发布于3月6日3月6日 Members Ubuntu: USN-5986-1 (CVE-2023-1393): X.Org X Server vulnerability Severity 7 CVSS (AV:L/AC:L/Au:S/C:C/I:C/A:C) Published 03/30/2023 Created 05/05/2023 Added 04/10/2023 Modified 01/28/2025 Description A flaw was found in X.Org Server Overlay Window. A Use-After-Free may lead to local privilege escalation. If a client explicitly destroys the compositor overlay window (aka COW), the Xserver would leave a dangling pointer to that window in the CompScreen structure, which will trigger a use-after-free later. Solution(s) ubuntu-upgrade-xserver-xorg-core ubuntu-upgrade-xserver-xorg-core-hwe-18-04 ubuntu-upgrade-xwayland ubuntu-upgrade-xwayland-hwe-18-04 References https://attackerkb.com/topics/cve-2023-1393 CVE - 2023-1393 USN-5986-1
