X.Org xorg-server 21.1.0

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:x.org:xorg-server:21.1.0:*:*:*:*:*:*:*

part: a version: 21.1.0 update: *

VendorX.Org (4cd053ee-09df-594a-873d-dbd09ec2f899)
ProductXorg Server (d5c5a228-377c-5b85-be9a-ca5da7e1b31e)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
pkg:deb/debian/xserver-xorg-core purl2cpe 2026-06-01 10:14:02.794668
pkg:deb/ubuntu/xserver-xorg-core purl2cpe 2026-06-01 10:14:02.794669
pkg:freedesktop/xorg/xserver purl2cpe 2026-06-01 10:14:02.794671
pkg:github/freedesktop/xorg-xserver purl2cpe 2026-06-01 10:14:02.794672
pkg:rpm/fedora/xorg-x11-server purl2cpe 2026-06-01 10:14:02.794673

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2022-2320 vulnerable 2026-06-03 14:47:06.063751 Details available
A flaw was found in the Xorg-x11-server. The specific flaw exists within the handling of ProcXkbSetDeviceInfo requests. The issue results from the lack of proper validation of user-supplied data, which can result in a memory access past the end of an allocated buffer. This flaw allows an attacker to escalate privileges and execute arbitrary code in the context of root.
Published: 2022-09-01T00:00:00.000Z
Updated: 2024-08-03T00:32:09.611Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2022-2319 vulnerable 2026-06-03 14:47:06.062479 Details available
A flaw was found in the Xorg-x11-server. An out-of-bounds access issue can occur in the ProcXkbSetGeometry function due to improper validation of the request length.
Published: 2022-09-01T00:00:00.000Z
Updated: 2024-08-03T00:32:09.879Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.