Bug 2402653 (CVE-2025-62230) - CVE-2025-62230 xorg: xwayland: Use-after-free in Xkb client resource removal
Summary: CVE-2025-62230 xorg: xwayland: Use-after-free in Xkb client resource removal
Keywords:
Status: NEW
Alias: CVE-2025-62230
Deadline: 2025-10-28
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Product Security DevOps Team
QA Contact:
URL:
Whiteboard:
Depends On: 2406802 2406803 2407299 2407300 2407301
Blocks:
TreeView+ depends on / blocked
 
Reported: 2025-10-09 06:14 UTC by OSIDB Bzimport
Modified: 2025-12-04 12:48 UTC (History)
1 user (show)

Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Product Errata RHSA-2025:19432 0 None None None 2025-11-03 08:44:31 UTC
Red Hat Product Errata RHSA-2025:19433 0 None None None 2025-11-03 08:54:50 UTC
Red Hat Product Errata RHSA-2025:19434 0 None None None 2025-11-03 09:00:47 UTC
Red Hat Product Errata RHSA-2025:19435 0 None None None 2025-11-03 08:43:33 UTC
Red Hat Product Errata RHSA-2025:19489 0 None None None 2025-11-03 15:43:51 UTC
Red Hat Product Errata RHSA-2025:19623 0 None None None 2025-11-04 10:21:14 UTC
Red Hat Product Errata RHSA-2025:19909 0 None None None 2025-11-06 13:01:06 UTC
Red Hat Product Errata RHSA-2025:20958 0 None None None 2025-11-11 15:00:31 UTC
Red Hat Product Errata RHSA-2025:20960 0 None None None 2025-11-11 15:01:39 UTC
Red Hat Product Errata RHSA-2025:20961 0 None None None 2025-11-11 15:01:27 UTC
Red Hat Product Errata RHSA-2025:21035 0 None None None 2025-11-11 19:48:31 UTC
Red Hat Product Errata RHSA-2025:22040 0 None None None 2025-11-25 07:50:54 UTC
Red Hat Product Errata RHSA-2025:22041 0 None None None 2025-11-25 07:49:27 UTC
Red Hat Product Errata RHSA-2025:22051 0 None None None 2025-11-25 08:33:11 UTC
Red Hat Product Errata RHSA-2025:22055 0 None None None 2025-11-25 08:26:31 UTC
Red Hat Product Errata RHSA-2025:22056 0 None None None 2025-11-25 08:20:17 UTC
Red Hat Product Errata RHSA-2025:22077 0 None None None 2025-11-25 13:01:26 UTC
Red Hat Product Errata RHSA-2025:22096 0 None None None 2025-11-25 17:19:01 UTC
Red Hat Product Errata RHSA-2025:22164 0 None None None 2025-11-26 05:23:24 UTC
Red Hat Product Errata RHSA-2025:22167 0 None None None 2025-11-26 07:13:46 UTC
Red Hat Product Errata RHSA-2025:22364 0 None None None 2025-12-01 02:37:45 UTC
Red Hat Product Errata RHSA-2025:22365 0 None None None 2025-12-01 01:57:50 UTC
Red Hat Product Errata RHSA-2025:22426 0 None None None 2025-12-01 14:37:07 UTC
Red Hat Product Errata RHSA-2025:22427 0 None None None 2025-12-01 14:34:56 UTC
Red Hat Product Errata RHSA-2025:22667 0 None None None 2025-12-03 14:24:32 UTC
Red Hat Product Errata RHSA-2025:22729 0 None None None 2025-12-04 07:38:50 UTC
Red Hat Product Errata RHSA-2025:22742 0 None None None 2025-12-04 10:17:45 UTC
Red Hat Product Errata RHSA-2025:22753 0 None None None 2025-12-04 12:48:27 UTC

Description OSIDB Bzimport 2025-10-09 06:14:45 UTC 
Use-after-free vulnerability in the Xkb client resource removal logic of the X.Org X server and Xwayland. When removing a client’s Xkb resources, the XkbInterest data is freed prematurely while the associated resource reference remains active. When the client terminates, the cleanup routine attempts to delete already freed memory, causing a use-after-free that may lead to crashes or memory corruption.
Comment 1 errata-xmlrpc 2025-11-03 08:43:32 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 10

