland@2:21.1.4-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:21.1.4-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136807?format=api", "purl": "pkg:deb/debian/xwayland@2:22.1.9-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:22.1.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2021-4008" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1xeu-h1q2-5bfh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5016?format=api", "vulnerability_id": "VCID-2enj-ds99-9fde", "summary": "arbitrary code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4010.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4010.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4010", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00177", "scoring_system": "epss", "scoring_elements": "0.38977", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4010" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2026073", "reference_id": "2026073", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2026073" }, { "reference_url": "https://security.archlinux.org/AVG-2636", "reference_id": "AVG-2636", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2636" }, { "reference_url": "https://security.archlinux.org/AVG-2640", "reference_id": "AVG-2640", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2640" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0003", "reference_id": "RHSA-2022:0003", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0003" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1917", "reference_id": "RHSA-2022:1917", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1917" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136809?format=api", "purl": "pkg:deb/debian/xwayland@2:21.1.4-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:21.1.4-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136807?format=api", "purl": "pkg:deb/debian/xwayland@2:22.1.9-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:22.1.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2021-4010" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2enj-ds99-9fde" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/99562?format=api", "vulnerability_id": "VCID-6bnp-kn76-4qdm", "summary": "xorg-x11-server: XTestSwapFakeInput stack overflow", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46340.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46340.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46340", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01237", "scoring_system": "epss", "scoring_elements": "0.79556", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46340" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071", "reference_id": "1026071", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151755", "reference_id": "2151755", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151755" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0045", "reference_id": "RHSA-2023:0045", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0045" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0046", "reference_id": "RHSA-2023:0046", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0046" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2248", "reference_id": "RHSA-2023:2248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2249", "reference_id": "RHSA-2023:2249", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2249" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2257", "reference_id": "RHSA-2023:2257", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2257" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2805", "reference_id": "RHSA-2023:2805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2806", "reference_id": "RHSA-2023:2806", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2806" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2830", "reference_id": "RHSA-2023:2830", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2830" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136817?format=api", "purl": "pkg:deb/debian/xwayland@2:22.1.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:22.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136807?format=api", "purl": "pkg:deb/debian/xwayland@2:22.1.9-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:22.1.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-46340" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6bnp-kn76-4qdm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5017?format=api", "vulnerability_id": "VCID-8bbs-eqdc-c7fh", "summary": "arbitrary code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4009.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4009.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4009", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25722", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4009" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2026072", "reference_id": "2026072", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2026072" }, { "reference_url": "https://security.archlinux.org/AVG-2636", "reference_id": "AVG-2636", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2636" }, { "reference_url": "https://security.archlinux.org/AVG-2640", "reference_id": "AVG-2640", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2640" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0003", "reference_id": "RHSA-2022:0003", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0003" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1917", "reference_id": "RHSA-2022:1917", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1917" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136809?format=api", "purl": "pkg:deb/debian/xwayland@2:21.1.4-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:21.1.4-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136807?format=api", "purl": "pkg:deb/debian/xwayland@2:22.1.9-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:22.1.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2021-4009" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8bbs-eqdc-c7fh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/100698?format=api", "vulnerability_id": "VCID-bxtg-a4vf-8fau", "summary": "xorg-x11-server: memory leak in ProcXkbGetKbdByName() in xkb/xkb.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3551.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3551.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3551", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0063", "scoring_system": "epss", "scoring_elements": "0.7068", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3551" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2140701", "reference_id": "2140701", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2140701" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8491", "reference_id": "RHSA-2022:8491", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8491" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2248", "reference_id": "RHSA-2023:2248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2249", "reference_id": "RHSA-2023:2249", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2249" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2805", "reference_id": "RHSA-2023:2805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2806", "reference_id": "RHSA-2023:2806", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2806" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136816?format=api", "purl": "pkg:deb/debian/xwayland@2:22.1.5-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:22.1.5-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136807?format=api", "purl": "pkg:deb/debian/xwayland@2:22.1.9-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:22.1.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-3551" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bxtg-a4vf-8fau" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/99593?format=api", "vulnerability_id": "VCID-d9am-npf2-jkfm", "summary": "xorg-x11-server: XkbGetKbdByName use-after-free", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-4283.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-4283.