CVE-2026-34003

· NIST NVD ↗

A flaw was found in the X.Org X server's XKB key types request validation. A local attacker could send a specially crafted request to the X server, leading to an out-of-bounds memory access vulnerability. This could result in the disclosure of sensitive information or cause the server to crash, leading to a Denial of Service (DoS). In certain configurations, higher impact outcomes may be possible.

HIGH
CVSS severity
7.8
CVSS base score
2026-04-23
Published

CWE codes

CWE-125

Sources