Format: 1.8 Date: Mon, 15 Jan 2024 10:45:41 -0500 Source: xorg-server Binary: xnest xserver-xephyr xserver-xorg-core xserver-xorg-dev xserver-xorg-legacy xvfb Built-For-Profiles: noudeb Architecture: armhf armhf_translations Version: 2:21.1.4-2ubuntu1.7~22.04.7 Distribution: jammy Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: xnest - Nested X server xserver-xephyr - nested X server xserver-xorg-core - Xorg X server - core server xserver-xorg-dev - Xorg X server - development files xserver-xorg-legacy - setuid root Xorg server wrapper xvfb - Virtual Framebuffer 'fake' X server Changes: xorg-server (2:21.1.4-2ubuntu1.7~22.04.7) jammy-security; urgency=medium . * SECURITY UPDATE: Heap buffer overflow in DeviceFocusEvent and ProcXIQueryPointer - debian/patches/CVE-2023-6816.patch: allocate enough space for logical button maps in Xi/xiquerypointer.c, dix/enterleave.c. - CVE-2023-6816 * SECURITY UPDATE: Reattaching to different master device may lead to out-of-bounds memory access - debian/patches/CVE-2024-0229-1.patch: allocate sufficient xEvents for our DeviceStateNotify in dix/enterleave.c. - debian/patches/CVE-2024-0229-2.patch: fix DeviceStateNotify event calculation in dix/enterleave.c. - debian/patches/CVE-2024-0229-3.patch: when creating a new ButtonClass, set the number of buttons in Xi/exevents.c. - debian/patches/CVE-2024-0229-4.patch: require a pointer and keyboard device for XIAttachToMaster in Xi/xichangehierarchy.c. - CVE-2024-0229 * SECURITY UPDATE: SELinux unlabeled GLX PBuffer - debian/patches/CVE-2024-0408.patch: call XACE hooks on the GLX buffer in glx/glxcmds.c. - CVE-2024-0408 * SECURITY UPDATE: SELinux context corruption - debian/patches/CVE-2024-0409.patch: use the proper private key for cursor in hw/kdrive/ephyr/ephyrcursor.c. - CVE-2024-0409 * SECURITY UPDATE: Heap buffer overflow in XISendDeviceHierarchyEvent - debian/patches/CVE-2024-21885.patch: flush hierarchy events after adding/removing master devices in Xi/xichangehierarchy.c. - CVE-2024-21885 * SECURITY UPDATE: Heap buffer overflow in DisableDevice - debian/patches/CVE-2024-21886-1.patch: do not keep linked list pointer during recursion in dix/devices.c. - debian/patches/CVE-2024-21886-2.patch: when disabling a master, float disabled slaved devices too in dix/devices.c. - CVE-2024-21886 Checksums-Sha1: a61f7556da869c3716797c51985f949d6483475e 2648870 xnest-dbgsym_21.1.4-2ubuntu1.7~22.04.7_armhf.ddeb 6dfee3d39bbd22526442e8145827b0744fa10160 617054 xnest_21.1.4-2ubuntu1.7~22.04.7_armhf.deb 32215cd762a0bc5d2adc95e474f6992c6bf3a2d5 15657 xorg-server_21.1.4-2ubuntu1.7~22.04.7_armhf.buildinfo af34517c6694a8d6085c929a3302c0f6cd6a9443 28251 xorg-server_21.1.4-2ubuntu1.7~22.04.7_armhf_translations.tar.gz ad18ebbe2b08f497ec9cdb11387d590c3c4fb41b 3878422 xserver-xephyr-dbgsym_21.1.4-2ubuntu1.7~22.04.7_armhf.ddeb 9c4794ce8ffa84d547f15ca2b62127e2293d7277 864652 xserver-xephyr_21.1.4-2ubuntu1.7~22.04.7_armhf.deb 16e8c061f5565dbcb427c1f44b634687b84164a6 5673252 xserver-xorg-core-dbgsym_21.1.4-2ubuntu1.7~22.04.7_armhf.ddeb b23e1e22f36ac654506fcd75bccb9b6336919984 1252528 xserver-xorg-core_21.1.4-2ubuntu1.7~22.04.7_armhf.deb 1c0516c0eede6a153e6ed686fc28e4a54ade3280 203620 xserver-xorg-dev_21.1.4-2ubuntu1.7~22.04.7_armhf.deb 6aa4e60756338eed8efde3a7d036489ecd466fea 9566 xserver-xorg-legacy-dbgsym_21.1.4-2ubuntu1.7~22.04.7_armhf.ddeb 