Bug 1869139 (CVE-2020-14360)

Summary: CVE-2020-14360 xorg-x11-server: Out-of-bounds access in XkbSetMap function
Product: [Other] Security Response Reporter: Huzaifa S. Sidhpurwala <huzaifas>
Component: vulnerabilityAssignee: Red Hat Product Security <security-response-team>
Status: CLOSED ERRATA QA Contact:
Severity: high Docs Contact:
Priority: high    
Version: unspecifiedCC: ajax, bskeggs, caillon+fedoraproject, jglisse, ofourdan, rhughes, rstrode, sandmann, security-response-team, xgl-maint
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: xorg-x11-server 1.20.10 Doc Type: If docs needed, set a value
Doc Text:
A flaw was found in the X.Org Server. An out-of-bounds access in the XkbSetMap function may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
 Story Points: ---
Clone Of: Environment:
Last Closed: 2020-12-14 18:47:08 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1903258, 1904933, 1904934, 1904935    
Bug Blocks: 1887277    

Description Huzaifa S. Sidhpurwala 2020-08-17 04:25:32 UTC 
A flaw was found in X.Org Server. An Out-Of-Bounds access in XkbSetMap function may lead to a privilege escalation vulnerability. Root cause is same as CVE-2020-14345.
Comment 1 Huzaifa S. Sidhpurwala 2020-08-17 04:28:32 UTC 
Acknowledgments:

Name: Jan-Niklas Sohn (Trend Micro Zero Day Initiative)
Comment 3 Guilherme de Almeida Suckevicz 2020-12-01 17:29:51 UTC 
Created xorg-x11-server tracking bugs for this issue:

Affects: fedora-all [bug 1903258]
Comment 4 Huzaifa S. Sidhpurwala 2020-12-07 06:43:28 UTC 
External References:

https://lists.x.org/archives/xorg-announce/2020-December/003066.html
Comment 6 Huzaifa S. Sidhpurwala 2020-12-07 06:46:30 UTC 
Upstream patch: https://gitlab.freedesktop.org/xorg/xserver/-/commit/446ff2d3177087b8173fa779fa5b77a2a128988b
Comment 7 Huzaifa S. Sidhpurwala 2020-12-07 06:47:22 UTC 
Statement:

The Xorg server in Red Hat Enterprise Linux 8 does not run with root privileges, thus this flaw has been rated as having a moderate impact on that platform.
Comment 8 errata-xmlrpc 2020-12-14 16:29:17 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7

Via RHSA-2020:5408 https://access.redhat.com/errata/RHSA-2020:5408
Comment 9 Product Security DevOps Team 2020-12-14 18:47:08 UTC 
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):

https://access.redhat.com/security/cve/cve-2020-14360
Comment 10 errata-xmlrpc 2021-05-18 15:11:55 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2021:1804 https://access.redhat.com/errata/RHSA-2021:1804