X.org server
This hub aggregates every CVE we track for X.org server, a product in the operating systems space. Use it to gauge the current risk picture and drill into individual advisories.
Operating Systemsother
55
CVEs tracked
1
Critical
43
High
0
In CISA KEV
Severity distribution
HIGH43MEDIUM10LOW1CRITICAL1
Monthly trend
0
0
0
1
0
0
0
8
1
0
0
4
0
0
0
3
0
0
0
0
0
3
2
8
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting X.org server.
- CVE-2026-50263Xorg-x11-server: xorg-x11-server-xwayland: xorg-x11-server: use-after-free information disclosure in createsaverwindow()5.5
- CVE-2026-50262Xorg-x11-server: xorg-x11-server-xwayland: xorg-x11-server: out-of-bounds read/write in glx changedrawableattributes5.5
- CVE-2026-50264Xorg-x11-server: xorg-x11-server-xwayland: xorg-x11-server: out-of-bounds heap write in dri2 drigetbuffers/drigetbufferswithformat7.8
- CVE-2026-50261Xorg-x11-server: xorg-x11-server-xwayland: xorg-x11-server: use-after-free in syncchangecounter()7.8
- CVE-2026-50260Xorg-x11-server: xorg-x11-server-xwayland: xorg-x11-server: use-after-free in freecounter()7.8
- CVE-2026-50258Xorg-x11-server: xorg-x11-server-xwayland: xorg-x11-server: stack buffer overflow in xkb key types due to unchecked shift levels7.8
- CVE-2026-50259Xorg-x11-server: xorg-x11-server-xwayland: xorg-x11-server: stack buffer overflow in xkb setmap request via mapwidths indexing7.8
- CVE-2026-50257Xorg-x11-server: xorg-x11-server-xwayland: xorg-x11-server: use-after-free in misyncdestroyfence()7.8
- CVE-2026-34002Xorg: xwayland: x.org x server: information disclosure or denial of service via out-of-bounds read in xkb modifier map handling6.1
- CVE-2026-34000Xwayland: xorg: x.org x server: information disclosure and denial of service via out-of-bounds read in xkb geometry processing.6.1
- CVE-2026-34003Xorg: xwayland: x.org x server: information exposure and denial of service via out-of-bounds memory access7.8
- CVE-2026-34001Xorg: xwayland: x.org x server: use-after-free vulnerability leads to server crash and potential memory corruption7.8
- CVE-2026-33999Xorg: xwayland: x.org x server: denial of service via integer underflow in xkb compatibility map handling7.8
- CVE-2025-62229Xorg: xmayland: use-after-free in xpresentnotify structure creation7.3
- CVE-2025-62230Xorg: xwayland: use-after-free in xkb client resource removal7.3
Product normalization is registry-driven with AI assist and human review. How it works