File _patchinfo of Package patchinfo.32029

<patchinfo incident="32029">
  <issue tracker="cve" id="2023-6816"/>
  <issue tracker="cve" id="2024-0229"/>
  <issue tracker="cve" id="2024-21886"/>
  <issue tracker="cve" id="2024-21885"/>
  <issue tracker="cve" id="2024-0408"/>
  <issue tracker="cve" id="2024-0409"/>
  <issue tracker="bnc" id="1218583">VUL-0: EMBARGOED: CVE-2024-0229: xorg-x11-server,xwayland: Reattaching to different master device may lead to out-of-bounds memory access</issue>
  <issue tracker="bnc" id="1218584">VUL-0: EMBARGOED: CVE-2024-21885: xorg-x11-server,xwayland: Heap buffer overflow in XISendDeviceHierarchyEvent</issue>
  <issue tracker="bnc" id="1218582">VUL-0: EMBARGOED: CVE-2023-6816: xorg-x11-server,xwayland: Heap buffer overflow in DeviceFocusEvent and ProcXIQueryPointer</issue>
  <issue tracker="bnc" id="1218585">VUL-0: EMBARGOED: CVE-2024-21886: xorg-x11-server,xwayland: Heap buffer overflow in DisableDevice</issue>
  <issue tracker="bnc" id="1218846">VUL-0: CVE-2024-0409: xorg-x11-server,xwayland: SELinux context corruption</issue>
  <issue tracker="bnc" id="1218845">VUL-0: CVE-2024-0408: xorg-x11-server,xwayland: SELinux unlabeled GLX PBuffer</issue>
  <packager>sndirsch</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for xwayland</summary>
  <description>This update for xwayland fixes the following issues:

  - CVE-2023-6816: Fixed heap buffer overflow in DeviceFocusEvent and ProcXIQueryPointer (bsc#1218582)
  - CVE-2024-0229: Fixed reattaching to different master device may lead to out-of-bounds memory access (bsc#1218583)
  - CVE-2024-0408: Fixed SELinux unlabeled GLX PBuffer. (bsc#1218845)
  - CVE-2024-0409: Fixed SELinux context corruption. (bsc#1218846)  
  - CVE-2024-21885: Fixed heap buffer overflow in XISendDeviceHierarchyEvent (bsc#1218584)
  - CVE-2024-21886: Fixed heap buffer overflow in DisableDevice (bsc#1218585)
</description>
</patchinfo>