CVE-2026-34003
Severity
High
CVSS score
7.8Package
xorg-serverAffected versions
>= 2:21.1.16-1.3+deb13u1+e1A flaw exists in the X.Org X server's validation of XKB key types requests. A local attacker can send a specially crafted request to the X server, which may lead to an out-of-bounds memory access vulnerability. This vulnerability could result in the disclosure of sensitive information or cause the server to crash, resulting in a Denial of Service (DoS). In specific configurations, more severe outcomes could potentially occur.
NVD Record:
References:
- https://access.redhat.com/errata/RHSA-2026:10739
- https://access.redhat.com/errata/RHSA-2026:11352
- https://access.redhat.com/errata/RHSA-2026:11369
- https://access.redhat.com/errata/RHSA-2026:11388
- https://access.redhat.com/errata/RHSA-2026:11656
- https://access.redhat.com/errata/RHSA-2026:11692
- https://access.redhat.com/security/cve/CVE-2026-34003
- https://bugzilla.redhat.com/show_bug.cgi?id=2451113