ALSA-2026:11352

[ALSA-2026:11352] Important: xorg-x11-server-Xwayland security update

Type:

security

Severity:

important

Release date:

2026-04-29

Description:

Xwayland is an X server for running X clients under Wayland.  

Security Fix(es):  

  * xorg: xwayland: X.Org X server: Denial of Service via integer underflow in XKB compatibility map handling (CVE-2026-33999)
  * xorg: xwayland: X.Org X server: Use-after-free vulnerability leads to server crash and potential memory corruption (CVE-2026-34001)
  * xorg: xwayland: X.Org X server: Information exposure and denial of service via out-of-bounds memory access (CVE-2026-34003)


For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	xorg-x11-server-Xwayland-24.1.5-6.el10_1.aarch64.rpm	ef0533fb8c3a69915908d5dd74b086225c4f8e0b8540ddfc7e09a585df585b91
aarch64	xorg-x11-server-Xwayland-devel-24.1.5-6.el10_1.aarch64.rpm	f3b053d182a0f0187d74a547c9dbcb084ec5e4d4f99916e0a2e13017e3482047
ppc64le	xorg-x11-server-Xwayland-devel-24.1.5-6.el10_1.ppc64le.rpm	2fc241cbaf3bdda0bb320b99247aacde279e87fbbbb7ae44abee428f3ed5d953
ppc64le	xorg-x11-server-Xwayland-24.1.5-6.el10_1.ppc64le.rpm	57f6469b66f81113d54bb95d14e37ba92d3ec840d60994a0cc172d1c910a2505
s390x	xorg-x11-server-Xwayland-devel-24.1.5-6.el10_1.s390x.rpm	09fa52b4733130f4129ab6849ca119938735f0a43f32068cd8ef4cd683ef86ad
s390x	xorg-x11-server-Xwayland-24.1.5-6.el10_1.s390x.rpm	5496a4f1ddfddefc953409b0fcc4b4726f37eaebfaf78687fb071176426f68da
x86_64	xorg-x11-server-Xwayland-24.1.5-6.el10_1.x86_64.rpm	13b44a8389ddd568828aa1fa494270db9b20858b4936c70f11bcc47e6d7d4763
x86_64	xorg-x11-server-Xwayland-devel-24.1.5-6.el10_1.x86_64.rpm	25ec359d0ce4dbafd3712309e67f9b13e4ea597c33aa15de1adb6b2a2ffca6c2
x86_64_v2	xorg-x11-server-Xwayland-devel-24.1.5-6.el10_1.x86_64_v2.rpm	94fdc4e33e5af210cc0dac64e517c22ac6d3e92c0c841c420f8a27a8bc71bb36
x86_64_v2	xorg-x11-server-Xwayland-24.1.5-6.el10_1.x86_64_v2.rpm	a641c793216e1ed202508ce4261b7876a01d23b0ed1bb5259da375c640cd091c

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.