Via RHSA-2025:19435 https://access.redhat.com/errata/RHSA-2025:19435
Comment 2 errata-xmlrpc 2025-11-03 08:44:30 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2025:19432 https://access.redhat.com/errata/RHSA-2025:19432
Comment 3 errata-xmlrpc 2025-11-03 08:54:49 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2025:19433 https://access.redhat.com/errata/RHSA-2025:19433
Comment 4 errata-xmlrpc 2025-11-03 09:00:46 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2025:19434 https://access.redhat.com/errata/RHSA-2025:19434
Comment 5 errata-xmlrpc 2025-11-03 15:43:50 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2025:19489 https://access.redhat.com/errata/RHSA-2025:19489
Comment 6 errata-xmlrpc 2025-11-04 10:21:13 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2025:19623 https://access.redhat.com/errata/RHSA-2025:19623
Comment 8 errata-xmlrpc 2025-11-06 13:01:05 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2025:19909 https://access.redhat.com/errata/RHSA-2025:19909
Comment 9 errata-xmlrpc 2025-11-11 15:00:30 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2025:20958 https://access.redhat.com/errata/RHSA-2025:20958
Comment 10 errata-xmlrpc 2025-11-11 15:01:25 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2025:20961 https://access.redhat.com/errata/RHSA-2025:20961
Comment 11 errata-xmlrpc 2025-11-11 15:01:38 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2025:20960 https://access.redhat.com/errata/RHSA-2025:20960
Comment 12 errata-xmlrpc 2025-11-11 19:48:30 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 10

Via RHSA-2025:21035 https://access.redhat.com/errata/RHSA-2025:21035
Comment 13 errata-xmlrpc 2025-11-25 07:49:26 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support
  Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions
  Red Hat Enterprise Linux 8.6 Telecommunications Update Service

Via RHSA-2025:22041 https://access.redhat.com/errata/RHSA-2025:22041
Comment 14 errata-xmlrpc 2025-11-25 07:50:53 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7 Extended Lifecycle Support

Via RHSA-2025:22040 https://access.redhat.com/errata/RHSA-2025:22040
Comment 15 errata-xmlrpc 2025-11-25 08:20:16 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions

Via RHSA-2025:22056 https://access.redhat.com/errata/RHSA-2025:22056
Comment 16 errata-xmlrpc 2025-11-25 08:26:30 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions

Via RHSA-2025:22055 https://access.redhat.com/errata/RHSA-2025:22055
Comment 17 errata-xmlrpc 2025-11-25 08:33:09 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.4 Extended Update Support

Via RHSA-2025:22051 https://access.redhat.com/errata/RHSA-2025:22051
Comment 18 errata-xmlrpc 2025-11-25 13:01:25 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.2 Advanced Update Support

Via RHSA-2025:22077 https://access.redhat.com/errata/RHSA-2025:22077
Comment 19 errata-xmlrpc 2025-11-25 17:19:00 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 7 Extended Lifecycle Support

Via RHSA-2025:22096 https://access.redhat.com/errata/RHSA-2025:22096
Comment 20 errata-xmlrpc 2025-11-26 05:23:23 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions
  Red Hat Enterprise Linux 8.8 Telecommunications Update Service

Via RHSA-2025:22164 https://access.redhat.com/errata/RHSA-2025:22164
Comment 21 errata-xmlrpc 2025-11-26 07:13:45 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support
  Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On

Via RHSA-2025:22167 https://access.redhat.com/errata/RHSA-2025:22167
Comment 22 errata-xmlrpc 2025-12-01 01:57:49 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions

Via RHSA-2025:22365 https://access.redhat.com/errata/RHSA-2025:22365
Comment 23 errata-xmlrpc 2025-12-01 02:37:43 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions

Via RHSA-2025:22364 https://access.redhat.com/errata/RHSA-2025:22364
Comment 24 errata-xmlrpc 2025-12-01 14:34:55 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support
  Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions
  Red Hat Enterprise Linux 8.6 Telecommunications Update Service

Via RHSA-2025:22427 https://access.redhat.com/errata/RHSA-2025:22427
Comment 25 errata-xmlrpc 2025-12-01 14:37:06 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions
  Red Hat Enterprise Linux 8.8 Telecommunications Update Service

Via RHSA-2025:22426 https://access.redhat.com/errata/RHSA-2025:22426
Comment 26 errata-xmlrpc 2025-12-03 14:24:31 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 6 Extended Lifecycle Support  - EXTENSION

Via RHSA-2025:22667 https://access.redhat.com/errata/RHSA-2025:22667
Comment 27 errata-xmlrpc 2025-12-04 07:38:48 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.2 Advanced Update Support

Via RHSA-2025:22729 https://access.redhat.com/errata/RHSA-2025:22729
Comment 28 errata-xmlrpc 2025-12-04 10:17:44 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.4 Extended Update Support

Via RHSA-2025:22742 https://access.redhat.com/errata/RHSA-2025:22742
Comment 29 errata-xmlrpc 2025-12-04 12:48:26 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support
  Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On

Via RHSA-2025:22753 https://access.redhat.com/errata/RHSA-2025:22753
Note You need to log in before you can comment on or make changes to this bug.