A vulnerability was found affecting X.Org-Server, where integer underflow exist in xserver, ProcXChangeFeedbackControl() leading to local privilege escalation
Acknowledgments: Name: Trend MicJan-Niklas Sohnro Zero Day Initiative (Trend Micro Zero Day Initiative)
Statement: Xorg server does not run with root privileges in Red Hat Enterprise Linux 8, therefore this flaw has been rated as having moderate impact for Red Hat Enterprise linux 8.
Created xorg-x11-server tracking bugs for this issue: Affects: fedora-all [bug 1949217]
Upstream commit: https://gitlab.freedesktop.org/xorg/xserver/-/commit/7aaf54a1884f71dc363f0b884e57bcb67407a6cd
External References: https://lists.x.org/archives/xorg-announce/2021-April/003080.html
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2021:2033 https://access.redhat.com/errata/RHSA-2021:2033
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2021-3472