ALSA-2026:19125

[ALSA-2026:19125] Important: xorg-x11-server-Xwayland security update

Type:

security

Severity:

important

Release date:

2026-05-26

Description:

Xwayland is an X server for running X clients under Wayland.  

Security Fix(es):  

  * xorg: xwayland: X.Org X server: Denial of Service via integer underflow in XKB compatibility map handling (CVE-2026-33999)
  * xorg: xwayland: X.Org X server: Use-after-free vulnerability leads to server crash and potential memory corruption (CVE-2026-34001)
  * xorg: xwayland: X.Org X server: Information exposure and denial of service via out-of-bounds memory access (CVE-2026-34003)


For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	xorg-x11-server-Xwayland-24.1.9-4.el10_2.aarch64.rpm	532dd7e367ef3edb5f7cc9458dfdf74e4cf393f20e88d6b6338a812421bb775f
aarch64	xorg-x11-server-Xwayland-devel-24.1.9-4.el10_2.aarch64.rpm	c6779addab42a7f039b5e8f0933be0174462cd8c466a18f442686bdb5af851ba
ppc64le	xorg-x11-server-Xwayland-24.1.9-4.el10_2.ppc64le.rpm	5c03029832c21efad67ba9241fb563c0404a5ee4bd9dfe5407a39b117c864ea4
ppc64le	xorg-x11-server-Xwayland-devel-24.1.9-4.el10_2.ppc64le.rpm	e6532780bd5822a021f993172285d87c02ccb5c28fcc4cc627eedd59c4071be5
s390x	xorg-x11-server-Xwayland-devel-24.1.9-4.el10_2.s390x.rpm	b726ca8177e4e9dddef6036683353c30206537ea41ab82b5e5e682e73c127437
s390x	xorg-x11-server-Xwayland-24.1.9-4.el10_2.s390x.rpm	bd81c0706fdb94db3cf7b7da49d75cb50533a42393890ef1076120d066489141
x86_64	xorg-x11-server-Xwayland-devel-24.1.9-4.el10_2.x86_64.rpm	71eecf75430c9fbfdd8c78070a6cd2eba1fdfc0edd1acd32c53fcbbba84c9ccd
x86_64	xorg-x11-server-Xwayland-24.1.9-4.el10_2.x86_64.rpm	c29aa5563aedb6371b31718c3023398e0da04c0fe226a40d37740d4b58dc72ca
x86_64_v2	xorg-x11-server-Xwayland-24.1.9-4.el10_2.x86_64_v2.rpm	302413288f34cab4a43831abfdbac21da6eb362a5ddf1cbfefee3a16a1b33dfc
x86_64_v2	xorg-x11-server-Xwayland-devel-24.1.9-4.el10_2.x86_64_v2.rpm	ad170b7558d038cf2b8943ad35d0dcc4383966e05aef6c5060382da5eea051d1

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.