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-4283", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.002", "scoring_system": "epss", "scoring_elements": "0.41916", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-4283" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071", "reference_id": "1026071", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151761", "reference_id": "2151761", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151761" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0045", "reference_id": "RHSA-2023:0045", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0045" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0046", "reference_id": "RHSA-2023:0046", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0046" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2248", "reference_id": "RHSA-2023:2248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2249", "reference_id": "RHSA-2023:2249", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2249" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2257", "reference_id": "RHSA-2023:2257", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2257" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2805", "reference_id": "RHSA-2023:2805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2806", "reference_id": "RHSA-2023:2806", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2806" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2830", "reference_id": "RHSA-2023:2830", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2830" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136817?format=api", "purl": "pkg:deb/debian/xwayland@2:22.1.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:22.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136807?format=api", "purl": "pkg:deb/debian/xwayland@2:22.1.9-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:22.1.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-4283" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-d9am-npf2-jkfm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4866?format=api", "vulnerability_id": "VCID-f67a-ybc4-x3c2", "summary": "privilege escalation", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2319.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2319.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2319", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11235", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2319" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014903", "reference_id": "1014903", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014903" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2106671", "reference_id": "2106671", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2106671" }, { "reference_url": "https://security.archlinux.org/AVG-2770", "reference_id": "AVG-2770", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2770" }, { "reference_url": "https://security.gentoo.org/glsa/202210-30", "reference_id": "GLSA-202210-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202210-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5905", "reference_id": "RHSA-2022:5905", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5905" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7583", "reference_id": "RHSA-2022:7583", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7583" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8221", "reference_id": "RHSA-2022:8221", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8221" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8222", "reference_id": "RHSA-2022:8222", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8222" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136815?format=api", "purl": "pkg:deb/debian/xwayland@2:22.1.3-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:22.1.3-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136807?format=api", "purl": "pkg:deb/debian/xwayland@2:22.1.9-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:22.1.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-2319" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-f67a-ybc4-x3c2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/99572?format=api", "vulnerability_id": "VCID-ksb1-g8mu-nbhu", "summary": "xorg-x11-server: XvdiSelectVideoNotify use-after-free", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46342.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46342.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46342", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32304", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46342" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071", "reference_id": "1026071", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151757", "reference_id": "2151757", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151757" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0045", "reference_id": "RHSA-2023:0045", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0045" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0046", "reference_id": "RHSA-2023:0046", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0046" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2248", "reference_id": "RHSA-2023:2248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2249", "reference_id": "RHSA-2023:2249", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2249" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2257", "reference_id": "RHSA-2023:2257", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2257" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2805", "reference_id": "RHSA-2023:2805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2806", "reference_id": "RHSA-2023:2806", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2806" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2830", "reference_id": "RHSA-2023:2830", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2830" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136817?format=api", "purl": "pkg:deb/debian/xwayland@2:22.1.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:22.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136807?format=api", "purl": "pkg:deb/debian/xwayland@2:22.1.9-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:22.1.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-46342" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ksb1-g8mu-nbhu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/98937?format=api", "vulnerability_id": "VCID-mbyt-8urr-yqff", "summary": "xorg-x11-server: DeepCopyPointerClasses use-after-free leads to privilege elevation", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0494.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0494.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0494", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00711", "scoring_system": "epss", "scoring_elements": "0.72638", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0494" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1030777", "reference_id": "1030777", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1030777" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2165995", "reference_id": "2165995", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2165995" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0622", "reference_id": "RHSA-2023:0622", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0622" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0623", "reference_id": "RHSA-2023:0623", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0623" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0662", "reference_id": "RHSA-2023:0662", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0662" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0663", "reference_id": "RHSA-2023:0663", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0663" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0664", "reference_id": "RHSA-2023:0664", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0664" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0665", "reference_id": "RHSA-2023:0665", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0665" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0671", "reference_id": "RHSA-2023:0671", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0671" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0675", "reference_id": "RHSA-2023:0675", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0675" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2248", "reference_id": "RHSA-2023:2248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2249", "reference_id": "RHSA-2023:2249", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2249" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2805", "reference_id": "RHSA-2023:2805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2806", "reference_id": "RHSA-2023:2806", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2806" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136819?format=api", "purl": "pkg:deb/debian/xwayland@2:22.1.8-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:22.1.8-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136807?format=api", "purl": "pkg:deb/debian/xwayland@2:22.1.9-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:22.1.