X.Org X Server, XWayland: Multiple Vulnerabilities

X.Org X Server, XWayland: Multiple Vulnerabilities Multiple vulnerabilities have been discovered in the Xorg Server and XWayland, the worst of which can result in privilege escalation or remote code execution. xorg-server,xwayland 2024-01-31 2024-01-31 916254 919803 922395 remote 21.1.11 21.1.11 23.2.4 23.2.4

The X Window System is a graphical windowing system based on a client/server model.

Multiple vulnerabilities have been discovered in X.Org X Server and XWayland. Please review the CVE identifiers referenced below for details.

The X server can be crashed by a malicious client, or potentially be compromised for remote code execution in environments with X11 forwarding.

Users can ensure no untrusted clients can access the running X implementation.

All X.Org X Server users should upgrade to the latest version:


          # emerge --sync
          # emerge --ask --oneshot --verbose ">=x11-base/xorg-server-21.1.11"

All XWayland users should upgrade to the latest version:


          # emerge --sync
          # emerge --ask --oneshot --verbose ">=x11-base/xwayland-23.2.4"

CVE-2023-5367 CVE-2023-5380 CVE-2023-6377 CVE-2023-6478 CVE-2023-6816 CVE-2024-0229 CVE-2024-0408 CVE-2024-0409 CVE-2024-21885 CVE-2024-21886 ajak graaff