VDB-211055 · ~~CVE-2022-3555~~

X.org libX11 xcb_disp.c _XFreeX11XCBStructure dpy memory leak 🚫 [False Positive]

A vulnerability was suspected in X.org libX11. Further analysis revealed that this issues is a false-positive. Please take a look at the sources mentioned and consider not using this entry at all.

Field	11/02/2022 22:35	11/09/2022 18:53	11/09/2022 19:01
vendor	X.org	X.org	X.org
name	libX11	libX11	libX11
file	xcb_disp.c	xcb_disp.c	xcb_disp.c
function	_XFreeX11XCBStructure	_XFreeX11XCBStructure	_XFreeX11XCBStructure
argument	dpy	dpy	dpy
cwe	401 (memory leak)	401 (memory leak)	401 (memory leak)
risk	1	1	1
cvss3_vuldb_s	U	U	U
cvss3_vuldb_c	N	N	N
cvss3_vuldb_i	N	N	N
cvss3_vuldb_a	L	L	L
cvss3_vuldb_rl	O	O	O
cvss3_vuldb_rc	U	U	U
url	https://cgit.freedesktop.org/xorg/lib/libX11/commit/?id=8a368d808fec166b5fb3dfe6312aab22c7ee20af	https://cgit.freedesktop.org/xorg/lib/libX11/commit/?id=8a368d808fec166b5fb3dfe6312aab22c7ee20af	https://cgit.freedesktop.org/xorg/lib/libX11/commit/?id=8a368d808fec166b5fb3dfe6312aab22c7ee20af
name	Patch	Patch	Patch
patch_url	https://cgit.freedesktop.org/xorg/lib/libX11/commit/?id=8a368d808fec166b5fb3dfe6312aab22c7ee20af	https://cgit.freedesktop.org/xorg/lib/libX11/commit/?id=8a368d808fec166b5fb3dfe6312aab22c7ee20af	https://cgit.freedesktop.org/xorg/lib/libX11/commit/?id=8a368d808fec166b5fb3dfe6312aab22c7ee20af
cve	CVE-2022-3555	CVE-2022-3555	CVE-2022-3555
responsible	VulDB	VulDB	VulDB
date	1665957600 (10/17/2022)	1665957600 (10/17/2022)	1665957600 (10/17/2022)
cvss2_vuldb_ci	N	N	N
cvss2_vuldb_ii	N	N	N
cvss2_vuldb_ai	P	P	P
cvss2_vuldb_rc	UC	UC	UC
cvss2_vuldb_rl	OF	OF	OF
cvss2_vuldb_av	A	A	A
cvss2_vuldb_ac	M	M	M
cvss2_vuldb_au	S	S	S
cvss2_vuldb_e	ND	ND	ND
cvss3_vuldb_av	A	A	A
cvss3_vuldb_ac	L	L	L
cvss3_vuldb_pr	L	L	L
cvss3_vuldb_ui	N	N	N
cvss3_vuldb_e	X	X	X
cvss2_vuldb_basescore	2.3	2.3	2.3
cvss2_vuldb_tempscore	1.8	1.8	1.8
cvss3_vuldb_basescore	3.5	3.5	3.5
cvss3_vuldb_tempscore	3.1	3.1	3.1
cvss3_meta_basescore	3.5	3.5	3.5
cvss3_meta_tempscore	3.1	3.1	3.1
price_0day
disputed	1	1	1
falsepositive	1	1	1
cve_assigned		1665957600 (10/17/2022)	1665957600 (10/17/2022)
cve_nvd_summary			A vulnerability was found in X.org libX11 and classified as problematic. This issue affects the function _XFreeX11XCBStructure of the file xcb_disp.c. The manipulation of the argument dpy leads to memory leak. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-211055.

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!