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-0494" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mbyt-8urr-yqff" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4865?format=api", "vulnerability_id": "VCID-mxq1-dhbf-9ufb", "summary": "privilege escalation", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2320.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2320.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2320", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19531", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2320" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014903", "reference_id": "1014903", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014903" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2106683", "reference_id": "2106683", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2106683" }, { "reference_url": "https://security.archlinux.org/AVG-2770", "reference_id": "AVG-2770", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2770" }, { "reference_url": "https://security.gentoo.org/glsa/202210-30", "reference_id": "GLSA-202210-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202210-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5905", "reference_id": "RHSA-2022:5905", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5905" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7583", "reference_id": "RHSA-2022:7583", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7583" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8221", "reference_id": "RHSA-2022:8221", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8221" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8222", "reference_id": "RHSA-2022:8222", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8222" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136815?format=api", "purl": "pkg:deb/debian/xwayland@2:22.1.3-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:22.1.3-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136807?format=api", "purl": "pkg:deb/debian/xwayland@2:22.1.9-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:22.1.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-2320" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mxq1-dhbf-9ufb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/99580?format=api", "vulnerability_id": "VCID-nghe-4hvm-juhp", "summary": "xorg-x11-server: XIChangeProperty out-of-bounds access", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46344.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46344.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46344", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00867", "scoring_system": "epss", "scoring_elements": "0.75505", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46344" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071", "reference_id": "1026071", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151760", "reference_id": "2151760", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151760" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0045", "reference_id": "RHSA-2023:0045", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0045" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0046", "reference_id": "RHSA-2023:0046", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0046" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2248", "reference_id": "RHSA-2023:2248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2249", "reference_id": "RHSA-2023:2249", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2249" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2257", "reference_id": "RHSA-2023:2257", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2257" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2805", "reference_id": "RHSA-2023:2805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2806", "reference_id": "RHSA-2023:2806", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2806" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2830", "reference_id": "RHSA-2023:2830", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2830" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136817?format=api", "purl": "pkg:deb/debian/xwayland@2:22.1.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:22.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136807?format=api", "purl": "pkg:deb/debian/xwayland@2:22.1.9-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:22.1.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-46344" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nghe-4hvm-juhp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5015?format=api", "vulnerability_id": "VCID-qmrm-2e5f-h3an", "summary": "arbitrary code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4011.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4011.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4011", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12659", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4011" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2026074", "reference_id": "2026074", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2026074" }, { "reference_url": "https://security.archlinux.org/AVG-2636", "reference_id": "AVG-2636", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2636" }, { "reference_url": "https://security.archlinux.org/AVG-2640", "reference_id": "AVG-2640", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2640" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0003", "reference_id": "RHSA-2022:0003", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0003" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1917", "reference_id": "RHSA-2022:1917", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1917" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136809?format=api", "purl": "pkg:deb/debian/xwayland@2:21.1.4-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:21.1.4-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136807?format=api", "purl": "pkg:deb/debian/xwayland@2:22.1.9-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:22.1.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2021-4011" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qmrm-2e5f-h3an" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/99570?format=api", "vulnerability_id": "VCID-swtg-qd41-pqgw", "summary": "xorg-x11-server: XIPassiveUngrab out-of-bounds access", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46341.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46341.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46341", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01059", "scoring_system": "epss", "scoring_elements": "0.77974", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46341" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071", "reference_id": "1026071", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151756", "reference_id": "2151756", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151756" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0045", "reference_id": "RHSA-2023:0045", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0045" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0046", "reference_id": "RHSA-2023:0046", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0046" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2248", "reference_id": "RHSA-2023:2248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2249", "reference_id": "RHSA-2023:2249", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2249" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2257", "reference_id": "RHSA-2023:2257", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2257" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2805", "reference_id": "RHSA-2023:2805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2806", "reference_id": "RHSA-2023:2806", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2806" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2830", "reference_id": "RHSA-2023:2830", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2830" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136817?format=api", "purl": "pkg:deb/debian/xwayland@2:22.1.