1. Forum
  2. Usenet
  3. LINUX.DEBIAN.ANNOUNCE.SEC

  • [SECURITY] [DSA 5199-1] xorg-server security update

    From Salvatore Bonaccorso@21:1/5 to All on Sat Aug 6 17:20:01 2022
    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA512

    - ------------------------------------------------------------------------- Debian Security Advisory DSA-5199-1 security@debian.org https://www.debian.org/security/ Salvatore Bonaccorso August 06, 2022 https://www.debian.org/security/faq
    - -------------------------------------------------------------------------

    Package : xorg-server
    CVE ID : CVE-2022-2319 CVE-2022-2320
    Debian Bug : 1014903

    Jan-Niklas Sohn discovered that multiple input validation failures in
    the Xkb extension of the X.org X server may result in privilege
    escalation if the X server is running privileged.

    For the stable distribution (bullseye), these problems have been fixed in version 2:1.20.11-1+deb11u2.

    We recommend that you upgrade your xorg-server packages.

    For the detailed security status of xorg-server please refer to its
    security tracker page at: https://security-tracker.debian.org/tracker/xorg-server

    Further information about Debian Security Advisories, how to apply
    these updates to your system and frequently asked questions can be
    found at: https://www.debian.org/security/

    Mailing list: debian-security-announce@lists.debian.org
    -----BEGIN PGP SIGNATURE-----

    iQKTBAEBCgB9FiEERkRAmAjBceBVMd3uBUy48xNDz0QFAmLuhTFfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2 NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQACgkQBUy48xND z0TaTw//d83onNTG0vqZK4L7SqH/uY6qnR9r3dydsVBm3X+Qg1wGjnBBPWpfpM2c 7AgLxj/DeA0D+9WRNlS+AS4H2vz8O3YN5MLlaaAJhuS20QDuqft1ebRPUjkdL2jv AFsepXcmQhB8wdI6MTOvEDq7Ddm6McZatnG+vy6/lB84WSZvx+j5YmBL+YiS+yl6 U1j6i6kULJ2nKFD6bR30YgRfeGgwh9S9p/D7s9bag4m6RFnIc98upQUa7SJyGb+Q rjpxjwNVC6KS4x29VGVp4jdYIJ3QGtsWa6jQamhnjW1jYyag9J+PFERyk8tGCwl/ bW63RWwV8+P57cFaUn5CR+xE4rPL0WopUMProJx0agLni+/ElAYblvRllQSlmHzD FyYi6cWBGCRjHlNR7Kzii8XdAsZdAFpJota+thdQBiARbZWzyXeUo4m6pU8FBCFO a5gR0bz4/7DLTa0wdxRK28K3/At5WvtaV5qUKDhUVnQ8/DzNbSlAaRTUfEc2BVJ0 TasbhbdN3Pp1dZ5K/o0wSVjwSKuk7qfFQTgzYtGWBYJR23Vh9FZvcghG3MnBAZEH AzV0Dr0VVJnzxOXH1ikzDq1PFqLhOTwohYgquGXz4F/tcHqVt6cUvut3nf/CaDei cnRxeusmVC9wBb9qcNjFbviUfIKdu14H/tc7IScNOi+1k2sVXRg=
    =V6jM
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)