Home

CVE-2025-49175

Description

A flaw was found in the X Rendering extensions handling of animated cursors. If a client provides no cursors, the server assumes at least one is present, leading to an out-of-bounds read and potential crash.

Risk Information

Base Score
6.1
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H
EPSS Score
Exploitation Probability
0.082

Associated Vulnerability

VulnerabilityOS Platform
X.Org X11 server (USN-7573-1) xserver-xorg-core_21.1.12-1ubuntu1.4_amd64.debLinux
X.Org X11 server (USN-7573-1) xserver-xorg-core_21.1.12-1ubuntu1.4_i386.debLinux
X.Org X11 server (USN-7573-1) xserver-xorg-core_21.1.13-2ubuntu1.4_amd64.debLinux
X.Org X11 server (USN-7573-1) xserver-xorg-core_21.1.13-2ubuntu1.4_i386.debLinux
X.Org X11 server (USN-7573-1) xserver-xorg-core_21.1.16-1ubuntu1.1_amd64.debLinux
X.Org X11 server (USN-7573-1) xserver-xorg-core_21.1.16-1ubuntu1.1_i386.debLinux
X.Org X11 server (USN-7573-1) xserver-xorg-core_21.1.4-2ubuntu1.7~22.04.15_amd64.debLinux
X.Org X11 server (USN-7573-1) xserver-xorg-core_21.1.4-2ubuntu1.7~22.04.15_i386.debLinux
X.Org X11 server (USN-7573-1) xwayland_22.1.1-1ubuntu0.19_amd64.debLinux
X.Org X11 server (USN-7573-1) xwayland_23.2.6-1ubuntu0.6_amd64.debLinux
X.Org X11 server (USN-7573-1) xwayland_24.1.2-1ubuntu0.6_amd64.debLinux
X.Org X11 server (USN-7573-1) xwayland_24.1.6-1ubuntu0.1_amd64.debLinux
X.Org X11 server (USN-7573-1) xwayland_24.1.6-1ubuntu0.1_i386.debLinux
SUSE-SU-2025:01980-1(Basesystem Module 15 SP6) xorg-x11-server-21.1.11-150600.5.12.1.x86_64.rpmLinux
SUSE-SU-2025:01980-1(Basesystem Module 15 SP6) xorg-x11-server-debuginfo-21.1.11-150600.5.12.1.x86_64.rpmLinux
SUSE-SU-2025:01980-1(Basesystem Module 15 SP6) xorg-x11-server-debugsource-21.1.11-150600.5.12.1.x86_64.rpmLinux
SUSE-SU-2025:01980-1(Basesystem Module 15 SP6) xorg-x11-server-extra-21.1.11-150600.5.12.1.x86_64.rpmLinux
SUSE-SU-2025:01980-1(Basesystem Module 15 SP6) xorg-x11-server-extra-debuginfo-21.1.11-150600.5.12.1.x86_64.rpmLinux
SUSE-SU-2025:01980-1(Development Tools Module 15 SP6) xorg-x11-server-sdk-21.1.11-150600.5.12.1.x86_64.rpmLinux
SUSE-SU-2025:01980-1(Basesystem Module 15 SP6) xorg-x11-server-Xvfb-21.1.11-150600.5.12.1.x86_64.rpmLinux
SUSE-SU-2025:01980-1(Basesystem Module 15 SP6) xorg-x11-server-Xvfb-debuginfo-21.1.11-150600.5.12.1.x86_64.rpmLinux
xorg update (CESAS-2025-0125) xorg-x11-server-Xwayland-24.1.5-4.el10.x86_64.rpmLinux
Tigervnc-server-module update (ELSA-2025-9306) tigervnc-server-module-1.14.1-8.el9_6.x86_64.rpmLinux
Tigervnc-server-minimal update (ELSA-2025-9306) tigervnc-server-minimal-1.14.1-8.el9_6.x86_64.rpmLinux
