目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1336

100%

CVE-2025-26601— X.Org和Xwayland 资源管理错误漏洞

CVSS 7.8 · High EPSS 0.36% · P28

可能的 ATT&CK 技术 1AI

T1211 · Exploitation for Stealth

影响版本矩阵 24

厂商产品版本范围状态
NoneNone< 21.1.16affected
22.0.0< 24.1.6affected
Red HatRed Hat Enterprise Linux 100:24.1.5-3.el10_0< *unaffected
Red HatRed Hat Enterprise Linux 6全部unknown
Red HatRed Hat Enterprise Linux 6 Extended Lifecycle Support - EXTENSION0:1.1.0-25.el6_10< *unaffected
Red HatRed Hat Enterprise Linux 7 Extended Lifecycle Support0:1.8.0-36.el7_9< *unaffected
0:1.20.4-30.el7_9< *unaffected
Red HatRed Hat Enterprise Linux 80:1.13.1-15.el8_10< *unaffected
全部unaffected
全部unaffected
Red HatRed Hat Enterprise Linux 8.2 Advanced Update Support0:1.9.0-15.el8_2.13< *unaffected
Red HatRed Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support0:1.11.0-8.el8_4.12< *unaffected
Red HatRed Hat Enterprise Linux 8.4 Telecommunications Update Service0:1.11.0-8.el8_4.12< *unaffected
Red HatRed Hat Enterprise Linux 8.4 Update Services for SAP Solutions0:1.11.0-8.el8_4.12< *unaffected
Red HatRed Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support0:1.12.0-6.el8_6.13< *unaffected
Red HatRed Hat Enterprise Linux 8.6 Telecommunications Update Service0:1.12.0-6.el8_6.13< *unaffected
Red HatRed Hat Enterprise Linux 8.6 Update Services for SAP Solutions0:1.12.0-6.el8_6.13< *unaffected
Red HatRed Hat Enterprise Linux 8.8 Extended Update Support0:1.12.0-15.el8_8.12< *unaffected
Red HatRed Hat Enterprise Linux 90:1.14.1-1.el9_5.1< *unaffected
0:1.20.11-28.el9_6< *unaffected
0:23.2.7-3.el9_6< *unaffected
Red HatRed Hat Enterprise Linux 9.0 Update Services for SAP Solutions0:1.11.0-22.el9_0.13< *unaffected
Red HatRed Hat Enterprise Linux 9.2 Extended Update Support0:1.12.0-14.el9_2.10< *unaffected
Red HatRed Hat Enterprise Linux 9.4 Extended Update Support0:1.13.1-8.el9_4.5< *unaffected

一、 漏洞 CVE-2025-26601 基础信息

漏洞信息

对漏洞内容有疑问?看看神龙的深度分析是否有帮助!
查看神龙十问 ↗

尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。

Vulnerability Title
Xorg: xwayland: use-after-free in syncinittrigger()
来源: 美国国家漏洞数据库 NVD
Vulnerability Description
A use-after-free flaw was found in X.Org and Xwayland. When changing an alarm, the values of the change mask are evaluated one after the other, changing the trigger values as requested, and eventually, SyncInitTrigger() is called. If one of the changes triggers an error, the function will return early, not adding the new sync object, possibly causing a use-after-free when the alarm eventually triggers.
来源: 美国国家漏洞数据库 NVD
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
来源: 美国国家漏洞数据库 NVD
Vulnerability Type
释放后使用
来源: 美国国家漏洞数据库 NVD
Vulnerability Title
X.Org和Xwayland 资源管理错误漏洞
来源: 中国国家信息安全漏洞库 CNNVD
Vulnerability Description
X.Org是X.Org基金会的一个开放源代码的自由软件。Xwayland是Xwayland开源的一个通信协议,规定了显示服务器与其客户机之间的通信方式。 X.Org和Xwayland存在资源管理错误漏洞,该漏洞源于更改警报时逐个评估更改掩码值,可能导致释放后重用。
来源: 中国国家信息安全漏洞库 CNNVD
CVSS Information
N/A
来源: 中国国家信息安全漏洞库 CNNVD
Vulnerability Type
N/A
来源: 中国国家信息安全漏洞库 CNNVD

