Medium severity6.1NVD Advisory· Published May 5, 2026· Updated Jun 8, 2026
CVE-2026-34000
CVE-2026-34000
Description
A flaw was found in the X.Org X server. This out-of-bounds read vulnerability in the XKB geometry processing, specifically within the CheckSetGeom() and XkbAddGeomKeyAlias functions, allows an attacker to read uninitialized or out-of-bounds memory. An attacker with a connection to the X11 server, either locally or remotely, can exploit this without user interaction. This could lead to the disclosure of memory contents or cause a denial of service by crashing the server.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
40cpe:2.3:o:redhat:enterprise_linux:10.0:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:o:redhat:enterprise_linux:10.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*
- osv-coords32 versionspkg:apk/chainguard/xorg-serverpkg:apk/wolfi/xorg-serverpkg:rpm/almalinux/tigervncpkg:rpm/almalinux/tigervnc-iconspkg:rpm/almalinux/tigervnc-licensepkg:rpm/almalinux/tigervnc-selinuxpkg:rpm/almalinux/tigervnc-serverpkg:rpm/almalinux/tigervnc-server-minimalpkg:rpm/almalinux/tigervnc-server-modulepkg:rpm/opensuse/xorg-x11-server&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/xorg-x11-server&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/xorg-x11-server&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/xwayland&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/xwayland&distro=openSUSE%20Leap%2016.0pkg:rpm/opensuse/xwayland&distro=openSUSE%20Tumbleweedpkg:rpm/suse/xorg-x11-server&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/xorg-x11-server&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/xorg-x11-server&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-ESPOSpkg:rpm/suse/xorg-x11-server&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-LTSSpkg:rpm/suse/xorg-x11-server&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP7pkg:rpm/suse/xorg-x11-server&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP7pkg:rpm/suse/xorg-x11-server&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5-LTSSpkg:rpm/suse/xorg-x11-server&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/xorg-x11-server&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP5-LTSSpkg:rpm/suse/xorg-x11-server&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP6-LTSSpkg:rpm/suse/xorg-x11-server&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4pkg:rpm/suse/xorg-x11-server&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP5pkg:rpm/suse/xorg-x11-server&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP6pkg:rpm/suse/xorg-x11-server&distro=SUSE%20Linux%20Enterprise%20Server%20LTSS%20Extended%20Security%2012%20SP5pkg:rpm/suse/xwayland&distro=SUSE%20Linux%20Enterprise%20Server%2016.0pkg:rpm/suse/xwayland&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0pkg:rpm/suse/xwayland&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP7
< 21.1.22-r0+ 31 more
- (no CPE)range: < 21.1.22-r0
- (no CPE)range: < 21.1.22-r0
- (no CPE)range: < 1.15.0-7.el9_8.1
- (no CPE)range: < 1.15.0-7.el9_8.1
- (no CPE)range: < 1.15.0-7.el9_8.1
- (no CPE)range: < 1.15.0-7.el9_8.1
- (no CPE)range: < 1.15.0-7.el9_8.1
- (no CPE)range: < 1.15.0-7.el9_8.1
- (no CPE)range: < 1.15.0-7.el9_8.1
- (no CPE)range: < 21.1.11-150600.5.25.1
- (no CPE)range: < 21.1.15-160000.4.1
- (no CPE)range: < 21.1.21-5.1
- (no CPE)range: < 24.1.1-150600.5.23.1
- (no CPE)range: < 24.1.6-160000.4.1
- (no CPE)range: < 24.1.9-2.1
- (no CPE)range: < 1.20.3-150400.38.68.1
- (no CPE)range: < 1.20.3-150400.38.68.1
- (no CPE)range: < 21.1.4-150500.7.46.1
- (no CPE)range: < 21.1.4-150500.7.46.1
- (no CPE)range: < 21.1.15-150700.5.16.1
- (no CPE)range: < 21.1.15-150700.5.16.1
- (no CPE)range: < 1.19.6-10.99.1
- (no CPE)range: < 1.20.3-150400.38.68.1
- (no CPE)range: < 21.1.4-150500.7.46.1
- (no CPE)range: < 21.1.11-150600.5.25.1
- (no CPE)range: < 1.20.3-150400.38.68.1
- (no CPE)range: < 21.1.4-150500.7.46.1
- (no CPE)range: < 21.1.11-150600.5.25.1
- (no CPE)range: < 1.19.6-10.99.1
- (no CPE)range: < 24.1.6-160000.4.1
- (no CPE)range: < 24.1.6-160000.4.1
- (no CPE)range: < 24.1.5-150700.3.14.1
Patches
Vulnerability mechanics
References
27- access.redhat.com/security/cve/CVE-2026-34000nvdThird Party Advisory
- bugzilla.redhat.com/show_bug.cginvdIssue TrackingThird Party Advisory
- access.redhat.com/errata/RHSA-2026:19342nvd
- access.redhat.com/errata/RHSA-2026:20547nvd
- access.redhat.com/errata/RHSA-2026:20555nvd
- access.redhat.com/errata/RHSA-2026:20557nvd
- access.redhat.com/errata/RHSA-2026:20558nvd
- access.redhat.com/errata/RHSA-2026:20560nvd
- access.redhat.com/errata/RHSA-2026:20561nvd
- access.redhat.com/errata/RHSA-2026:20562nvd
- access.redhat.com/errata/RHSA-2026:20563nvd
- access.redhat.com/errata/RHSA-2026:20575nvd
- access.redhat.com/errata/RHSA-2026:20576nvd
- access.redhat.com/errata/RHSA-2026:20590nvd
- access.redhat.com/errata/RHSA-2026:21699nvd
- access.redhat.com/errata/RHSA-2026:21712nvd
- access.redhat.com/errata/RHSA-2026:21715nvd
- access.redhat.com/errata/RHSA-2026:21716nvd
- access.redhat.com/errata/RHSA-2026:21718nvd
- access.redhat.com/errata/RHSA-2026:21741nvd
- access.redhat.com/errata/RHSA-2026:21742nvd
- access.redhat.com/errata/RHSA-2026:22424nvd
- access.redhat.com/errata/RHSA-2026:22456nvd
- access.redhat.com/errata/RHSA-2026:23254nvd
- access.redhat.com/errata/RHSA-2026:23255nvd
- access.redhat.com/errata/RHSA-2026:23496nvd
- access.redhat.com/errata/RHSA-2026:24341nvd
News mentions
1- ZDI-26-334: X.Org Server CheckSetGeom Out-Of-Bounds Read Information Disclosure VulnerabilityZero Day Initiative · Jun 9, 2026