CVE-2021-3472
7.8 HIGHA flaw was found in xorg-x11-server in versions before 1.20.11
Published: 2021-04-26 · Last updated: 2026-06-17
Severity and scoring
- CVSS
- 7.8 HIGH
- Vector
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- CWE
- CWE-191
Affected products
| Vendor | Product |
|---|---|
| debian | debian_linux, enterprise_linux, fedora |
| fedoraproject | debian_linux, enterprise_linux, fedora |
| redhat | debian_linux, enterprise_linux, fedora |
| x.org | debian_linux, enterprise_linux, fedora |
Description
A flaw was found in xorg-x11-server in versions before 1.20.11. An integer underflow can occur in xserver which can lead to a local privilege escalation. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
Source: NVD
References
- [NVD]https://nvd.nist.gov/vuln/detail/CVE-2021-3472
- [Patch]http://www.openwall.com/lists/oss-security/2021/04/13/1
- [Patch]https://bugzilla.redhat.com/show_bug.cgi?id=1944167
- [Patch]https://gitlab.freedesktop.org/xorg/xserver/-/commit/7aaf54a1884f71dc363f0b884e57bcb67407a6cd
- [Other]https://lists.debian.org/debian-lts-announce/2021/04/msg00013.html
- [Other]https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MDF7TAJE7NPZPNVOXSD5HBIFLNPUOD2V/
- [Other]https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MO6S5OPXUDYBSRSVWVLFLJ6AFERG4HNY/
- [Other]https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N63KL3T22HNFT4FJ7VMVF6U5Q4RFJIQF/
- [Other]https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PEXPCLMVU25AUZTUXC4MYBGPKOAIM5TW/
- [Patch]https://lists.x.org/archives/xorg-announce/2021-April/003080.html
- [Patch]https://lists.x.org/archives/xorg-announce/2021-April/003080.html
- [Patch]https://lists.x.org/archives/xorg-announce/2021-April/003080.html
- [Patch]https://lists.x.org/archives/xorg-announce/2021-April/003080.html
- [Patch]https://seclists.org/oss-sec/2021/q2/20
- [Other]https://security.gentoo.org/glsa/202104-02
- [Other]https://www.debian.org/security/2021/dsa-4893
- [Other]https://www.tenable.com/plugins/nessus/148701
- [Other]https://www.zerodayinitiative.com/advisories/ZDI-21-463/
- [Patch]http://www.openwall.com/lists/oss-security/2021/04/13/1
- [Patch]https://bugzilla.redhat.com/show_bug.cgi?id=1944167
- [Patch]https://gitlab.freedesktop.org/xorg/xserver/-/commit/7aaf54a1884f71dc363f0b884e57bcb67407a6cd
- [Other]https://lists.debian.org/debian-lts-announce/2021/04/msg00013.html
- [Other]https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MDF7TAJE7NPZPNVOXSD5HBIFLNPUOD2V/
- [Other]https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MO6S5OPXUDYBSRSVWVLFLJ6AFERG4HNY/
- [Other]https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N63KL3T22HNFT4FJ7VMVF6U5Q4RFJIQF/
- [Other]https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PEXPCLMVU25AUZTUXC4MYBGPKOAIM5TW/
- [Patch]https://lists.x.org/archives/xorg-announce/2021-April/003080.html
- [Patch]https://lists.x.org/archives/xorg-announce/2021-April/003080.html
- [Patch]https://lists.x.org/archives/xorg-announce/2021-April/003080.html
- [Patch]https://lists.x.org/archives/xorg-announce/2021-April/003080.html
- [Patch]https://seclists.org/oss-sec/2021/q2/20
- [Other]https://security.gentoo.org/glsa/202104-02
- [Other]https://www.debian.org/security/2021/dsa-4893
- [Other]https://www.tenable.com/plugins/nessus/148701
- [Other]https://www.zerodayinitiative.com/advisories/ZDI-21-463/
Related CVEs
Same vendor
- CVE-2026-1767 — A flaw was found in the GNOME localsearch (previously known as tracker-miners) MP3 Extractor `tracker-extract-mp3` component (5.6 MEDIUM)
- CVE-2026-1766 — A flaw was found in GNOME localsearch (previously known as tracker-miners) MP3 Extractor, specifically within the tracker-extract-mp3 com... (5.6 MEDIUM)
- CVE-2026-11793 — A stack buffer overflow flaw was found in 389 Directory Server (4.9 MEDIUM)
- CVE-2026-11790 — A flaw was found in 389 Directory Server (4.9 MEDIUM)
- CVE-2026-11789 — A flaw was found in 389 Directory Server (4.9 MEDIUM)
Same CWE
- CVE-2026-54413 — driftregion iso14229 through 0.9.0 contains an integer underflow and downstream out-of-bounds read in the Handle_0x27_SecurityAccess() fu... (8.2 HIGH)
- CVE-2026-54412 — LiamBindle MQTT-C through version 1.1.6 contains a heap-based out-of-bounds read and integer underflow in the mqtt_unpack_publish_respons... (8.2 HIGH)
- CVE-2026-47222 — NanaZip is the 7-Zip derivative intended for the modern Windows experience (5.4 MEDIUM)
- CVE-2026-11850 — An integer underflow vulnerability was found in MIT krb5 in the berval2tl_data() function in plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c (5.0 MEDIUM)
- CVE-2026-42542 — TDengine is an open source, time-series database optimized for Internet of Things devices (7.5 HIGH)