Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

X.Org — Vulnerabilities & Security Advisories 13

Browse all 13 CVE security advisories affecting X.Org. AI-powered Chinese analysis, POCs, and references for each vulnerability.

X.org serves as the primary display server for Linux and Unix systems, managing graphical interfaces and input devices. Historically, it has been susceptible to remote code execution, buffer overflows, and privilege escalation vulnerabilities, often through malformed protocol requests or insufficient input validation. While no major public incidents have been widely documented, the project's 13 recorded CVEs highlight ongoing security concerns, particularly in older versions. Its open-source nature allows for rapid vulnerability disclosure and patching, though legacy deployments may remain exposed. Security improvements have focused on memory safety and protocol hardening to mitigate risks associated with its complex, network-facing architecture.

Top products by X.Org: xwayland Server X server
CVE IDTitleCVSSSeverityPublished
CVE-2025-62229 Xorg: xmayland: use-after-free in xpresentnotify structure creation — XwaylandCWE-416 7.3 High2025-10-30
CVE-2025-62230 Xorg: xwayland: use-after-free in xkb client resource removal — XwaylandCWE-416 7.3 High2025-10-30
CVE-2025-62231 Xorg: xmayland: value overflow in xkbsetcompatmap() — XwaylandCWE-190 7.3 High2025-10-30
CVE-2025-49180 Xorg-x11-server-xwayland: xorg-x11-server: tigervnc: integer overflow in x resize, rotate and reflect (randr) extension — xwaylandCWE-190 7.8 High2025-06-17
CVE-2025-49179 Xorg-x11-server-xwayland: xorg-x11-server: tigervnc: integer overflow in x record extension — xwaylandCWE-190 7.3 High2025-06-17
CVE-2025-49178 Xorg-x11-server-xwayland: xorg-x11-server: tigervnc: unprocessed client request due to bytes to ignore — xwaylandCWE-667 5.5 Medium2025-06-17
CVE-2025-49176 Xorg-x11-server-xwayland: xorg-x11-server: tigervnc: integer overflow in big requests extension — xwaylandCWE-190 7.3 High2025-06-17
CVE-2025-49177 Xorg-x11-server-xwayland: xorg-x11-server: tigervnc: data leak in xfixes extension's xfixessetclientdisconnectmode — xwaylandCWE-200 6.1 Medium2025-06-17
CVE-2025-49175 Xorg-x11-server-xwayland: xorg-x11-server: tigervnc: out-of-bounds read in x rendering extension animated cursors — xwaylandCWE-125 6.1 Medium2025-06-17
CVE-2022-49737 X.Org X Server 安全漏洞 — X serverCWE-413 7.7 High2025-03-16
CVE-2022-3550 X.org Server xkb.c _GetCountedString buffer overflow — ServerCWE-119 5.5 Medium2022-10-17
CVE-2022-3551 X.org Server xkb.c ProcXkbGetKbdByName memory leak — ServerCWE-404 3.5 Low2022-10-17
CVE-2022-3553 X.org Server xquartz X11Controller.m denial of service — ServerCWE-404 3.5 Low2022-10-17

This page lists every published CVE security advisory associated with X.Org. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.