It is always interesting to see stuff like this found after so long. It really makes you wonder if some nation state or bad-actor found it long ago and just uses it whenever.
Archive: https://archive.today/sKlUN
From the post:
>CVE-2024-9632 was made public today as the latest security vulnerability affecting the X.Org Server. The CVE-2024-9632 security issue has been present in the codebase now for 18 years and can lead to local privilege escalation. Introduced in the X.Org Server 1.1.1 release back in 2006, CVE-2024-9632 affects the X.Org Server as well as XWayland too. By providing a modified bitmap to the X.Org Server, a heap-based buffer overflow privilege escalation can occur.
It is always interesting to see stuff like this found after so long. It really makes you wonder if some nation state or bad-actor found it long ago and just uses it whenever.
Archive: https://archive.today/sKlUN
From the post:
>>CVE-2024-9632 was made public today as the latest security vulnerability affecting the X.Org Server. The CVE-2024-9632 security issue has been present in the codebase now for 18 years and can lead to local privilege escalation.
Introduced in the X.Org Server 1.1.1 release back in 2006, CVE-2024-9632 affects the X.Org Server as well as XWayland too. By providing a modified bitmap to the X.Org Server, a heap-based buffer overflow privilege escalation can occur.
Login or register