A flaw was found in X.Org Server. An Out-Of-Bounds access in XkbSetMap function may lead to a privilege escalation vulnerability. Root cause is same as CVE-2020-14345.
Acknowledgments: Name: Jan-Niklas Sohn (Trend Micro Zero Day Initiative)
Created xorg-x11-server tracking bugs for this issue: Affects: fedora-all [bug 1903258]
External References: https://lists.x.org/archives/xorg-announce/2020-December/003066.html
Upstream patch: https://gitlab.freedesktop.org/xorg/xserver/-/commit/446ff2d3177087b8173fa779fa5b77a2a128988b
Statement: The Xorg server in Red Hat Enterprise Linux 8 does not run with root privileges, thus this flaw has been rated as having a moderate impact on that platform.
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2020:5408 https://access.redhat.com/errata/RHSA-2020:5408
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2020-14360
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2021:1804 https://access.redhat.com/errata/RHSA-2021:1804