Tigervnc-server update (ELSA-2025-9306) tigervnc-server-1.14.1-8.el9_6.x86_64.rpmLinux
Tigervnc-selinux update (ELSA-2025-9306) tigervnc-selinux-1.14.1-8.el9_6.noarch.rpmLinux
Tigervnc-license update (ELSA-2025-9306) tigervnc-license-1.14.1-8.el9_6.noarch.rpmLinux
Tigervnc-icons update (ELSA-2025-9306) tigervnc-icons-1.14.1-8.el9_6.noarch.rpmLinux
Tigervnc update (ELSA-2025-9306) tigervnc-1.14.1-8.el9_6.x86_64.rpmLinux
Tigervnc-server-module update (ELSA-2025-9392) tigervnc-server-module-1.15.0-7.el8_10.x86_64.rpmLinux
Tigervnc-server-minimal update (ELSA-2025-9392) tigervnc-server-minimal-1.15.0-7.el8_10.x86_64.rpmLinux
Tigervnc-server update (ELSA-2025-9392) tigervnc-server-1.15.0-7.el8_10.x86_64.rpmLinux
Tigervnc-selinux update (ELSA-2025-9392) tigervnc-selinux-1.15.0-7.el8_10.noarch.rpmLinux
Tigervnc-license update (ELSA-2025-9392) tigervnc-license-1.15.0-7.el8_10.noarch.rpmLinux
Tigervnc-icons update (ELSA-2025-9392) tigervnc-icons-1.15.0-7.el8_10.noarch.rpmLinux
Tigervnc update (ELSA-2025-9392) tigervnc-1.15.0-7.el8_10.x86_64.rpmLinux
Xorg-x11-server-Xwayland update (ELSA-2025-9305) xorg-x11-server-Xwayland-21.1.3-18.el8_10.x86_64.rpmLinux
Xorg-x11-server-Xvfb update (ELSA-2025-9305) xorg-x11-server-Xvfb-1.20.11-26.el8_10.x86_64.rpmLinux
Xorg-x11-server-Xorg update (ELSA-2025-9305) xorg-x11-server-Xorg-1.20.11-26.el8_10.x86_64.rpmLinux
Xorg-x11-server-Xnest update (ELSA-2025-9305) xorg-x11-server-Xnest-1.20.11-26.el8_10.x86_64.rpmLinux
Xorg-x11-server-Xephyr update (ELSA-2025-9305) xorg-x11-server-Xephyr-1.20.11-26.el8_10.x86_64.rpmLinux
Xorg-x11-server-Xdmx update (ELSA-2025-9305) xorg-x11-server-Xdmx-1.20.11-26.el8_10.x86_64.rpmLinux
Xorg-x11-server-common update (ELSA-2025-9305) xorg-x11-server-common-1.20.11-26.el8_10.x86_64.rpmLinux
Xorg-x11-server-Xwayland update (ELSA-2025-9303) xorg-x11-server-Xwayland-23.2.7-4.el9_6.x86_64.rpmLinux
Xorg-x11-server-Xvfb update (ELSA-2025-9303) xorg-x11-server-Xvfb-1.20.11-31.el9_6.x86_64.rpmLinux
Xorg-x11-server-Xorg update (ELSA-2025-9303) xorg-x11-server-Xorg-1.20.11-31.el9_6.x86_64.rpmLinux
Xorg-x11-server-Xnest update (ELSA-2025-9303) xorg-x11-server-Xnest-1.20.11-31.el9_6.x86_64.rpmLinux
Xorg-x11-server-Xephyr update (ELSA-2025-9303) xorg-x11-server-Xephyr-1.20.11-31.el9_6.x86_64.rpmLinux
Xorg-x11-server-Xdmx update (ELSA-2025-9303) xorg-x11-server-Xdmx-1.20.11-31.el9_6.x86_64.rpmLinux
Xorg-x11-server-common update (ELSA-2025-9303) xorg-x11-server-common-1.20.11-31.el9_6.x86_64.rpmLinux
(RHSA-2025:9306)Important: security update tigervnc-server-module-1.14.1-8.el9_6.x86_64.rpmLinux
(RHSA-2025:9306)Important: security update tigervnc-server-minimal-1.14.1-8.el9_6.x86_64.rpmLinux
