-----BEGIN PGP SIGNATURE-----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=aR89
-----END PGP SIGNATURE-----
==========================================================================
Ubuntu Security Notice USN-7299-1
February 25, 2025
xorg-server, xwayland vulnerabilities
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 24.10
- Ubuntu 24.04 LTS
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS
Summary:
Several security issues were fixed in X.Org X Server.
Software Description:
- xorg-server: X.Org X11 server
- xwayland: X server for running X clients under Wayland
Details:
Jan-Niklas Sohn discovered that the X.Org X Server incorrectly handled
certain memory operations. An attacker could use these issues to cause the
X Server to crash, leading to a denial of service, or possibly execute
arbitrary code.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 24.10
xserver-xorg-core 2:21.1.13-2ubuntu1.2
xwayland 2:24.1.2-1ubuntu0.4
Ubuntu 24.04 LTS
xserver-xorg-core 2:21.1.12-1ubuntu1.2
xwayland 2:23.2.6-1ubuntu0.4
Ubuntu 22.04 LTS
xserver-xorg-core 2:21.1.4-2ubuntu1.7~22.04.13
xwayland 2:22.1.1-1ubuntu0.17
Ubuntu 20.04 LTS
xserver-xorg-core 2:1.20.13-1ubuntu1~20.04.19
xwayland 2:1.20.13-1ubuntu1~20.04.19
After a standard system update you need to reboot your computer to make all
the necessary changes.
References:
https://ubuntu.com/security/notices/USN-7299-1
CVE-2025-26594, CVE-2025-26595, CVE-2025-26596, CVE-2025-26597,
CVE-2025-26598, CVE-2025-26599, CVE-2025-26600, CVE-2025-26601
Package Information:
https://launchpad.net/ubuntu/+source/xorg-server/2:21.1.13-2ubuntu1.2
https://launchpad.net/ubuntu/+source/xwayland/2:24.1.2-1ubuntu0.4
https://launchpad.net/ubuntu/+source/xorg-server/2:21.1.12-1ubuntu1.2
https://launchpad.net/ubuntu/+source/xwayland/2:23.2.6-1ubuntu0.4
https://launchpad.net/ubuntu/+source/xorg-server/2:21.1.4-2ubuntu1.7~22.04.13
https://launchpad.net/ubuntu/+source/xwayland/2:22.1.1-1ubuntu0.17
https://launchpad.net/ubuntu/+source/xorg-server/2:1.20.13-1ubuntu1~20.04.19
No comments:
Post a Comment