ALSA-2024:3343

[ALSA-2024:3343] Important: xorg-x11-server-Xwayland security update

Type:

security

Severity:

important

Release date:

2024-05-29

Description:

Xwayland is an X server for running X clients under Wayland.

Security Fix(es):

* xorg-x11-server: Heap buffer overread/data leakage in ProcXIGetSelectedEvents (CVE-2024-31080)
* xorg-x11-server: Heap buffer overread/data leakage in ProcXIPassiveGrabDevice (CVE-2024-31081)
* xorg-x11-server: Use-after-free in ProcRenderAddGlyphs (CVE-2024-31083)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	xorg-x11-server-Xwayland-21.1.3-16.el8_10.aarch64.rpm	92b38e83eb581321368169405a3a8d45c07a9a076399e900ee0fd0fbb4d79510
ppc64le	xorg-x11-server-Xwayland-21.1.3-16.el8_10.ppc64le.rpm	4da2a6b1a9f67bcb3c0526eedc0f1426de0310a5d29a93bec16c1625f8c9cce4
s390x	xorg-x11-server-Xwayland-21.1.3-16.el8_10.s390x.rpm	b01ec4ab714d8a9aa9ee40373679bca125ee3d213d41b256b9a13a18cfe096a8
x86_64	xorg-x11-server-Xwayland-21.1.3-16.el8_10.x86_64.rpm	640090e65c778611af81071631a20ee6b61d3f3daf2596a53a90a2307e79b63f

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.