Ubuntu
xorg-server package

xorg-server 2:21.1.4-2ubuntu1.3 source package in Ubuntu

Changelog

xorg-server (2:21.1.4-2ubuntu1.3) kinetic-security; urgency=medium

  * SECURITY UPDATE: XTestSwapFakeInput stack overflow
    - debian/patches/CVE-2022-46340.patch: disallow GenericEvents in
      XTestSwapFakeInput in Xext/xtest.c.
    - CVE-2022-46340
  * SECURITY UPDATE: XIPassiveUngrabDevice out-of-bounds access
    - debian/patches/CVE-2022-46341.patch: disallow passive grabs with a
      detail > 255 in Xi/xipassivegrab.c.
    - CVE-2022-46341
  * SECURITY UPDATE: XvdiSelectVideoNotify use-after-free
    - debian/patches/CVE-2022-46342.patch: free the XvRTVideoNotify when
      turning off from the same client in Xext/xvmain.c.
    - CVE-2022-46342
  * SECURITY UPDATE: ScreenSaverSetAttributes use-after-free
    - debian/patches/CVE-2022-46343.patch: free the screen saver resource
      when replacing it in Xext/saver.c.
    - CVE-2022-46343
  * SECURITY UPDATE: XIChangeProperty out-of-bounds access
    - debian/patches/CVE-2022-46344-1.patch: return an error from XI
      property changes if verification failed in Xi/xiproperty.c.
    - debian/patches/CVE-2022-46344-2.patch: avoid integer truncation in
      length check of ProcXIChangeProperty in Xi/xiproperty.c.
    - CVE-2022-46344
  * SECURITY UPDATE: XkbGetKbdByName use-after-free
    - debian/patches/CVE-2022-4283.patch: reset the radio_groups pointer to
      NULL after freeing it in xkb/xkbUtils.c.
    - CVE-2022-4283

 -- Marc Deslauriers <email address hidden>  Wed, 07 Dec 2022 07:49:40 -0500

Upload details

Uploaded by:
Marc Deslauriers
Uploaded to:
Kinetic
Original maintainer:
Ubuntu X-SWAT
Architectures:
any all
Section:
x11
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
xorg-server_21.1.4.orig.tar.gz 8.6 MiB cbd5a1f75881e8a341823e51e489281aee0912c7023b4eed170b26b18f617e36
xorg-server_21.1.4.orig.tar.gz.asc 488 bytes 811b5da6defa1ffc8e0d5191ceefb6357e4cad5a06617bad178c5c13775aa3ce
xorg-server_21.1.4-2ubuntu1.3.diff.gz 226.8 KiB 06b8740dc06f14b89c5c3ef14f1828099cf679baf12e1e6af84419213e7e849b
xorg-server_21.1.4-2ubuntu1.3.dsc 4.2 KiB 049d6a6c8a1fe874a6fe01a4dff227c32a594c1fb24194f8a18f03d1edae117e

View changes file

Binary packages built by this source

xnest: No summary available for xnest in ubuntu kinetic.

No description available for xnest in ubuntu kinetic.

xnest-dbgsym: No summary available for xnest-dbgsym in ubuntu kinetic.

No description available for xnest-dbgsym in ubuntu kinetic.

xorg-server-source: No summary available for xorg-server-source in ubuntu kinetic.

No description available for xorg-server-source in ubuntu kinetic.

xserver-common: No summary available for xserver-common in ubuntu kinetic.

No description available for xserver-common in ubuntu kinetic.

xserver-xephyr: No summary available for xserver-xephyr in ubuntu kinetic.

No description available for xserver-xephyr in ubuntu kinetic.

xserver-xephyr-dbgsym: No summary available for xserver-xephyr-dbgsym in ubuntu kinetic.

No description available for xserver-xephyr-dbgsym in ubuntu kinetic.

xserver-xorg-core: No summary available for xserver-xorg-core in ubuntu kinetic.

No description available for xserver-xorg-core in ubuntu kinetic.

xserver-xorg-core-dbgsym: No summary available for xserver-xorg-core-dbgsym in ubuntu kinetic.

No description available for xserver-xorg-core-dbgsym in ubuntu kinetic.

xserver-xorg-dev: No summary available for xserver-xorg-dev in ubuntu kinetic.

No description available for xserver-xorg-dev in ubuntu kinetic.

xserver-xorg-legacy: No summary available for xserver-xorg-legacy in ubuntu kinetic.

No description available for xserver-xorg-legacy in ubuntu kinetic.

xserver-xorg-legacy-dbgsym: No summary available for xserver-xorg-legacy-dbgsym in ubuntu kinetic.

No description available for xserver-xorg-legacy-dbgsym in ubuntu kinetic.

xvfb: No summary available for xvfb in ubuntu kinetic.

No description available for xvfb in ubuntu kinetic.

xvfb-dbgsym: No summary available for xvfb-dbgsym in ubuntu kinetic.

No description available for xvfb-dbgsym in ubuntu kinetic.