CVE-2026-34001

Name: CVE-2026-34001
Creator: NVD / NIST
Published: 2026-04-23T16:16:24.777+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

HIGHCVSS 7.8/10EPSS 0.26%

Last modified Jun 17, 2026

This CVE is reserved or awaiting analysis. Details will appear once published by NVD.

Description

A flaw was found in the X.Org X server. This use-after-free vulnerability occurs in the XSYNC fence triggering logic, specifically within the miSyncTriggerFence() function. An attacker with access to the X11 server can exploit this without user interaction, leading to a server crash and potentially enabling memory corruption. This could result in a denial of service or further compromise of the system.

Metrics

CVSS 3.1

7.8/10

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Probability

0.26%

17.7th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-825

References

https://access.redhat.com/errata/RHSA-2026:10739
https://access.redhat.com/errata/RHSA-2026:11352
https://access.redhat.com/errata/RHSA-2026:11369
https://access.redhat.com/errata/RHSA-2026:11388
https://access.redhat.com/errata/RHSA-2026:11656
https://access.redhat.com/errata/RHSA-2026:11692
https://access.redhat.com/errata/RHSA-2026:13414
https://access.redhat.com/errata/RHSA-2026:19125
https://access.redhat.com/errata/RHSA-2026:19342
https://access.redhat.com/errata/RHSA-2026:19343
https://access.redhat.com/errata/RHSA-2026:19344
https://access.redhat.com/errata/RHSA-2026:20547
https://access.redhat.com/errata/RHSA-2026:20555
https://access.redhat.com/errata/RHSA-2026:20557
https://access.redhat.com/errata/RHSA-2026:20558
https://access.redhat.com/errata/RHSA-2026:20560
https://access.redhat.com/errata/RHSA-2026:20561
https://access.redhat.com/errata/RHSA-2026:20562
https://access.redhat.com/errata/RHSA-2026:20563
https://access.redhat.com/errata/RHSA-2026:20575
https://access.redhat.com/errata/RHSA-2026:20576
https://access.redhat.com/errata/RHSA-2026:20590
https://access.redhat.com/errata/RHSA-2026:21699
https://access.redhat.com/errata/RHSA-2026:21712
https://access.redhat.com/errata/RHSA-2026:21715
https://access.redhat.com/errata/RHSA-2026:21716
https://access.redhat.com/errata/RHSA-2026:21718
https://access.redhat.com/errata/RHSA-2026:21741
https://access.redhat.com/errata/RHSA-2026:21742
https://access.redhat.com/errata/RHSA-2026:22424
https://access.redhat.com/errata/RHSA-2026:22456
https://access.redhat.com/errata/RHSA-2026:23254
https://access.redhat.com/errata/RHSA-2026:23255
https://access.redhat.com/errata/RHSA-2026:23496
https://access.redhat.com/errata/RHSA-2026:24341
https://access.redhat.com/security/cve/CVE-2026-34001
https://bugzilla.redhat.com/show_bug.cgi?id=2451109

Timeline

Published: Apr 23, 2026
Last Modified: Jun 17, 2026
Status: Awaiting Analysis

Are you affected by CVE-2026-34001?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST