Use-After-Free Vulnerability in X.Org Server Overlay Window

Use-After-Free Vulnerability in X.Org Server Overlay Window

CVE-2023-1393 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

A flaw was found in X.Org Server Overlay Window. A Use-After-Free may lead to local privilege escalation. If a client explicitly destroys the compositor overlay window (aka COW), the Xserver would leave a dangling pointer to that window in the CompScreen structure, which will trigger a use-after-free later.

Learn more about our Cis Benchmark Audit For Server Software.