CVE-2023-5367 Information

Description

A out-of-bounds write flaw was found in the xorg-x11-server. This issue occurs due to an incorrect calculation of a buffer offset when copying data stored in the heap in the XIChangeDeviceProperty function in Xi/xiproperty.c and in RRChangeOutputProperty function in randr/rrproperty.c allowing for possible escalation of privileges or denial of service.

Reference

https://bugzilla.redhat.com/show_bug.cgi?id=2243091 https://access.redhat.com/security/cve/CVE-2023-5367 https://lists.x.org/archives/xorg-announce/2023-October/003430.html https://www.debian.org/security/2023/dsa-5534