AZL-64262

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-64262.json

JSON Data

https://api.test.osv.dev/v1/vulns/AZL-64262

Upstream

CVE-2025-49180

Published

2025-06-17T15:15:46Z

Modified

2026-04-01T05:20:17.288896Z

Summary

CVE-2025-49180 affecting package xorg-x11-server-Xwayland for versions less than 24.1.6-2

Details

A flaw was found in the RandR extension, where the RRChangeProviderProperty function does not properly validate input. This issue leads to an integer overflow when computing the total size to allocate.

References

https://nvd.nist.gov/vuln/detail/CVE-2025-49180

Affected packages

Azure Linux:3 / xorg-x11-server-Xwayland

Package

Name: xorg-x11-server-Xwayland
Purl: pkg:rpm/azure-linux/xorg-x11-server-Xwayland

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

24.1.6-2

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-64262.json"