受影响产品

厂商产品影响版本CPE订阅
-- 0 ~ 21.1.16 -
Red HatRed Hat Enterprise Linux 10 0:24.1.5-3.el10_0 ~ * cpe:/o:redhat:enterprise_linux:10.0
Red HatRed Hat Enterprise Linux 6 Extended Lifecycle Support - EXTENSION 0:1.1.0-25.el6_10 ~ * cpe:/o:redhat:rhel_els:6
Red HatRed Hat Enterprise Linux 7 Extended Lifecycle Support 0:1.8.0-36.el7_9 ~ * cpe:/o:redhat:rhel_els:7
Red HatRed Hat Enterprise Linux 7 Extended Lifecycle Support 0:1.20.4-30.el7_9 ~ * cpe:/o:redhat:rhel_els:7
Red HatRed Hat Enterprise Linux 8 0:1.13.1-15.el8_10 ~ * cpe:/a:redhat:enterprise_linux:8::appstream
Red HatRed Hat Enterprise Linux 8.2 Advanced Update Support 0:1.9.0-15.el8_2.13 ~ * cpe:/a:redhat:rhel_aus:8.2::appstream
Red HatRed Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support 0:1.11.0-8.el8_4.12 ~ * cpe:/a:redhat:rhel_aus:8.4::appstream
Red HatRed Hat Enterprise Linux 8.4 Telecommunications Update Service 0:1.11.0-8.el8_4.12 ~ * cpe:/a:redhat:rhel_aus:8.4::appstream
Red HatRed Hat Enterprise Linux 8.4 Update Services for SAP Solutions 0:1.11.0-8.el8_4.12 ~ * cpe:/a:redhat:rhel_aus:8.4::appstream
Red HatRed Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support 0:1.12.0-6.el8_6.13 ~ * cpe:/a:redhat:rhel_aus:8.6::appstream
Red HatRed Hat Enterprise Linux 8.6 Telecommunications Update Service 0:1.12.0-6.el8_6.13 ~ * cpe:/a:redhat:rhel_aus:8.6::appstream
Red HatRed Hat Enterprise Linux 8.6 Update Services for SAP Solutions 0:1.12.0-6.el8_6.13 ~ * cpe:/a:redhat:rhel_aus:8.6::appstream
Red HatRed Hat Enterprise Linux 8.8 Extended Update Support 0:1.12.0-15.el8_8.12 ~ * cpe:/a:redhat:rhel_eus:8.8::appstream
Red HatRed Hat Enterprise Linux 9 0:1.14.1-1.el9_5.1 ~ * cpe:/a:redhat:enterprise_linux:9::appstream
Red HatRed Hat Enterprise Linux 9 0:1.20.11-28.el9_6 ~ * cpe:/a:redhat:enterprise_linux:9::appstream
Red HatRed Hat Enterprise Linux 9 0:23.2.7-3.el9_6 ~ * cpe:/a:redhat:enterprise_linux:9::appstream
Red HatRed Hat Enterprise Linux 9.0 Update Services for SAP Solutions 0:1.11.0-22.el9_0.13 ~ * cpe:/a:redhat:rhel_e4s:9.0::appstream
Red HatRed Hat Enterprise Linux 9.2 Extended Update Support 0:1.12.0-14.el9_2.10 ~ * cpe:/a:redhat:rhel_eus:9.2::appstream
Red HatRed Hat Enterprise Linux 9.4 Extended Update Support 0:1.13.1-8.el9_4.5 ~ * cpe:/a:redhat:rhel_eus:9.4::appstream
Red HatRed Hat Enterprise Linux 6-cpe:/o:redhat:enterprise_linux:6
Red HatRed Hat Enterprise Linux 8-cpe:/o:redhat:enterprise_linux:8
Red HatRed Hat Enterprise Linux 8-cpe:/o:redhat:enterprise_linux:8

二、漏洞 CVE-2025-26601 的公开POC

#POC 描述源链接神龙链接
AI 生成 POC高级

未找到公开 POC。

登录以生成 AI POC

三、漏洞 CVE-2025-26601 的情报信息

登录查看更多情报信息。

CVE-2025-26601 厂商安全公告 (16)

IV. Related Vulnerabilities

V. Comments for CVE-2025-26601

暂无评论


发表评论