Overview

File _patchinfo of Package patchinfo.32027

<patchinfo incident="32027">
  <issue tracker="cve" id="2024-21885"/>
  <issue tracker="cve" id="2023-6816"/>
  <issue tracker="cve" id="2024-0229"/>
  <issue tracker="cve" id="2024-21886"/>
  <issue tracker="bnc" id="1218585">VUL-0: EMBARGOED: CVE-2024-21886: xorg-x11-server,xwayland: Heap buffer overflow in DisableDevice</issue>
  <issue tracker="bnc" id="1218582">VUL-0: EMBARGOED: CVE-2023-6816: xorg-x11-server,xwayland: Heap buffer overflow in DeviceFocusEvent and ProcXIQueryPointer</issue>
  <issue tracker="bnc" id="1218584">VUL-0: EMBARGOED: CVE-2024-21885: xorg-x11-server,xwayland: Heap buffer overflow in XISendDeviceHierarchyEvent</issue>
  <issue tracker="bnc" id="1218583">VUL-0: EMBARGOED: CVE-2024-0229: xorg-x11-server,xwayland: Reattaching to different master device may lead to out-of-bounds memory access</issue> 
  <issue tracker="bnc" id="1218176">vmware graphics driver with latest kernel causes crash</issue>
  <issue tracker="bnc" id="1218240">Bugs in downstream X server patches cause server crash when starting with Xinerama enabled</issue>
  <packager>sndirsch</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for xorg-x11-server</summary>
  <description>This update for xorg-x11-server fixes the following issues:

Security fixes:

  - CVE-2023-6816: Fixed heap buffer overflow in DeviceFocusEvent and ProcXIQueryPointer (bsc#1218582)
  - CVE-2024-0229: Fixed reattaching to different master device may lead to out-of-bounds memory access (bsc#1218583)
  - CVE-2024-21885: Fixed heap buffer overflow in XISendDeviceHierarchyEvent (bsc#1218584)
  - CVE-2024-21886: Fixed heap buffer overflow in DisableDevice (bsc#1218585)

Other:

- Fix vmware graphics driver  crash (bsc#1218176)
- Fix xserver crash when Xinerama is enabled (bsc#1218240)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places