CVE-2025-62231

A flaw was identified in the X.Org X servers X Keyboard (Xkb) extension where improper bounds checking in the XkbSetCompatMap() function can cause an unsigned short overflow. If an attacker sends specially crafted input data, the value calculation may overflow, leading to memory corruption or a crash.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.3 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H
redhatCNA
7.3 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H
CISA-ADPADP
---
---
CVEADP
---
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 2%
Debian logo
Debian Releases
Debian Product
Codename
xorg-server
bullseye
vulnerable
trixie
2:21.1.16-1.3+deb13u1
ignored
bookworm
ignored
bullseye (security)
2:1.20.11-1+deb11u17
fixed
bookworm (security)
2:21.1.7-3+deb12u11
fixed
trixie (security)
2:21.1.16-1.3+deb13u1
fixed
forky
2:21.1.21-1
fixed
sid
2:21.1.21-1
fixed
xwayland
bookworm
ignored
trixie
ignored
forky
2:24.1.9-1
fixed
sid
2:24.1.9-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
xorg
questing
not-affected
plucky
not-affected
noble
not-affected
jammy
not-affected
focal
not-affected
bionic
not-affected
xenial
not-affected
xorg-server
questing
Fixed 2:21.1.18-1ubuntu1.1
released
plucky
Fixed 2:21.1.16-1ubuntu1.2
released
noble
Fixed 2:21.1.12-1ubuntu1.5
released
jammy
Fixed 2:21.1.4-2ubuntu1.7~22.04.16
released
focal
needs-triage
bionic
needs-triage
xenial
needs-triage
trusty
needs-triage
xwayland
questing
Fixed 2:24.1.6-1ubuntu1.1
released
plucky
Fixed 2:24.1.6-1ubuntu0.2
released
noble
Fixed 2:23.2.6-1ubuntu0.7
released
jammy
Fixed 2:22.1.1-1ubuntu0.20
released
xorg-server-hwe-16.04
questing
dne
plucky
dne
noble
dne
jammy
dne
xenial
needs-triage
xorg-server-hwe-18.04
questing
dne
plucky
dne
noble
dne
jammy
dne
bionic
needs-triage
xorg-hwe-16.04
questing
dne
plucky
dne
noble
dne
jammy
dne
xenial
not-affected
xorg-hwe-18.04
questing
dne
plucky
dne
noble
dne
jammy
dne
bionic
not-affected
Common Weakness Enumeration
Vulnerability Media Exposure
References
https://access.redhat.com/errata/RHSA-2025:19432
https://access.redhat.com/errata/RHSA-2025:19433
https://access.redhat.com/errata/RHSA-2025:19434
https://access.redhat.com/errata/RHSA-2025:19435
https://access.redhat.com/errata/RHSA-2025:19489
https://access.redhat.com/errata/RHSA-2025:19623
https://access.redhat.com/errata/RHSA-2025:19909
https://access.redhat.com/errata/RHSA-2025:20958
https://access.redhat.com/errata/RHSA-2025:20960
https://access.redhat.com/errata/RHSA-2025:20961
https://access.redhat.com/errata/RHSA-2025:21035
https://access.redhat.com/errata/RHSA-2025:22040
https://access.redhat.com/errata/RHSA-2025:22041
https://access.redhat.com/errata/RHSA-2025:22051
https://access.redhat.com/errata/RHSA-2025:22055
https://access.redhat.com/errata/RHSA-2025:22056
https://access.redhat.com/errata/RHSA-2025:22077
https://access.redhat.com/errata/RHSA-2025:22096
https://access.redhat.com/errata/RHSA-2025:22164
https://access.redhat.com/errata/RHSA-2025:22167
https://access.redhat.com/errata/RHSA-2025:22364
https://access.redhat.com/errata/RHSA-2025:22365
https://access.redhat.com/errata/RHSA-2025:22426
https://access.redhat.com/errata/RHSA-2025:22427
https://access.redhat.com/errata/RHSA-2025:22667
https://access.redhat.com/errata/RHSA-2025:22729
https://access.redhat.com/errata/RHSA-2025:22742
https://access.redhat.com/errata/RHSA-2025:22753
https://access.redhat.com/security/cve/CVE-2025-62231
https://bugzilla.redhat.com/show_bug.cgi?id=2402660
http://www.openwall.com/lists/oss-security/2025/10/28/7
https://lists.debian.org/debian-lts-announce/2025/10/msg00033.html