Debian
xorg-server package

xorg-server 2:21.1.7-3+deb12u5 source package in Debian

Changelog

xorg-server (2:21.1.7-3+deb12u5) bookworm-security; urgency=high

  * Non-maintainer upload by the Security Team.
  * Xi: require a pointer and keyboard device for XIAttachToMaster
  * dix: allocate enough space for logical button maps (CVE-2023-6816)
  * dix: Allocate sufficient xEvents for our DeviceStateNotify (CVE-2024-0229)
  * dix: fix DeviceStateNotify event calculation (CVE-2024-0229)
  * Xi: when creating a new ButtonClass, set the number of buttons
    (CVE-2024-0229)
  * Xi: flush hierarchy events after adding/removing master devices
    (CVE-2024-21885)
  * Xi: do not keep linked list pointer during recursion (CVE-2024-21886)
  * dix: when disabling a master, float disabled slaved devices too
    (CVE-2024-21886)
  * ephyr,xwayland: Use the proper private key for cursor
  * glx: Call XACE hooks on the GLX buffer
  * dix: Fix use after free in input device shutdown

 -- Salvatore Bonaccorso <email address hidden>  Mon, 22 Jan 2024 07:19:15 +0100

Upload details

Uploaded by:
Debian X Strike Force
Uploaded to:
Bookworm
Original maintainer:
Debian X Strike Force
Architectures:
any all
Section:
x11
Urgency:
Very Urgent

See full publishing history Publishing

Series Pocket Published Component Section
Sid release main x11
Bookworm release main x11

Builds

Downloads

File Size SHA-256 Checksum
xorg-server_21.1.7-3+deb12u5.dsc 4.3 KiB 5673a300fcf497134429c9a903c81f16b1d9bb516a8189714bd2bb2be1ad0ff4
xorg-server_21.1.7.orig.tar.gz 8.5 MiB 1a9005f47c7ea83645a977581324439628a32c4426303e5a4b9c2d6615becfbf
xorg-server_21.1.7.orig.tar.gz.asc 195 bytes 2f2113fe0866694084e952c7699a689d1fa0feefd1cc8492d79db432604246c4
xorg-server_21.1.7-3+deb12u5.diff.gz 177.6 KiB bfdd5d50b2aacb667e03040d0c26ad43f2272212bf5c9866f94e3d37a3634ed1

No changes file available.

Binary packages built by this source