Vulnerabilities ›

CVE-2026-50258

High

CWE-121 — Weakness Type

                    Published: Jun 5, 2026                      ·  Modified: Jun 12, 2026                      ·  Source: NVD                

CVSS v3

7.8

🔗 NVD Official

📄 Description (English)

A stack-based buffer overflow flaw was found in the X.Org X server and Xwayland. The X server has multiple stack buffers sized XkbMaxShiftLevel * XkbNumKbdGroups but CheckKeyTypes() does not verify or clamp non-canonical key types to XkbMaxShiftLevel. A client can change key types to excessive shift levels and trigger stack overflows. This is caused by an incomplete fix of CVE-2025-26597. This may be used to crash the server, or for privilege escalation if the X server runs as root.

🤖 AI Executive Summary

A stack-based buffer overflow vulnerability exists in X.Org X server and Xwayland where CheckKeyTypes() fails to validate key type shift levels, allowing clients to trigger stack overflows. This incomplete fix of CVE-2025-26597 can lead to server crashes or privilege escalation when the X server runs with elevated privileges.

📄 Description (Arabic)

تم اكتشاف ثغرة تجاوز المخزن المؤقت في الذاكرة المكدسة في خادم X.Org وXwayland حيث تفشل وظيفة CheckKeyTypes() في التحقق من صحة مستويات التحول في أنواع المفاتيح. يمكن للعملاء تغيير أنواع المفاتيح إلى مستويات تحول مفرطة وتفعيل تجاوزات المخزن المؤقت. هذه الثغرة قد تؤدي إلى توقف الخادم أو تصعيد الامتيازات إذا كان الخادم يعمل بصلاحيات الجذر.

🤖 ملخص تنفيذي (AI)

🤖 AI Intelligence Analysis Analyzed: Jun 9, 2026 01:34

🇸🇦 Saudi Arabia Impact Assessment

Saudi Relevance: high

🏢 Affected Saudi Sectors

government telecom banking healthcare

🎯 MITRE ATT&CK Techniques

T1068 T1190 T1203

⚖️ Saudi Risk Score (AI)

8.0

/ 10.0

🔧 Remediation Steps (English)

Update X.Org X server and Xwayland to patched versions that properly validate and clamp key type shift levels to XkbMaxShiftLevel. Implement input validation in CheckKeyTypes() function. Restrict X server execution privileges and run with minimal necessary permissions. Monitor for suspicious key type modification attempts.

🔧 خطوات المعالجة (العربية)

قم بتحديث خادم X.Org وXwayland إلى الإصدارات المصححة التي تتحقق بشكل صحيح من مستويات التحول في أنواع المفاتيح. تطبيق التحقق من صحة الإدخال في وظيفة CheckKeyTypes(). تقييد امتيازات تنفيذ خادم X وتشغيله بأقل الأذونات الضرورية. مراقبة محاولات تعديل نوع المفتاح المريبة.

📋 Regulatory Compliance Mapping

🟢 NCA ECC 2024

A.12.6.1 A.14.2.1 A.14.2.5

🔵 SAMA CSF

ID.BE-5.1 PR.DS-6.1 PR.PT-1.1

🟡 ISO 27001:2022

27001:A.12.6.1 27001:A.14.2.1 27001:A.14.2.5

🔗 References & Sources 5

🔗

https://access.redhat.com/security/cve/CVE-2026-50258

secalert@redhat.com

Third Party Advisory

🔗

https://bugzilla.redhat.com/show_bug.cgi?id=2485383

secalert@redhat.com

Issue Tracking Third Party Advisory

🔗

https://gitlab.freedesktop.org/xorg/xserver/-/commit/543e108516428fc8c3bea91d6563ad266f...

secalert@redhat.com

Patch

🔗

https://lists.x.org/archives/xorg-announce/2026-June/003702.html

secalert@redhat.com

Mailing List Third Party Advisory

🔗

https://redhat.atlassian.net/browse/PSIRTSUPT-16950

secalert@redhat.com

Permissions Required

📦 Affected Products / CPE 6 entries

x.org:x_server

x.org:xwayland

redhat:enterprise_linux:7.0

redhat:enterprise_linux:8.0

redhat:enterprise_linux:9.0

redhat:enterprise_linux:10.0

📊 CVSS Score

7.8

/ 10.0 — High

📊 CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack VectorL — Low / Local

Attack ComplexityL — Low / Local

Privileges RequiredL — Low / Local

User InteractionN — None / Network

ScopeU — Unchanged

ConfidentialityH — High

IntegrityH — High

AvailabilityH — High

📋 Quick Facts

Severity High

CVSS Score7.8

CWECWE-121

EPSS0.01%

Exploit No

Patch ✓ Yes

Published 2026-06-05

Source Feed nvd

🇸🇦 Saudi Risk Score

8.0

/ 10.0 — Saudi Risk

Priority: HIGH

🏷️ Tags

patch-available CWE-121

⚡ Actions

🔗 NVD Official Page ⚡ Exploit-DB Search 🐙 GitHub PoC Search 🎯 MITRE ATT&CK 📊 CVE Details

💬 Comments

Loading comments

CVE-2026-50258

💬 Comments

Introduce Yourself

Sign In Required