9a018426a3dc660596ddd9a473aa378303404e10 35068 xserver-xorg-legacy_21.1.4-2ubuntu1.7~22.04.7_armhf.deb 99cddb884eb323205eaeca9b46d2102110589859 3201436 xvfb-dbgsym_21.1.4-2ubuntu1.7~22.04.7_armhf.ddeb 347015312fd52ef9a9f5670aa07bb8437482592c 731562 xvfb_21.1.4-2ubuntu1.7~22.04.7_armhf.deb Checksums-Sha256: 3a3253906c31a2497170eecc2e85c1d1e16cfef5c14a0a69c77bd30ff2aa592f 2648870 xnest-dbgsym_21.1.4-2ubuntu1.7~22.04.7_armhf.ddeb b04dd36f5f010293f8363ee6dde797a4933f3e84c7bbda2a9cc2df53d02a2bf0 617054 xnest_21.1.4-2ubuntu1.7~22.04.7_armhf.deb ec09d994f5b9217f3142167f84db0cb8424c006ed2c8af1bd2c9a11b36d5e6af 15657 xorg-server_21.1.4-2ubuntu1.7~22.04.7_armhf.buildinfo 9e1d408f7d3aa7fb3baca9ee8909aa5205973d716eb98ece94153efb7465ea81 28251 xorg-server_21.1.4-2ubuntu1.7~22.04.7_armhf_translations.tar.gz 5772e25964c1d4354301240773142760e152a36159415c76beaf445e06365d1e 3878422 xserver-xephyr-dbgsym_21.1.4-2ubuntu1.7~22.04.7_armhf.ddeb 301403db3ec4c870deeb120b375f4ebf9f935dfb20056ed2d0cefb5c1c92b48d 864652 xserver-xephyr_21.1.4-2ubuntu1.7~22.04.7_armhf.deb d7eaf11e7215a5e041511055f87943b6fad377d428829c3b0a9fa9572fa985ef 5673252 xserver-xorg-core-dbgsym_21.1.4-2ubuntu1.7~22.04.7_armhf.ddeb fa5db0cef3c860e4f2bd3505f4bd27f710132ff8aa15e10f4617c8cdaf5467e2 1252528 xserver-xorg-core_21.1.4-2ubuntu1.7~22.04.7_armhf.deb 7ffed9d52c469ae91d4fa6756d7a7458c3f3b18c4e41e517542155074ba5dcd1 203620 xserver-xorg-dev_21.1.4-2ubuntu1.7~22.04.7_armhf.deb 724dfc538ef055353aabbfaaac705c4fbdf88e6440bdebf2068658191d9264b2 9566 xserver-xorg-legacy-dbgsym_21.1.4-2ubuntu1.7~22.04.7_armhf.ddeb 5e8a627e4d48d1546f233c3acb499a1ebc70cb7b138ae1e05d2356a0e152e20b 35068 xserver-xorg-legacy_21.1.4-2ubuntu1.7~22.04.7_armhf.deb c3e0cb3416adcd9dd23e25867e0b320d19713161f941bd7314f1a4af3f2dd337 3201436 xvfb-dbgsym_21.1.4-2ubuntu1.7~22.04.7_armhf.ddeb 79650c7e3ebda02a0db4f30f1c770418902c843d6777732100dc0e699cbcea3e 731562 xvfb_21.1.4-2ubuntu1.7~22.04.7_armhf.deb Files: 5f905f3fda2891a5029465841e9b7064 2648870 debug optional xnest-dbgsym_21.1.4-2ubuntu1.7~22.04.7_armhf.ddeb 50290e0380e0abe26201d9d0047139c3 617054 x11 optional xnest_21.1.4-2ubuntu1.7~22.04.7_armhf.deb e6ff9cd0f007738add8cff793de2e199 15657 x11 optional xorg-server_21.1.4-2ubuntu1.7~22.04.7_armhf.buildinfo 0f903307311aa42ea33f5d20233df9af 28251 raw-translations - xorg-server_21.1.4-2ubuntu1.7~22.04.7_armhf_translations.tar.gz 9db4a9d4b944c04146f0ce153089c9de 3878422 debug optional xserver-xephyr-dbgsym_21.1.4-2ubuntu1.7~22.04.7_armhf.ddeb dfb2d3b67ff33df09994f3c2fe0f92c8 864652 x11 optional xserver-xephyr_21.1.4-2ubuntu1.7~22.04.7_armhf.deb 5c09728ebfcfbec97bdf5c5a60cbda3a 5673252 debug optional xserver-xorg-core-dbgsym_21.1.4-2ubuntu1.7~22.04.7_armhf.ddeb b48bd52691d9eefd6390e03bc7617117 1252528 x11 optional xserver-xorg-core_21.1.4-2ubuntu1.7~22.04.7_armhf.deb a31336be60e9e9cf4daedf309761bb49 203620 x11 optional xserver-xorg-dev_21.1.4-2ubuntu1.7~22.04.7_armhf.deb 2c5ed1f2d9514fcd38aacd13bd5f4d6d 9566 debug optional xserver-xorg-legacy-dbgsym_21.1.4-2ubuntu1.7~22.04.7_armhf.ddeb e1f8039bfb5d9a404fd4ff9b075aa692 35068 x11 optional xserver-xorg-legacy_21.1.4-2ubuntu1.7~22.04.7_armhf.deb c7fe880b9bc3beb713ed213cac766605 3201436 debug optional xvfb-dbgsym_21.1.4-2ubuntu1.7~22.04.7_armhf.ddeb 847f41519b58eeacc49afa18313b3629 731562 x11 optional xvfb_21.1.4-2ubuntu1.7~22.04.7_armhf.deb Original-Maintainer: Debian X Strike Force