ALSA-2023:2806

[ALSA-2023:2806] Moderate: xorg-x11-server security and bug fix update

Type:

security

Severity:

moderate

Release date:

2023-05-19

Description:

X.Org is an open-source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon.

Security Fix(es):

* xorg-x11-server: buffer overflow in _GetCountedString() in xkb/xkb.c (CVE-2022-3550)
* xorg-x11-server: XkbGetKbdByName use-after-free (CVE-2022-4283)
* xorg-x11-server: XTestSwapFakeInput stack overflow (CVE-2022-46340)
* xorg-x11-server: XIPassiveUngrab out-of-bounds access (CVE-2022-46341)
* xorg-x11-server: XvdiSelectVideoNotify use-after-free (CVE-2022-46342)
* xorg-x11-server: ScreenSaverSetAttributes use-after-free (CVE-2022-46343)
* xorg-x11-server: XIChangeProperty out-of-bounds access (CVE-2022-46344)
* xorg-x11-server: DeepCopyPointerClasses use-after-free leads to privilege elevation (CVE-2023-0494)
* xorg-x11-server: memory leak in ProcXkbGetKbdByName() in xkb/xkb.c (CVE-2022-3551)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	xorg-x11-server-Xnest-1.20.11-15.el8.aarch64.rpm	3f2f95a752f8223ff5e3b1c593fee1be3ac5f7f3b9c11a1b89cd59c8eeca5b53
aarch64	xorg-x11-server-Xorg-1.20.11-15.el8.aarch64.rpm	453d2930264b51470cc1dfd38a4ba61fe91770937fbe07d7863048f1ab3df6e6
aarch64	xorg-x11-server-devel-1.20.11-15.el8.aarch64.rpm	566cb90399c899f43e889ca242bed04ca531f79555a8b26f3349e8490ca08692
aarch64	xorg-x11-server-Xdmx-1.20.11-15.el8.aarch64.rpm	639488e46be504cc537d7d5292c2ddb19455ab223ce6d7945e97130aafb30966
aarch64	xorg-x11-server-common-1.20.11-15.el8.aarch64.rpm	85f5708dd6ce7cd241b341760fe98b51dcde8ba846fcbe5870f3f37d56684f51
aarch64	xorg-x11-server-Xvfb-1.20.11-15.el8.aarch64.rpm	e66d08a5795dcb59912a4e80f524e17887c8153fdfd477f8dc382b6e4e9d04e5
aarch64	xorg-x11-server-Xephyr-1.20.11-15.el8.aarch64.rpm	ef0d61de03abea7aee04447e801bb15100c45a12bb1344e944d2e4d5b5d88fac
i686	xorg-x11-server-devel-1.20.11-15.el8.i686.rpm	0f54781cadde64ea178d7fb5e01137cf28bc08ce7ea63536a4c5367068ebcc9b
noarch	xorg-x11-server-source-1.20.11-15.el8.noarch.rpm	4cc2d36c586f04600d6dd41d34113ed74876f4116b48cdd088b2ff4782e8abc7
ppc64le	xorg-x11-server-common-1.20.11-15.el8.ppc64le.rpm	326c8ac42ebfef2d361f6bbbe5eb731310b26917389f041965e6da1d660f1efe
ppc64le	xorg-x11-server-Xnest-1.20.11-15.el8.ppc64le.rpm	45349ced9689e8f07166e7e564edf2b5e6f977040eae738b7aadba40b5fed949
ppc64le	xorg-x11-server-Xvfb-1.20.11-15.el8.ppc64le.rpm	ab20d9d565bb1a4758045ab545ea9a170af5b99f06cd57b71ce30e3b1c9666dc
ppc64le	xorg-x11-server-Xorg-1.20.11-15.el8.ppc64le.rpm	abef0ecaa4a346392f0963026bd10e4347fdd810046a4e33832d129f20a1e2c4
ppc64le	xorg-x11-server-devel-1.20.11-15.el8.ppc64le.rpm	d18f7edd3de4be9d571d32185b676bddb1bd089396654bbaf4e557c804586018
ppc64le	xorg-x11-server-Xephyr-1.20.11-15.el8.ppc64le.rpm	e2fe088219149d3e71c877aa31cb9ddf3acb5b3ea69a0041876f29da260b0559
ppc64le	xorg-x11-server-Xdmx-1.20.11-15.el8.ppc64le.rpm	ec1a66131c024efea6100642ac0f62ff3f66699c6ac54c33acf316582961fe82
s390x	xorg-x11-server-Xephyr-1.20.11-15.el8.s390x.rpm	03ff82109cd25daf0a5cc655e48bc11bc9e16ce6e8bb016e4d5614119e60dfb3
s390x	xorg-x11-server-devel-1.20.11-15.el8.s390x.rpm	3c73719ce739c003b6c4d4f009b44ac1cb249a6ab1b437ccb5b37569cff1cded
s390x	xorg-x11-server-Xnest-1.20.11-15.el8.s390x.rpm	44180e1198ebce36a790dc3d02f99e5ed3877a0f799711bcf848d9cb0fb609ca
s390x	xorg-x11-server-Xdmx-1.20.11-15.el8.s390x.rpm	64d1b76747607de857e30c4a2aa4cd054c229a95c94aaafc4847b72a8a88dccf
s390x	xorg-x11-server-Xvfb-1.20.11-15.el8.s390x.rpm	a9697af83a15eef8e3c44d0fdfa11add653a5f69e0164a47b689c9de1e444d1f
s390x	xorg-x11-server-common-1.20.11-15.el8.s390x.rpm	c21f4173916480d138ed587dfac2026686236e59a58d679a3b155fa6319e133d
s390x	xorg-x11-server-Xorg-1.20.11-15.el8.s390x.rpm	d8d8ef522c1973287a47b26bb40a17c38a83af7b884a2635a39109e9e8b4de50
x86_64	xorg-x11-server-devel-1.20.11-15.el8.x86_64.rpm	062d1cdf3bdf8e31e59472dabdf63e2bf782b1f9bd4375508551af0fac97a3cc
x86_64	xorg-x11-server-Xnest-1.20.11-15.el8.x86_64.rpm	5184109f2b3505807518dc4da246261d1f7f0d4e0604279021aa709095728da5
x86_64	xorg-x11-server-Xdmx-1.20.11-15.el8.x86_64.rpm	63d38a24fa07ceb2a9e961ea76864680c0663eaa35b712178dd64c48c6334e85
x86_64	xorg-x11-server-common-1.20.11-15.el8.x86_64.rpm	680da3e0c9954da47d68d21f6f5fa506bf0ab11a120aa60c5da14395155499e4
x86_64	xorg-x11-server-Xvfb-1.20.11-15.el8.x86_64.rpm	80becd975a1f8b10ae9030aa093fa99ebddbf35fddcc55416dd1024c4ee8a6c9
x86_64	xorg-x11-server-Xorg-1.20.11-15.el8.x86_64.rpm	acfdc725e095d12d521c033d50d49d6998e2c9207dfc317b09a3f63278b3abb8
x86_64	xorg-x11-server-Xephyr-1.20.11-15.el8.x86_64.rpm	f8bc658653f0e1a68480f3e8e515bac9816de01f92c8cf5769d1d11707fdcc9d

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.