(RHSA-2025:9306)Important: security update tigervnc-server-1.14.1-8.el9_6.x86_64.rpmLinux
(RHSA-2025:9306)Important: security update tigervnc-selinux-1.14.1-8.el9_6.noarch.rpmLinux
(RHSA-2025:9306)Important: security update tigervnc-license-1.14.1-8.el9_6.noarch.rpmLinux
(RHSA-2025:9306)Important: security update tigervnc-icons-1.14.1-8.el9_6.noarch.rpmLinux
(RHSA-2025:9306)Important: security update tigervnc-1.14.1-8.el9_6.x86_64.rpmLinux
(RHSA-2025:9392)Important: security update tigervnc-server-module-1.15.0-7.el8_10.x86_64.rpmLinux
(RHSA-2025:9392)Important: security update tigervnc-server-minimal-1.15.0-7.el8_10.x86_64.rpmLinux
(RHSA-2025:9392)Important: security update tigervnc-server-1.15.0-7.el8_10.x86_64.rpmLinux
(RHSA-2025:9392)Important: security update tigervnc-selinux-1.15.0-7.el8_10.noarch.rpmLinux
(RHSA-2025:9392)Important: security update tigervnc-license-1.15.0-7.el8_10.noarch.rpmLinux
(RHSA-2025:9392)Important: security update tigervnc-icons-1.15.0-7.el8_10.noarch.rpmLinux
(RHSA-2025:9392)Important: security update tigervnc-1.15.0-7.el8_10.x86_64.rpmLinux
(RHSA-2025:9303)Important: and-Xwayland security update xorg-x11-server-common-1.20.11-31.el9_6.x86_64.rpmLinux
(RHSA-2025:9305)Important: and-Xwayland security update xorg-x11-server-common-1.20.11-26.el8_10.x86_64.rpmLinux
(RHSA-2025:9305)Important: and-Xwayland security update xorg-x11-server-Xwayland-21.1.3-18.el8_10.x86_64.rpmLinux
(RHSA-2025:9305)Important: and-Xwayland security update xorg-x11-server-Xvfb-1.20.11-26.el8_10.x86_64.rpmLinux
Important: xorg-x11-server and xorg-x11-server-Xwayland security update xorg-x11-server-common-1.20.11-26.el8_10.x86_64.rpmLinux
Important: xorg-x11-server and xorg-x11-server-Xwayland security update xorg-x11-server-Xwayland-21.1.3-18.el8_10.x86_64.rpmLinux
Important: xorg-x11-server and xorg-x11-server-Xwayland security update xorg-x11-server-Xvfb-1.20.11-26.el8_10.x86_64.rpmLinux
Important: xorg-x11-server and xorg-x11-server-Xwayland security update xorg-x11-server-Xorg-1.20.11-26.el8_10.x86_64.rpmLinux
Important: xorg-x11-server and xorg-x11-server-Xwayland security update xorg-x11-server-Xnest-1.20.11-26.el8_10.x86_64.rpmLinux
Important: xorg-x11-server and xorg-x11-server-Xwayland security update xorg-x11-server-Xephyr-1.20.11-26.el8_10.x86_64.rpmLinux
Important: xorg-x11-server and xorg-x11-server-Xwayland security update xorg-x11-server-Xdmx-1.20.11-26.el8_10.x86_64.rpmLinux
Important: xorg-x11-server and xorg-x11-server-Xwayland security update xorg-x11-server-common-1.20.11-31.el9_6.x86_64.rpmLinux
Important: xorg-x11-server and xorg-x11-server-Xwayland security update xorg-x11-server-Xwayland-23.2.7-4.el9_6.x86_64.rpmLinux
