CVE-2025-26598 - How An Out-of-Bounds Write in X.Org and Xwayland Threatens Your Desktop – Explained with Code, Exploit Details, and References
In early 2025, a dangerous vulnerability shook the graphics stack that powers millions of desktops: CVE-2025-26598. At its core, it’s a simple programming oversight
CVE-2025-26595 - Critical Buffer Overflow in X.Org/XWayland XkbVModMaskText Function
In early 2025, a serious security issue was found in X.Org and XWayland—two important components at the heart of many Linux and Unix
CVE-2025-26596 - Exploiting a Heap Overflow in X.Org and XWayland’s Xkb Keyboard Code
A new high-profile vulnerability—CVE-2025-26596—was discovered in the X.Org Server and XWayland, thanks to a critical logic mismatch in how key symbol data
CVE-2025-26597 - X.Org and Xwayland Buffer Overflow via XkbChangeTypesOfKey() – Deep Dive & Exploit Analysis
A new buffer overflow vulnerability, CVE-2025-26597, was discovered in the widely used X.Org and Xwayland display servers. The issue lies in the XkbChangeTypesOfKey() function,
CVE-2025-26594 - Exploiting a Use-After-Free in X.Org and Xwayland Root Cursor Handling
X.Org and Xwayland are at the heart of graphical desktops on Linux and Unix systems. On February 21, 2025, security researchers disclosed a critical
Episode
00:00:00
00:00:00