/
DirectorySecurity Advisories
Sign In
Security Advisories

CVE-2022-49737

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2022-49737

CGA ID

CGA-h6xq-gq7v-pfcx

Severity

Unknown

Description

In X.Org X server 20.11 through 21.1.16, when a client application uses easystroke for mouse gestures, the main thread modifies various data structures used by the input thread without acquiring a lock, aka a race condition. In particular, AttachDevice in dix/devices.c does not acquire an input lock.

References

Affected packages


Safe Source for Open Sourceâ„¢
Media KitContact Us
© 2025 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Products

Chainguard ContainersChainguard LibrariesChainguard VMs