UbuntuUpdates.org

Package "xwayland"

Name: xwayland

Description:

X server for running X clients under Wayland

Latest version: 2:22.1.1-1ubuntu0.3
Release: jammy (22.04)
Level: updates
Repository: main
Homepage: https://www.x.org/

Links


Download "xwayland"


Other versions of "xwayland" in Jammy

Repository Area Version
base main 2:22.1.1-1
security main 2:22.1.1-1ubuntu0.3

Changelog

Version: 2:22.1.1-1ubuntu0.3 2022-11-23 21:07:28 UTC

  xwayland (2:22.1.1-1ubuntu0.3) jammy-security; urgency=medium

  * SECURITY UPDATE: GetCountedString Buffer Overflow
    - debian/patches/CVE-2022-3550.patch: add a check for client->req_len
      size for _GetCountedString in xkb/xkb.c.
    - CVE-2022-3550
  * SECURITY UPDATE: ProcXkbGetKbdByName Memory Leak
    - debian/patches/CVE-2022-3551.patch: add calls to free allocated
      memory if the execution reaches failures in ProcXkbGetKbdByName
      in xkb/xkb.c.
    - CVE-2022-3551

 -- Rodrigo Figueiredo Zaiden <email address hidden> Tue, 22 Nov 2022 16:24:55 -0300

Source diff to previous version
CVE-2022-3550 A vulnerability classified as critical was found in X.org Server. Affected by this vulnerability is the function _GetCountedString of the file xkb/xk
CVE-2022-3551 A vulnerability, which was classified as problematic, has been found in X.org Server. Affected by this issue is the function ProcXkbGetKbdByName of t

Version: 2:22.1.1-1ubuntu0.2 2022-09-22 11:07:27 UTC

  xwayland (2:22.1.1-1ubuntu0.2) jammy; urgency=medium

  * Add xwayland-Detect-gbm_bo_get_fd_for_plane-at-runtime.patch to
    fix startup failures on Xilinx (LP: #1987628)

 -- Daniel van Vugt <email address hidden> Tue, 30 Aug 2022 09:54:16 +0000

Source diff to previous version
1987628 Xwayland fails to start on Xilinx: symbol lookup error: /usr/bin/Xwayland: undefined symbol: gbm_bo_get_fd_for_plane

Version: 2:22.1.1-1ubuntu0.1 2022-07-12 16:06:29 UTC

  xwayland (2:22.1.1-1ubuntu0.1) jammy-security; urgency=medium

  * SECURITY UPDATE: ProcXkbSetGeometry Out-Of-Bounds Access
    - debian/patches/CVE-2022-2319-pre1.patch: switch to array index loops
      to moving pointers in xkb/xkb.c.
    - debian/patches/CVE-2022-2319.patch: add request length validation for
      XkbSetGeometry in xkb/xkb.c.
    - CVE-2022-2319
  * SECURITY UPDATE: ProcXkbSetDeviceInfo Out-Of-Bounds Access
    - debian/patches/CVE-2022-2320.patch: swap XkbSetDeviceInfo and
      XkbSetDeviceInfoCheck in xkb/xkb.c.
    - CVE-2022-2320

 -- Marc Deslauriers <email address hidden> Wed, 06 Jul 2022 10:36:22 -0400

CVE-2022-2319 ZDI-CAN-16062: X.Org Server ProcXkbSetGeometry Out-Of-Bounds Access
CVE-2022-2320 ZDI-CAN-16070: X.Org Server ProcXkbSetDeviceInfo Out-Of-Bounds Access



About   -   Send Feedback to @ubuntu_updates