Important: xorg-x11-server and xorg-x11-server-Xwayland security update xorg-x11-server-Xvfb-1.20.11-31.el9_6.x86_64.rpmLinux
Important: xorg-x11-server and xorg-x11-server-Xwayland security update xorg-x11-server-Xorg-1.20.11-31.el9_6.x86_64.rpmLinux
Important: xorg-x11-server and xorg-x11-server-Xwayland security update xorg-x11-server-Xnest-1.20.11-31.el9_6.x86_64.rpmLinux
Important: xorg-x11-server and xorg-x11-server-Xwayland security update xorg-x11-server-Xephyr-1.20.11-31.el9_6.x86_64.rpmLinux
Important: xorg-x11-server and xorg-x11-server-Xwayland security update xorg-x11-server-Xdmx-1.20.11-31.el9_6.x86_64.rpmLinux
Important: tigervnc security update ALSA-2025:9306 tigervnc-server-module-1.14.1-8.el9_6.x86_64.rpmLinux
Important: tigervnc security update ALSA-2025:9306 tigervnc-server-minimal-1.14.1-8.el9_6.x86_64.rpmLinux
Important: tigervnc security update ALSA-2025:9306 tigervnc-server-1.14.1-8.el9_6.x86_64.rpmLinux
Important: tigervnc security update ALSA-2025:9306 tigervnc-selinux-1.14.1-8.el9_6.noarch.rpmLinux
Important: tigervnc security update ALSA-2025:9306 tigervnc-license-1.14.1-8.el9_6.noarch.rpmLinux
Important: tigervnc security update ALSA-2025:9306 tigervnc-icons-1.14.1-8.el9_6.noarch.rpmLinux
Important: tigervnc security update ALSA-2025:9306 tigervnc-1.14.1-8.el9_6.x86_64.rpmLinux
Important: tigervnc security update ALSA-2025:9392 tigervnc-server-module-1.15.0-7.el8_10.x86_64.rpmLinux
Important: tigervnc security update ALSA-2025:9392 tigervnc-server-minimal-1.15.0-7.el8_10.x86_64.rpmLinux
Important: tigervnc security update ALSA-2025:9392 tigervnc-server-1.15.0-7.el8_10.x86_64.rpmLinux
Important: tigervnc security update ALSA-2025:9392 tigervnc-selinux-1.15.0-7.el8_10.noarch.rpmLinux
Important: tigervnc security update ALSA-2025:9392 tigervnc-license-1.15.0-7.el8_10.noarch.rpmLinux
Important: tigervnc security update ALSA-2025:9392 tigervnc-icons-1.15.0-7.el8_10.noarch.rpmLinux
Important: tigervnc security update ALSA-2025:9392 tigervnc-1.15.0-7.el8_10.x86_64.rpmLinux
sudo update (CESAS-2025-0131) sudo-python-plugin-1.9.5p2-13.el9.x86_64.rpmLinux
sudo update (CESAS-2025-0138) sudo-1.9.5p2-13.el9.x86_64.rpmLinux
weldr update (CESAS-2025-0135) weldr-client-35.12-4.el9.x86_64.rpmLinux
tigervnc update (CESAS-2025-0133) tigervnc-server-1.15.0-5.el9.x86_64.rpmLinux
tigervnc update (CESAS-2025-0133) tigervnc-icons-1.15.0-5.el9.noarch.rpmLinux
tigervnc update (CESAS-2025-0133) tigervnc-license-1.15.0-5.el9.noarch.rpmLinux
tigervnc update (CESAS-2025-0133) tigervnc-selinux-1.15.0-5.el9.noarch.rpmLinux
tigervnc update (CESAS-2025-0133) tigervnc-server-minimal-1.15.0-5.el9.x86_64.rpmLinux
tigervnc update (CESAS-2025-0133) tigervnc-server-module-1.15.0-5.el9.x86_64.rpmLinux
tigervnc update (CESAS-2025-0133) tigervnc-1.15.0-5.el9.x86_64.rpmLinux
rv update (CESAS-2025-0131) rv-5.14.0-596.el9.x86_64.rpmLinux
rtla update (CESAS-2025-0131) rtla-5.14.0-596.el9.x86_64.rpmLinux
xorg update (CESAS-2025-0133) xorg-x11-server-common-1.20.11-31.el9.x86_64.rpmLinux
xorg update (CESAS-2025-0133) xorg-x11-server-Xwayland-23.2.7-4.el9.x86_64.rpmLinux
xorg update (CESAS-2025-0133) xorg-x11-server-Xvfb-1.20.11-31.el9.x86_64.rpmLinux
xorg update (CESAS-2025-0133) xorg-x11-server-Xorg-1.20.11-31.el9.x86_64.rpmLinux
xorg update (CESAS-2025-0133) xorg-x11-server-Xnest-1.20.11-31.el9.x86_64.rpmLinux
xorg update (CESAS-2025-0133) xorg-x11-server-Xephyr-1.20.11-31.el9.x86_64.rpmLinux
xorg update (CESAS-2025-0133) xorg-x11-server-Xdmx-1.20.11-31.el9.x86_64.rpmLinux
tigervnc Security Update (ALAS2023-2025-1060) tigervnc-server-module-1.14.1-3.amzn2023.0.2.x86_64.rpmLinux
tigervnc Security Update (ALAS2023-2025-1060) tigervnc-server-minimal-1.14.1-3.amzn2023.0.2.x86_64.rpmLinux
tigervnc Security Update (ALAS2023-2025-1060) tigervnc-server-1.14.1-3.amzn2023.0.2.x86_64.rpmLinux
tigervnc Security Update (ALAS2023-2025-1060) tigervnc-selinux-1.14.1-3.amzn2023.0.2.noarch.rpmLinux
tigervnc Security Update (ALAS2023-2025-1060) tigervnc-license-1.14.1-3.amzn2023.0.2.noarch.rpmLinux
tigervnc Security Update (ALAS2023-2025-1060) tigervnc-icons-1.14.1-3.amzn2023.0.2.noarch.rpmLinux
tigervnc Security Update (ALAS2023-2025-1060) tigervnc-1.14.1-3.amzn2023.0.2.x86_64.rpmLinux
tigervnc Security Update (ALAS2-2025-2917) tigervnc-server-module-1.8.0-24.amzn2.0.6.x86_64.rpmLinux
tigervnc Security Update (ALAS2-2025-2917) tigervnc-server-minimal-1.8.0-24.amzn2.0.6.x86_64.rpmLinux
tigervnc Security Update (ALAS2-2025-2917) tigervnc-server-applet-1.8.0-24.amzn2.0.6.noarch.rpmLinux
tigervnc Security Update (ALAS2-2025-2917) tigervnc-server-1.8.0-24.amzn2.0.6.x86_64.rpmLinux
tigervnc Security Update (ALAS2-2025-2917) tigervnc-license-1.8.0-24.amzn2.0.6.noarch.rpmLinux
tigervnc Security Update (ALAS2-2025-2917) tigervnc-icons-1.8.0-24.amzn2.0.6.noarch.rpmLinux
tigervnc Security Update (ALAS2-2025-2917) tigervnc-1.8.0-24.amzn2.0.6.x86_64.rpmLinux
xorg-x11-server Security Update (ALAS2-2025-2918) xorg-x11-server-source-1.20.4-22.amzn2.0.9.noarch.rpmLinux
xorg-x11-server Security Update (ALAS2-2025-2918) xorg-x11-server-devel-1.20.4-22.amzn2.0.9.x86_64.rpmLinux
xorg-x11-server Security Update (ALAS2-2025-2918) xorg-x11-server-common-1.20.4-22.amzn2.0.9.x86_64.rpmLinux
xorg-x11-server Security Update (ALAS2-2025-2918) xorg-x11-server-Xwayland-1.20.4-22.amzn2.0.9.x86_64.rpmLinux