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:22.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136807?format=api", "purl": "pkg:deb/debian/xwayland@2:22.1.9-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:22.1.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-46341" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-swtg-qd41-pqgw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/100693?format=api", "vulnerability_id": "VCID-t4ta-czp7-pye5", "summary": "xorg-x11-server: buffer overflow in _GetCountedString() in xkb/xkb.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3550.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3550.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3550", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00346", "scoring_system": "epss", "scoring_elements": "0.57477", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3550" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2140698", "reference_id": "2140698", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2140698" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8491", "reference_id": "RHSA-2022:8491", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8491" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2248", "reference_id": "RHSA-2023:2248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2249", "reference_id": "RHSA-2023:2249", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2249" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2805", "reference_id": "RHSA-2023:2805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2806", "reference_id": "RHSA-2023:2806", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2806" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136816?format=api", "purl": "pkg:deb/debian/xwayland@2:22.1.5-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:22.1.5-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136807?format=api", "purl": "pkg:deb/debian/xwayland@2:22.1.9-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:22.1.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-3550" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-t4ta-czp7-pye5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/97615?format=api", "vulnerability_id": "VCID-w48c-6a3x-7qhd", "summary": "xorg-x11-server: X.Org Server Overlay Window Use-After-Free Local Privilege Escalation Vulnerability", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-1393.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-1393.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-1393", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.26029", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-1393" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2180288", "reference_id": "2180288", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2180288" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1548", "reference_id": "RHSA-2023:1548", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1548" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1549", "reference_id": "RHSA-2023:1549", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1549" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1551", "reference_id": "RHSA-2023:1551", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1551" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1592", "reference_id": "RHSA-2023:1592", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1592" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1594", "reference_id": "RHSA-2023:1594", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1594" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1598", "reference_id": "RHSA-2023:1598", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1598" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1599", "reference_id": "RHSA-2023:1599", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1599" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1600", "reference_id": "RHSA-2023:1600", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1600" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6340", "reference_id": "RHSA-2023:6340", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6340" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6341", "reference_id": "RHSA-2023:6341", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6341" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6916", "reference_id": "RHSA-2023:6916", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6916" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6917", "reference_id": "RHSA-2023:6917", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6917" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136807?format=api", "purl": "pkg:deb/debian/xwayland@2:22.1.9-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:22.1.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-1393" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-w48c-6a3x-7qhd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/99575?format=api", "vulnerability_id": "VCID-wrkb-mwhv-wqcc", "summary": "xorg-x11-server: ScreenSaverSetAttributes use-after-free", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46343.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46343.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46343", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01059", "scoring_system": "epss", "scoring_elements": "0.77974", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46343" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071", "reference_id": "1026071", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151758", "reference_id": "2151758", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151758" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0045", "reference_id": "RHSA-2023:0045", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0045" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0046", "reference_id": "RHSA-2023:0046", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0046" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2248", "reference_id": "RHSA-2023:2248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2249", "reference_id": "RHSA-2023:2249", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2249" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2257", "reference_id": "RHSA-2023:2257", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2257" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2805", "reference_id": "RHSA-2023:2805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2806", "reference_id": "RHSA-2023:2806", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2806" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2830", "reference_id": "RHSA-2023:2830", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2830" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/136817?format=api", "purl": "pkg:deb/debian/xwayland@2:22.1.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:22.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136807?format=api", "purl": "pkg:deb/debian/xwayland@2:22.1.9-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:22.1.9-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136813?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.6-1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zuaj-1yvr-sug9" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136810?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.11-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.11-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/136811?format=api", "purl": "pkg:deb/debian/xwayland@2:24.1.12-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:24.1.12-1%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-46343" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wrkb-mwhv-wqcc" } ], "risk_score": "4.4", "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xwayland@2:22.1.9-1%3Fdistro=trixie" }