xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: use-after-free in SyncChangeCounter()

A use-after-free flaw was found in the X.Org X server and Xwayland in SyncChangeCounter. A client that sets up multiple SyncCounters can trigger a use-after-free when destroying those counters via a second client connection while changing those counters. This may be used to crash the server, or f...

Important: Red Hat Security Advisory: xorg-x11-server-Xwayland security, bug fix, and enhancement update

An update for xorg-x11-server-Xwayland is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

RHSA-2026:26709 Red Hat Security Advisory: xorg-x11-server security, bug fix, and enhancement update

Bulletin has no description...

RHSA-2026:26562 Red Hat Security Advisory: xorg-x11-server-Xwayland security, bug fix, and enhancement update

Bulletin has no description...

Important: Red Hat Security Advisory: xorg-x11-server security, bug fix, and enhancement update

An update for xorg-x11-server is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabilit...

Important: Red Hat Security Advisory: xorg-x11-server security, bug fix, and enhancement update

An update for xorg-x11-server is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabilit...

Important: Red Hat Security Advisory: xorg-x11-server-Xwayland security, bug fix, and enhancement update

An update for xorg-x11-server-Xwayland is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: use-after-free in miSyncDestroyFence()

A use-after-free flaw was found in the X.Org X server and Xwayland in miSyncDestroyFence. A client that sets up multiple fence triggers can trigger a use-after-free function pointer call. An attacker would connect to the X server to set up a fence and await that fence, then a second X connection...

xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: out-of-bounds read/write in GLX ChangeDrawableAttributes

An out-of-bounds read flaw was found in the X.Org X server and Xwayland in glXDispChangeDrawableAttributes. A wrong size validation check can read a client-controlled number of bytes, exceeding the request buffer, leading to information disclosure. A write path also exists but requires byte-swapp...

CVE-2026-50258 affecting package xorg-x11-server-Xwayland for versions less than 24.1.12-1

CVE-2026-50258 affecting package xorg-x11-server-Xwayland for versions less than 24.1.12-1. An upgraded version of the package is available that resolves this issue...

CVE-2026-50259 affecting package xorg-x11-server-Xwayland for versions less than 24.1.12-1

CVE-2026-50259 affecting package xorg-x11-server-Xwayland for versions less than 24.1.12-1. An upgraded version of the package is available that resolves this issue...

CVE-2026-50257 affecting package xorg-x11-server-Xwayland for versions less than 24.1.12-1

CVE-2026-50257 affecting package xorg-x11-server-Xwayland for versions less than 24.1.12-1. An upgraded version of the package is available that resolves this issue...

Xorg-x11-server: xorg-x11-server-xwayland: xorg-x11-server: stack buffer overflow in xkb setmap request via mapwidths indexing

...

Xorg-x11-server: xorg-x11-server-xwayland: xorg-x11-server: use-after-free in freecounter()

...

Fedora 43 : xorg-x11-server (2026-c3ea7d7b0e)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-c3ea7d7b0e advisory. Update to xserver 21.1.23, Security fixes for: ZDI-CAN-30136, ZDI-CAN-30159, ZDI-CAN-30160, ZDI-CAN-30161, ZDI-CAN-30163, ZDI-CAN-30164, ZDI-CAN-30165,...

TencentOS Server 4: xorg-x11-server (TSSA-2026:0294)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2026:0294 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

CVE-2026-50263

CVE-2026-50263 affects the X.Org X server and Xwayland. The flaw is a use-after-free in CreateSaverWindow() that can cause a use-after-free read after changing window attributes and forcing the screen saver, leading to information disclosure. Impact is confidentiality (information disclosure) wit...

CVE-2026-50261

The CVE-2026-50261 entry describes a use-after-free in the X.Org X server and Xwayland related to SyncChangeCounter(). A client that creates multiple SyncCounters can trigger a use-after-free when those counters are destroyed via a second client connection during a change, potentially crashing th...

CVE-2026-50258

The CVE affects the X.Org X server and Xwayland. A stack-based buffer overflow arises from unchecked key-type shift levels in XkbKeyTypes: multiple stack buffers sized XkbMaxShiftLevel * XkbNumKbdGroups are not clamped by CheckKeyTypes(), allowing a client to set excessive shift levels and trigge...

Security update for xorg-x11-server (important)

openSUSE security update: security update for xorg-x11-server ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20896-1 Rating: important References: bsc1266294 bsc1266295 bsc1266296 bsc1266297 bsc1266298 bsc1266299 bsc1266300 bsc1266301 bsc1266302...