-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Thu, 04 Apr 2024 11:59:35 +0200 Source: xorg-server Binary: xnest xnest-dbgsym xserver-xephyr xserver-xephyr-dbgsym xserver-xorg-core xserver-xorg-core-dbgsym xserver-xorg-core-udeb xserver-xorg-dev xserver-xorg-legacy xserver-xorg-legacy-dbgsym xvfb xvfb-dbgsym Architecture: i386 Version: 2:21.1.7-3+deb12u6 Distribution: bookworm-security Urgency: high Maintainer: amd64 / i386 Build Daemon (x86-ubc-01) Changed-By: Julien Cristau Description: xnest - Nested X server xserver-xephyr - nested X server xserver-xorg-core - Xorg X server - core server xserver-xorg-core-udeb - Xorg X server - core server (udeb) xserver-xorg-dev - Xorg X server - development files xserver-xorg-legacy - setuid root Xorg server wrapper xvfb - Virtual Framebuffer 'fake' X server Changes: xorg-server (2:21.1.7-3+deb12u6) bookworm-security; urgency=high . * CVE-2024-31080: Heap buffer overread/data leakage in ProcXIGetSelectedEvents * CVE-2024-31081: Heap buffer overread/data leakage in ProcXIPassiveGrabDevice * CVE-2024-31082: Heap buffer overread/data leakage in ProcAppleDRICreatePixmap * CVE-2024-31083: User-after-free in ProcRenderAddGlyphs Checksums-Sha1: 5b68c892c77da6a9bc6974f792fccd5f6821b18a 2439148 xnest-dbgsym_21.1.7-3+deb12u6_i386.deb b6c72e6d3a0bc629a4042d455d0383280444311d 3059028 xnest_21.1.7-3+deb12u6_i386.deb ea18498a46b443be60fd1141931a4247ee2933c2 14601 xorg-server_21.1.7-3+deb12u6_i386-buildd.buildinfo 2657a31a62d60d9f109a15bb9902093ce31eebbd 3575652 xserver-xephyr-dbgsym_21.1.7-3+deb12u6_i386.deb 9c32930bbaa92cd9fbd4d0faf2ed6c5553485d84 3350712 xserver-xephyr_21.1.7-3+deb12u6_i386.deb 9e9e845f073eac9e607bd4bd768d64c16cbfb53e 5300608 xserver-xorg-core-dbgsym_21.1.7-3+deb12u6_i386.deb 10d164c46d33292ca518222f199d5fb995557154 1012864 xserver-xorg-core-udeb_21.1.7-3+deb12u6_i386.udeb f099960d9732778cf02b1eb3b7dc6c88381040a4 3784116 xserver-xorg-core_21.1.7-3+deb12u6_i386.deb 799b3cae1a3319cccd5d7e7e338c13377cf94901 2554088 xserver-xorg-dev_21.1.7-3+deb12u6_i386.deb 67aa36a598a042d3fdbb3f1f1753e0570d3016d4 8612 xserver-xorg-legacy-dbgsym_21.1.7-3+deb12u6_i386.deb fcc21d4f699434fa869f5474462709ae0284ab01 2388068 xserver-xorg-legacy_21.1.7-3+deb12u6_i386.deb e7f821f4b26c05254ac29556b806bd81070ec3c7 2961524 xvfb-dbgsym_21.1.7-3+deb12u6_i386.deb c58b43e43d0b52fac43ab203ce066fafb5e32eac 3204120 xvfb_21.1.7-3+deb12u6_i386.deb Checksums-Sha256: c4d03b5d4b72e97138d11bdec52e17de226d9715279d5c5a853f82d545e4622b 2439148 xnest-dbgsym_21.1.7-3+deb12u6_i386.deb b403129fd5ad62e5d6747d7e92acbbc402b02352ef8cac298b61a41c91011a64 3059028 xnest_21.1.7-3+deb12u6_i386.deb abb92f7d66e5c5a8c9c0a6d3e8893bb21e7e13fbce3c045a4cf6fc1dc4aac8e3 14601 xorg-server_21.1.7-3+deb12u6_i386-buildd.buildinfo 7dcde5364733275fa1cba05390f9c0caede10a6e4e2e937beae8e0305bcc8125 3575652 xserver-xephyr-dbgsym_21.1.7-3+deb12u6_i386.deb 98ea35d6ffc4d7a2755f1141e5e148bced2b097c6eba807e7e423567d39f58e3 3350712 xserver-xephyr_21.1.7-3+deb12u6_i386.deb 47ec79100b872fd8b5fd995f1decd98ea98a39527d71e101d962503aa551405a 5300608 xserver-xorg-core-dbgsym_21.1.7-3+deb12u6_i386.deb 189b5ae66144e149a1a0b57ba545604fe0d48c8f76f2faaee4b0314bad306e68 1012864 xserver-xorg-core-udeb_21.1.7-3+deb12u6_i386.udeb c7c16e38129f371c2c409d0b53e96e66af78a8eee23ecfe40ee9ed820e4423af 3784116 xserver-xorg-core_21.1.7-3+deb12u6_i386.deb 2a28df136e884346ae5289c9ff6ce00c43c43ba015a55ae172aafcb55d7e715e 2554088 xserver-xorg-dev_21.1.7-3+deb12u6_i386.deb 547af5083703490845bda8a7721be1196e7012bd8cfd87da794d159ecdf52e83 8612 xserver-xorg-legacy-dbgsym_21.1.7-3+deb12u6_i386.deb 899fed39190337978649ab14589e3e822c16dc9b916d448b2410a28de2acddd0 2388068 xserver-xorg-legacy_21.1.7-3+deb12u6_i386.deb 6fe8a8c58fdce282ed63c4e00d820511cec9bf953ddbca9ddbdcb3564a335753 2961524 xvfb-dbgsym_21.1.7-3+deb12u6_i386.deb 19e7182204ddaf43aa251ebf62309d7e0085a55280b2bf37a6d928e470f0722d 3204120 xvfb_21.1.7-3+deb12u6_i386.deb Files: b799c18487869892cc4633a1c35f12c6 2439148 debug optional xnest-dbgsym_21.1.7-3+deb12u6_i386.deb 4f437c1227d4fff6ad8109014a529860 3059028 x11 optional xnest_21.1.7-3+deb12u6_i386.deb be0f0b0204dad0aa5d3bb8ead84c92c4 14601 x11 optional xorg-server_21.1.7-3+deb12u6_i386-buildd.buildinfo e391af70e5293ca76b694c323fab89d0 3575652 debug optional xserver-xephyr-dbgsym_21.1.7-3+deb12u6_i386.deb bb427f26e318199664d0a75f0be1d97a 3350712 x11 optional xserver-xephyr_21.1.7-3+deb12u6_i386.deb feed6a409ed51ef2095a5b7f1efa9121 5300608 debug optional xserver-xorg-core-dbgsym_21.1.7-3+deb12u6_i386.deb 6d7ffed4078fbfbbacb5e26fabfe65cd 1012864 debian-installer optional xserver-xorg-core-udeb_21.1.7-3+deb12u6_i386.udeb 8665ba3d40de35c64b0167522c138e55 3784116 x11 optional xserver-xorg-core_21.1.7-3+deb12u6_i386.deb 363e4a8c069ca91ca4c1593564245c6c 2554088 x11 optional xserver-xorg-dev_21.1.7-3+deb12u6_i386.deb 0f3334106633241f988ea341702e1a24 8612 debug optional xserver-xorg-legacy-dbgsym_21.1.7-3+deb12u6_i386.deb e183a9de6ae1eef5f51f1cf9159f6301 2388068 x11 optional xserver-xorg-legacy_21.1.7-3+deb12u6_i386.deb 790bcc26069add24c505eb9f985bb20a 2961524 debug optional xvfb-dbgsym_21.1.7-3+deb12u6_i386.deb c3c7b9919d359dd245b184e9da9f3fa0 3204120 x11 optional xvfb_21.1.7-3+deb12u6_i386.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE4Unr4QHS5Yi4rr9Q3KGKEAtjIVgFAmYOg+kACgkQ3KGKEAtj IVgr7g//Y88ovqjkCfIQmAaFpBf5L8W71OTPf1OH5Iey38e10V1gMwwzco6mWhX+ wGl1ES4yZpdbN5DVqJdJGcLY7PYinQkmbEEblr2N9IWYo958G1mcOSaYDm+06nVR NA41oYHLht32NEPmNh34r6sdQ1iiNZyF3oHOaw//nzYEtJj/E7PN60BckohPdcpF 9IH54tRdqYrG3rEVareA3E/ULH8P1Sj7c+cEzWvuhwZyC2VPKavmzV7MAQDwxMWY UBd+rSf3Wgp+Qh/6YOXcg4KPDh/45bLPk95cm9U8xD44GFsgKa6JI1/4V/eG0J6W XNf+UgiSlrc0qOy8cqNvXOhUi27qwHhDykMkA7VO16ohURD1M/yroHeYJcqZxHsA En6YbLTYzCd7kNIUZPwWx2+Qwvio6umLvcq0ThGzEF+OSMMj2U6CD+BVCFrWutR9 e/cwwfvPXRr+aoum53jl+gt/IUAzCsIWfw3ADehf+n8GaLoQIz2iZ7dH4Llj6nY5 auGlZThVqtsZxMwjDYU3Dgf7eQzFIRW7vATLDs+dUm+YfF8HovMTa1mGcFvVQT0u A+gyYRErl6x/rgYrF2U0QFEO4QhjE7I03jCyASuWhnqRUvPGeOQhCfpF5374ozmf iEOiIZVHuAHQsXtCVdoSPKvhDIF458JaXapCTs35S1Iv9YS2R+k= =+P0c -----END PGP SIGNATURE-----