xorg-x11-server Security Update (ALAS2-2025-2918) xorg-x11-server-Xvfb-1.20.4-22.amzn2.0.9.x86_64.rpmLinux
xorg-x11-server Security Update (ALAS2-2025-2918) xorg-x11-server-Xorg-1.20.4-22.amzn2.0.9.x86_64.rpmLinux
xorg-x11-server Security Update (ALAS2-2025-2918) xorg-x11-server-Xnest-1.20.4-22.amzn2.0.9.x86_64.rpmLinux
xorg-x11-server Security Update (ALAS2-2025-2918) xorg-x11-server-Xephyr-1.20.4-22.amzn2.0.9.x86_64.rpmLinux
xorg-x11-server Security Update (ALAS2-2025-2918) xorg-x11-server-Xdmx-1.20.4-22.amzn2.0.9.x86_64.rpmLinux
xorg-x11-server Security Update (ALAS2023-2025-1061) xorg-x11-server-source-21.1.13-5.amzn2023.0.6.noarch.rpmLinux
xorg-x11-server Security Update (ALAS2023-2025-1061) xorg-x11-server-devel-21.1.13-5.amzn2023.0.6.x86_64.rpmLinux
xorg-x11-server Security Update (ALAS2023-2025-1061) xorg-x11-server-common-21.1.13-5.amzn2023.0.6.x86_64.rpmLinux
xorg-x11-server Security Update (ALAS2023-2025-1061) xorg-x11-server-Xvfb-21.1.13-5.amzn2023.0.6.x86_64.rpmLinux
xorg-x11-server Security Update (ALAS2023-2025-1061) xorg-x11-server-Xorg-21.1.13-5.amzn2023.0.6.x86_64.rpmLinux
xorg-x11-server Security Update (ALAS2023-2025-1061) xorg-x11-server-Xnest-21.1.13-5.amzn2023.0.6.x86_64.rpmLinux
xorg-x11-server Security Update (ALAS2023-2025-1061) xorg-x11-server-Xephyr-21.1.13-5.amzn2023.0.6.x86_64.rpmLinux
xorg-x11-server-Xwayland Security Update (ALAS2023-2025-1062) xorg-x11-server-Xwayland-devel-24.1.3-1.amzn2023.0.2.x86_64.rpmLinux
xorg-x11-server-Xwayland Security Update (ALAS2023-2025-1062) xorg-x11-server-Xwayland-24.1.3-1.amzn2023.0.2.x86_64.rpmLinux
xorg-x11-server and xorg-x11-server-Xwayland security update (RLSA-2025:9305) RLSA-2025:9305 xorg-x11-server-Xdmx-1.20.11-26.el8_10.x86_64.rpmLinux
xorg-x11-server and xorg-x11-server-Xwayland security update (RLSA-2025:9305) RLSA-2025:9305 xorg-x11-server-Xephyr-1.20.11-26.el8_10.x86_64.rpmLinux
xorg-x11-server and xorg-x11-server-Xwayland security update (RLSA-2025:9305) RLSA-2025:9305 xorg-x11-server-Xnest-1.20.11-26.el8_10.x86_64.rpmLinux
xorg-x11-server and xorg-x11-server-Xwayland security update (RLSA-2025:9305) RLSA-2025:9305 xorg-x11-server-Xvfb-1.20.11-26.el8_10.x86_64.rpmLinux
xorg-x11-server and xorg-x11-server-Xwayland security update (RLSA-2025:9305) RLSA-2025:9305 xorg-x11-server-Xwayland-21.1.3-18.el8_10.x86_64.rpmLinux
xorg-x11-server and xorg-x11-server-Xwayland security update (RLSA-2025:9305) RLSA-2025:9305 xorg-x11-server-common-1.20.11-26.el8_10.x86_64.rpmLinux
xorg-x11-server and xorg-x11-server-Xwayland security update (RLSA-2025:9305) RLSA-2025:9305 xorg-x11-server-Xorg-1.20.11-26.el8_10.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234