VYPR
High severity7.8NVD Advisory· Published Feb 25, 2025· Updated Apr 6, 2026

CVE-2025-26594

CVE-2025-26594

Description

A use-after-free flaw was found in X.Org and Xwayland. The root cursor is referenced in the X server as a global variable. If a client frees the root cursor, the internal reference points to freed memory and causes a use-after-free.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

49

Patches

Vulnerability mechanics

References

18

News mentions

0

No linked articles in our index yet.