Launchpad.net

CVE 2021-4008

A flaw was found in xorg-x11-server in versions before 21.1.2 and before 1.20.14. An out-of-bounds access can occur in the SProcRenderCompositeGlyphs function. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

Related bugs and status

CVE-2021-4008 (Candidate) is related to these bugs:

Bug #1947820: [SRU] Backport xorg-server 1.20.13 to focal

		In	Importance	Status
1947820	[SRU] Backport xorg-server 1.20.13 to focal	xorg-server (Ubuntu)	Undecided	Invalid
1947820	[SRU] Backport xorg-server 1.20.13 to focal	OEM Priority Project	Critical	Fix Released
1947820	[SRU] Backport xorg-server 1.20.13 to focal	xorg-server (Ubuntu Focal)	Undecided	Fix Released
1947820	[SRU] Backport xorg-server 1.20.13 to focal	AMD	Undecided	Fix Released

Bug #1949553: Backport packages for 20.04.4 HWE stack

		In	Importance	Status
1949553	Backport packages for 20.04.4 HWE stack	mesa (Ubuntu)	Undecided	Invalid
1949553	Backport packages for 20.04.4 HWE stack	xorg-server (Ubuntu)	Undecided	Invalid
1949553	Backport packages for 20.04.4 HWE stack	libdrm (Ubuntu)	Undecided	Invalid
1949553	Backport packages for 20.04.4 HWE stack	libdrm (Ubuntu Focal)	Undecided	Fix Released
1949553	Backport packages for 20.04.4 HWE stack	mesa (Ubuntu Focal)	Undecided	Fix Released
1949553	Backport packages for 20.04.4 HWE stack	xorg-server (Ubuntu Focal)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2021-4008

Related bugs and status

Related bugs

References