CVE-2025-49180
HIGH7.8EPSS 0.15%發布日:2025/6/17修改日:2026/4/28
描述
A flaw was found in the RandR extension, where the RRChangeProviderProperty function does not properly validate input. This issue leads to an integer overflow when computing the total size to allocate.
受影響套件(2)
- Debian/xorg-serverfrom 0, < 2:1.20.11-1+deb11u16
- Debian/xwaylandfrom 0
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH7.8 | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |