Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
It was found that xorg-x11-server before 1.19.0 including uses memcmp() to check the received MIT cookie against a series of valid cookies. If the cookie is correct, it is allowed to attach to the Xorg session. Since most memcmp() implementations return after an invalid byte is seen, this causes a time difference between a valid and invalid byte, which could allow an efficient brute force attack.
CVSS Information
N/A
Vulnerability Type
隐蔽时间通道
Vulnerability Title
X.org X Server 信息泄露漏洞
Vulnerability Description
X.Org X Server是X.Org基金会的一款X Window系统显示服务器。 X.org X Server 1.19.0之前版本中存在信息泄露漏洞。本地攻击者可利用该漏洞实施暴力破解攻击。
CVSS Information
N/A
Vulnerability Type
N/A