Unrated severityNVD Advisory· Published Oct 28, 2013· Updated Apr 29, 2026

CVE-2013-4394

Description

The SetX11Keyboard function in systemd, when PolicyKit Local Authority (PKLA) is used to change the group permissions on the X Keyboard Extension (XKB) layouts description, allows local users in the group to modify the Xorg X11 Server configuration file and possibly gain privileges via vectors involving "special and control characters."

Affected products

Systemd Project/Systemd
cpe:2.3:a:systemd_project:systemd:*:*:*:*:*:*:*:*
Range: <194
Debian/Debian Linux
cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

bugzilla.redhat.com/show_bug.cginvdIssue TrackingPatchThird Party Advisory
bugs.debian.org/cgi-bin/bugreport.cginvdIssue TrackingThird Party Advisory
www.debian.org/security/2013/dsa-2777nvdThird Party Advisory
www.openwall.com/lists/oss-security/2013/10/01/9nvdMailing ListThird Party Advisory
security.gentoo.org/glsa/201612-34nvdThird Party Advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000