[ubuntu/kinetic-proposed] xwayland 2:22.1.2-1ubuntu1 (Accepted)

Marc Deslauriers marc.deslauriers at ubuntu.com
Tue Jul 12 15:28:12 UTC 2022 

xwayland (2:22.1.2-1ubuntu1) kinetic; urgency=medium

  * SECURITY UPDATE: ProcXkbSetGeometry Out-Of-Bounds Access
    - debian/patches/CVE-2022-2319-pre1.patch: switch to array index loops
      to moving pointers in xkb/xkb.c.
    - debian/patches/CVE-2022-2319.patch: add request length validation for
      XkbSetGeometry in xkb/xkb.c.
    - CVE-2022-2319
  * SECURITY UPDATE: ProcXkbSetDeviceInfo Out-Of-Bounds Access
    - debian/patches/CVE-2022-2320.patch: swap XkbSetDeviceInfo and
      XkbSetDeviceInfoCheck in xkb/xkb.c.
    - CVE-2022-2320

Date: Tue, 12 Jul 2022 11:22:34 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/xwayland/2:22.1.2-1ubuntu1
-------------- next part --------------
Format: 1.8
Date: Tue, 12 Jul 2022 11:22:34 -0400
Source: xwayland
Built-For-Profiles: noudeb
Architecture: source
Version: 2:22.1.2-1ubuntu1
Distribution: kinetic
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Changes:
 xwayland (2:22.1.2-1ubuntu1) kinetic; urgency=medium
 .
   * SECURITY UPDATE: ProcXkbSetGeometry Out-Of-Bounds Access
     - debian/patches/CVE-2022-2319-pre1.patch: switch to array index loops
       to moving pointers in xkb/xkb.c.
     - debian/patches/CVE-2022-2319.patch: add request length validation for
       XkbSetGeometry in xkb/xkb.c.
     - CVE-2022-2319
   * SECURITY UPDATE: ProcXkbSetDeviceInfo Out-Of-Bounds Access
     - debian/patches/CVE-2022-2320.patch: swap XkbSetDeviceInfo and
       XkbSetDeviceInfoCheck in xkb/xkb.c.
     - CVE-2022-2320
Checksums-Sha1:
 b0e5de4f8f9c46570a2d192e0bdf8f60fd357cf3 2572 xwayland_22.1.2-1ubuntu1.dsc
 d4d1b6ac36fe0d5f0e0f7468ff4495e2bec1a28b 36848 xwayland_22.1.2-1ubuntu1.debian.tar.xz
 df4c247a63d9bacb72199dbb1a60081a43b93b1b 10114 xwayland_22.1.2-1ubuntu1_source.buildinfo
Checksums-Sha256:
 dc06281615e0c766a2486671c433cd8124df313be23ec33a1e9e293c40662050 2572 xwayland_22.1.2-1ubuntu1.dsc
 c276e4ab2b75e290c51c32650b7fd48e5ddbad9cb02e5439fa30d89734896b04 36848 xwayland_22.1.2-1ubuntu1.debian.tar.xz
 cec4e9c861d27f47baa08600a87cd9de21811ac4e1237c26172ac04deb4fe418 10114 xwayland_22.1.2-1ubuntu1_source.buildinfo
Files:
 c5e290865064ca8d5da20d67e2d5c0a7 2572 x11 optional xwayland_22.1.2-1ubuntu1.dsc
 ff8e94e68969ac96d05cbb1ec43d0044 36848 x11 optional xwayland_22.1.2-1ubuntu1.debian.tar.xz
 3980c08be792f656cf14dc4e8ac389ef 10114 x11 optional xwayland_22.1.2-1ubuntu1_source.buildinfo
Original-Maintainer: Debian X Strike Force <debian-x at lists.debian.org>

More information about the kinetic-changes mailing list