(RHSA-2023:2806) Moderate: xorg-x11-server security and bug fix update

2023-05-1605:55:10

access.redhat.com

x.org

buffer overflow

use-after-free

stack overflow

out-of-bounds access

privilege elevation

memory leak

0.028 Low

EPSS

Percentile

90.7%

JSON

X.Org is an open-source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon.

Security Fix(es):

xorg-x11-server: buffer overflow in _GetCountedString() in xkb/xkb.c (CVE-2022-3550)
xorg-x11-server: XkbGetKbdByName use-after-free (CVE-2022-4283)
xorg-x11-server: XTestSwapFakeInput stack overflow (CVE-2022-46340)
xorg-x11-server: XIPassiveUngrab out-of-bounds access (CVE-2022-46341)
xorg-x11-server: XvdiSelectVideoNotify use-after-free (CVE-2022-46342)
xorg-x11-server: ScreenSaverSetAttributes use-after-free (CVE-2022-46343)
xorg-x11-server: XIChangeProperty out-of-bounds access (CVE-2022-46344)
xorg-x11-server: DeepCopyPointerClasses use-after-free leads to privilege elevation (CVE-2023-0494)
xorg-x11-server: memory leak in ProcXkbGetKbdByName() in xkb/xkb.c (CVE-2022-3551)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.8 Release Notes linked from the References section.

OSVersionArchitecturePackageVersionFilename
RedHat8s390xxorg-x11-server-xdmx-debuginfo< 1.20.11-15.el8xorg-x11-server-Xdmx-debuginfo-1.20.11-15.el8.s390x.rpm
RedHat8aarch64xorg-x11-server-xvfb< 1.20.11-15.el8xorg-x11-server-Xvfb-1.20.11-15.el8.aarch64.rpm
RedHat8aarch64xorg-x11-server-xdmx< 1.20.11-15.el8xorg-x11-server-Xdmx-1.20.11-15.el8.aarch64.rpm
RedHat8s390xxorg-x11-server-debuginfo< 1.20.11-15.el8xorg-x11-server-debuginfo-1.20.11-15.el8.s390x.rpm
RedHat8i686xorg-x11-server-debugsource< 1.20.11-15.el8xorg-x11-server-debugsource-1.20.11-15.el8.i686.rpm
RedHat8aarch64xorg-x11-server-xnest-debuginfo< 1.20.11-15.el8xorg-x11-server-Xnest-debuginfo-1.20.11-15.el8.aarch64.rpm
RedHat8s390xxorg-x11-server-xdmx< 1.20.11-15.el8xorg-x11-server-Xdmx-1.20.11-15.el8.s390x.rpm
RedHat8s390xxorg-x11-server-xorg< 1.20.11-15.el8xorg-x11-server-Xorg-1.20.11-15.el8.s390x.rpm
RedHat8ppc64lexorg-x11-server-debuginfo< 1.20.11-15.el8xorg-x11-server-debuginfo-1.20.11-15.el8.ppc64le.rpm
RedHat8aarch64xorg-x11-server-devel< 1.20.11-15.el8xorg-x11-server-devel-1.20.11-15.el8.aarch64.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	8	s390x	xorg-x11-server-xdmx-debuginfo	< 1.20.11-15.el8	xorg-x11-server-Xdmx-debuginfo-1.20.11-15.el8.s390x.rpm
RedHat	8	aarch64	xorg-x11-server-xvfb	< 1.20.11-15.el8	xorg-x11-server-Xvfb-1.20.11-15.el8.aarch64.rpm
RedHat	8	aarch64	xorg-x11-server-xdmx	< 1.20.11-15.el8	xorg-x11-server-Xdmx-1.20.11-15.el8.aarch64.rpm
RedHat	8	s390x	xorg-x11-server-debuginfo	< 1.20.11-15.el8	xorg-x11-server-debuginfo-1.20.11-15.el8.s390x.rpm
RedHat	8	i686	xorg-x11-server-debugsource	< 1.20.11-15.el8	xorg-x11-server-debugsource-1.20.11-15.el8.i686.rpm
RedHat	8	aarch64	xorg-x11-server-xnest-debuginfo	< 1.20.11-15.el8	xorg-x11-server-Xnest-debuginfo-1.20.11-15.el8.aarch64.rpm
RedHat	8	s390x	xorg-x11-server-xdmx	< 1.20.11-15.el8	xorg-x11-server-Xdmx-1.20.11-15.el8.s390x.rpm
RedHat	8	s390x	xorg-x11-server-xorg	< 1.20.11-15.el8	xorg-x11-server-Xorg-1.20.11-15.el8.s390x.rpm
RedHat	8	ppc64le	xorg-x11-server-debuginfo	< 1.20.11-15.el8	xorg-x11-server-debuginfo-1.20.11-15.el8.ppc64le.rpm
RedHat	8	aarch64	xorg-x11-server-devel	< 1.20.11-15.el8	xorg-x11-server-devel-1.20.11-15.el8.aarch64.rpm