The remote host is affected by the vulnerability described in GLSA-202210-30 (X.Org X server, XWayland: Multiple Vulnerabilities)

  - A flaw was found in the Xorg-x11-server. An out-of-bounds access issue can occur in the ProcXkbSetGeometry     function due to improper validation of the request length. (CVE-2022-2319)

  - A flaw was found in the Xorg-x11-server. The specific flaw exists within the handling of     ProcXkbSetDeviceInfo requests. The issue results from the lack of proper validation of user-supplied data,     which can result in a memory access past the end of an allocated buffer. This flaw allows an attacker to     escalate privileges and execute arbitrary code in the context of root. (CVE-2022-2320)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

GLSA-202210-30 : X.Org X server, XWayland: Multiple Vulnerabilities

high Nessus Plugin ID 166710

Version 1.2