[ubuntu/jammy-updates] xorg-server 2:21.1.4-2ubuntu1.7~22.04.1 (Accepted)
Timo Aaltonen
tjaalton at ubuntu.com
Thu Apr 13 09:00:28 UTC 2023
xorg-server (2:21.1.4-2ubuntu1.7~22.04.1) jammy; urgency=medium
* Backport to jammy. (LP: #2009767)
xorg-server (2:21.1.4-2ubuntu1.7) kinetic-security; urgency=medium
* SECURITY UPDATE: Overlay Window Use-After-Free
- debian/patches/CVE-2023-1393.patch: fix use-after-free of the COW in
composite/compwindow.c.
- CVE-2023-1393
xorg-server (2:21.1.4-2ubuntu1.6) kinetic; urgency=medium
* patches: Force update LEDs after device state update. (LP: #1993621)
xorg-server (2:21.1.4-2ubuntu1.5) kinetic-security; urgency=medium
* SECURITY UPDATE: DeepCopyPointerClasses use-after-free
- debian/patches/CVE-2023-0494.patch: fix potential use-after-free in
Xi/exevents.c.
- CVE-2023-0494
xorg-server (2:21.1.4-2ubuntu1.4) kinetic; urgency=medium
* re-calculate-the-clock-and-refresh-rate.diff: Import v3, fix a
crash. (LP: #1999008)
xorg-server (2:21.1.4-2ubuntu1.3) kinetic-security; urgency=medium
* SECURITY UPDATE: XTestSwapFakeInput stack overflow
- debian/patches/CVE-2022-46340.patch: disallow GenericEvents in
XTestSwapFakeInput in Xext/xtest.c.
- CVE-2022-46340
* SECURITY UPDATE: XIPassiveUngrabDevice out-of-bounds access
- debian/patches/CVE-2022-46341.patch: disallow passive grabs with a
detail > 255 in Xi/xipassivegrab.c.
- CVE-2022-46341
* SECURITY UPDATE: XvdiSelectVideoNotify use-after-free
- debian/patches/CVE-2022-46342.patch: free the XvRTVideoNotify when
turning off from the same client in Xext/xvmain.c.
- CVE-2022-46342
* SECURITY UPDATE: ScreenSaverSetAttributes use-after-free
- debian/patches/CVE-2022-46343.patch: free the screen saver resource
when replacing it in Xext/saver.c.
- CVE-2022-46343
* SECURITY UPDATE: XIChangeProperty out-of-bounds access
- debian/patches/CVE-2022-46344-1.patch: return an error from XI
property changes if verification failed in Xi/xiproperty.c.
- debian/patches/CVE-2022-46344-2.patch: avoid integer truncation in
length check of ProcXIChangeProperty in Xi/xiproperty.c.
- CVE-2022-46344
* SECURITY UPDATE: XkbGetKbdByName use-after-free
- debian/patches/CVE-2022-4283.patch: reset the radio_groups pointer to
NULL after freeing it in xkb/xkbUtils.c.
- CVE-2022-4283
xorg-server (2:21.1.4-2ubuntu1.2) kinetic; urgency=medium
* re-calculate-the-clock-and-refresh-rate.diff: Fix modes on 2.5k at 90Hz
panels. (LP: #1996490)
xorg-server (2:21.1.4-2ubuntu1.1) kinetic-security; urgency=medium
* SECURITY UPDATE: GetCountedString Buffer Overflow
- debian/patches/CVE-2022-3550.patch: add a check for client->req_len
size for _GetCountedString in xkb/xkb.c.
- CVE-2022-3550
* SECURITY UPDATE: ProcXkbGetKbdByName Memory Leak
- debian/patches/CVE-2022-3551.patch: add calls to free allocated
memory if the execution reaches failures in ProcXkbGetKbdByName
in xkb/xkb.c.
- CVE-2022-3551
xorg-server (2:21.1.4-2ubuntu1) kinetic; urgency=medium
* Merge from Debian.
* Drop CVE patches, upstream.
xorg-server (2:21.1.4-2) unstable; urgency=medium
* 001_fedora_extramodes.patch: Dropped, apparently obsolete since
1.5.0. (LP: #1990456)
xorg-server (2:21.1.4-1) unstable; urgency=medium
* New upstream release.
- CVE-2022-2319, CVE-2022-2320 (Closes: #1014903)
xorg-server (2:21.1.3-2ubuntu3) kinetic; urgency=medium
* SECURITY UPDATE: ProcXkbSetGeometry Out-Of-Bounds Access
- debian/patches/CVE-2022-2319-pre1.patch: switch to array index loops
to moving pointers in xkb/xkb.c.
- debian/patches/CVE-2022-2319.patch: add request length validation for
XkbSetGeometry in xkb/xkb.c.
- CVE-2022-2319
* SECURITY UPDATE: ProcXkbSetDeviceInfo Out-Of-Bounds Access
- debian/patches/CVE-2022-2320.patch: swap XkbSetDeviceInfo and
XkbSetDeviceInfoCheck in xkb/xkb.c.
- CVE-2022-2320
Date: 2023-04-04 06:42:10.125604+00:00
Changed-By: Timo Aaltonen <tjaalton at ubuntu.com>
https://launchpad.net/ubuntu/+source/xorg-server/2:21.1.4-2ubuntu1.7~22.04.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the jammy-changes
mailing list