CVE-2025-26598 Information
Feb 26, 2025
cve
Description
An out-of-bounds write flaw was found in X.Org and Xwayland. The function GetBarrierDevice() searches for the pointer device based on its device ID and returns the matching value or supposedly NULL if no match was found. However the code will return the last element of the list if no matching device ID is found which can lead to out-of-bounds memory access.
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Reference
https://access.redhat.com/security/cve/CVE-2025-26598 https://bugzilla.redhat.com/show_bug.cgi?id=2345254
Attack Complexity
LOW
Privileges Required
LOW
User Interaction Required
LOW
Scope
NONE
Confidentiality Impact
UNCHANGED
Integrity Impact
HIGH
Availability Impact
HIGH
Base Score
HIGH
Base Severity
7.8
Share on: