An update for xorg-x11-server is now available for openEuler-24.03-LTS,openEuler-24.03-LTS-SP1,openEuler-24.03-LTS-SP3,openEuler-20.03-LTS-SP4,openEuler-22.03-LTS-SP4 Security Advisory openeuler-security@openeuler.org openEuler security committee openEuler-SA-2026-2139 Final 1.0 1.0 2026-05-03 Initial 2026-05-03 2026-05-03 openEuler SA Tool V1.0 2026-05-03 xorg-x11-server security update An update for xorg-x11-server is now available for openEuler-24.03-LTS,openEuler-24.03-LTS-SP1,openEuler-24.03-LTS-SP3,openEuler-20.03-LTS-SP4,openEuler-22.03-LTS-SP4 X.Org X11 X server Security Fix(es): A flaw was found in the X.Org X server. This integer underflow vulnerability, specifically in the XKB compatibility map handling, allows an attacker with local or remote X11 server access to trigger a buffer read overrun. This can lead to memory-safety violations and potentially a denial of service (DoS) or other severe impacts.(CVE-2026-33999) (CVE-2026-34000) A flaw was found in the X.Org X server. This use-after-free vulnerability occurs in the XSYNC fence triggering logic, specifically within the miSyncTriggerFence() function. An attacker with access to the X11 server can exploit this without user interaction, leading to a server crash and potentially enabling memory corruption. This could result in a denial of service or further compromise of the system.(CVE-2026-34001) (CVE-2026-34002) A flaw was found in the X.Org X server's XKB key types request validation. A local attacker could send a specially crafted request to the X server, leading to an out-of-bounds memory access vulnerability. This could result in the disclosure of sensitive information or cause the server to crash, leading to a Denial of Service (DoS). In certain configurations, higher impact outcomes may be possible.(CVE-2026-34003) An update for xorg-x11-server is now available for openEuler-24.03-LTS,openEuler-24.03-LTS-SP1,openEuler-24.03-LTS-SP3,openEuler-20.03-LTS-SP4,openEuler-22.03-LTS-SP4. openEuler Security has rated this update as having a security impact of high. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section. High xorg-x11-server https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2139 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-33999 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-34000 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-34001 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-34002 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-34003 https://nvd.nist.gov/vuln/detail/CVE-2026-33999 https://nvd.nist.gov/vuln/detail/CVE-2026-34000 https://nvd.nist.gov/vuln/detail/CVE-2026-34001 https://nvd.nist.gov/vuln/detail/CVE-2026-34002 https://nvd.nist.gov/vuln/detail/CVE-2026-34003 openEuler-24.03-LTS openEuler-24.03-LTS-SP1 openEuler-24.03-LTS-SP3 openEuler-20.03-LTS-SP4 openEuler-22.03-LTS-SP4 xorg-x11-server-1.20.11-44.oe2403.aarch64.rpm xorg-x11-server-Xdmx-1.20.11-44.oe2403.aarch64.rpm xorg-x11-server-Xephyr-1.20.11-44.oe2403.aarch64.rpm xorg-x11-server-Xnest-1.20.11-44.oe2403.aarch64.rpm xorg-x11-server-Xvfb-1.20.11-44.oe2403.aarch64.rpm xorg-x11-server-common-1.20.11-44.oe2403.aarch64.rpm xorg-x11-server-debuginfo-1.20.11-44.oe2403.aarch64.rpm xorg-x11-server-debugsource-1.20.11-44.oe2403.aarch64.rpm xorg-x11-server-devel-1.20.11-44.oe2403.aarch64.rpm xorg-x11-server-1.20.11-44.oe2403sp1.aarch64.rpm xorg-x11-server-Xdmx-1.20.11-44.oe2403sp1.aarch64.rpm xorg-x11-server-Xephyr-1.20.11-44.oe2403sp1.aarch64.rpm xorg-x11-server-Xnest-1.20.11-44.oe2403sp1.aarch64.rpm xorg-x11-server-Xvfb-1.20.11-44.oe2403sp1.aarch64.rpm xorg-x11-server-common-1.20.11-44.oe2403sp1.aarch64.rpm xorg-x11-server-debuginfo-1.20.11-44.oe2403sp1.aarch64.rpm xorg-x11-server-debugsource-1.20.11-44.oe2403sp1.aarch64.rpm xorg-x11-server-devel-1.20.11-44.oe2403sp1.aarch64.rpm xorg-x11-server-1.20.11-44.oe2403sp3.aarch64.rpm xorg-x11-server-Xdmx-1.20.11-44.oe2403sp3.aarch64.rpm xorg-x11-server-Xephyr-1.20.11-44.oe2403sp3.aarch64.rpm xorg-x11-server-Xnest-1.20.11-44.oe2403sp3.aarch64.rpm xorg-x11-server-Xvfb-1.20.11-44.oe2403sp3.aarch64.rpm xorg-x11-server-common-1.20.11-44.oe2403sp3.aarch64.rpm xorg-x11-server-debuginfo-1.20.11-44.oe2403sp3.aarch64.rpm xorg-x11-server-debugsource-1.20.11-44.oe2403sp3.aarch64.rpm xorg-x11-server-devel-1.20.11-44.oe2403sp3.aarch64.rpm xorg-x11-server-1.20.8-37.oe2003sp4.aarch64.rpm xorg-x11-server-Xephyr-1.20.8-37.oe2003sp4.aarch64.rpm xorg-x11-server-debuginfo-1.20.8-37.oe2003sp4.aarch64.rpm xorg-x11-server-debugsource-1.20.8-37.oe2003sp4.aarch64.rpm xorg-x11-server-devel-1.20.8-37.oe2003sp4.aarch64.rpm xorg-x11-server-1.20.11-43.oe2203sp4.aarch64.rpm xorg-x11-server-Xdmx-1.20.11-43.oe2203sp4.aarch64.rpm xorg-x11-server-Xephyr-1.20.11-43.oe2203sp4.aarch64.rpm xorg-x11-server-Xnest-1.20.11-43.oe2203sp4.aarch64.rpm xorg-x11-server-Xvfb-1.20.11-43.oe2203sp4.aarch64.rpm xorg-x11-server-common-1.20.11-43.oe2203sp4.aarch64.rpm xorg-x11-server-debuginfo-1.20.11-43.oe2203sp4.aarch64.rpm xorg-x11-server-debugsource-1.20.11-43.oe2203sp4.aarch64.rpm xorg-x11-server-devel-1.20.11-43.oe2203sp4.aarch64.rpm xorg-x11-server-1.20.11-44.oe2403.src.rpm xorg-x11-server-1.20.11-44.oe2403sp1.src.rpm xorg-x11-server-1.20.11-44.oe2403sp3.src.rpm xorg-x11-server-1.20.8-37.oe2003sp4.src.rpm xorg-x11-server-1.20.11-43.oe2203sp4.src.rpm xorg-x11-server-1.20.11-44.oe2403.x86_64.rpm xorg-x11-server-Xdmx-1.20.11-44.oe2403.x86_64.rpm xorg-x11-server-Xephyr-1.20.11-44.oe2403.x86_64.rpm xorg-x11-server-Xnest-1.20.11-44.oe2403.x86_64.rpm xorg-x11-server-Xvfb-1.20.11-44.oe2403.x86_64.rpm xorg-x11-server-common-1.20.11-44.oe2403.x86_64.rpm xorg-x11-server-debuginfo-1.20.11-44.oe2403.x86_64.rpm xorg-x11-server-debugsource-1.20.11-44.oe2403.x86_64.rpm xorg-x11-server-devel-1.20.11-44.oe2403.x86_64.rpm xorg-x11-server-1.20.11-44.oe2403sp1.x86_64.rpm xorg-x11-server-Xdmx-1.20.11-44.oe2403sp1.x86_64.rpm xorg-x11-server-Xephyr-1.20.11-44.oe2403sp1.x86_64.rpm xorg-x11-server-Xnest-1.20.11-44.oe2403sp1.x86_64.rpm xorg-x11-server-Xvfb-1.20.11-44.oe2403sp1.x86_64.rpm xorg-x11-server-common-1.20.11-44.oe2403sp1.x86_64.rpm xorg-x11-server-debuginfo-1.20.11-44.oe2403sp1.x86_64.rpm xorg-x11-server-debugsource-1.20.11-44.oe2403sp1.x86_64.rpm xorg-x11-server-devel-1.20.11-44.oe2403sp1.x86_64.rpm xorg-x11-server-1.20.11-44.oe2403sp3.x86_64.rpm xorg-x11-server-Xdmx-1.20.11-44.oe2403sp3.x86_64.rpm xorg-x11-server-Xephyr-1.20.11-44.oe2403sp3.x86_64.rpm xorg-x11-server-Xnest-1.20.11-44.oe2403sp3.x86_64.rpm xorg-x11-server-Xvfb-1.20.11-44.oe2403sp3.x86_64.rpm xorg-x11-server-common-1.20.11-44.oe2403sp3.x86_64.rpm xorg-x11-server-debuginfo-1.20.11-44.oe2403sp3.x86_64.rpm xorg-x11-server-debugsource-1.20.11-44.oe2403sp3.x86_64.rpm xorg-x11-server-devel-1.20.11-44.oe2403sp3.x86_64.rpm xorg-x11-server-1.20.8-37.oe2003sp4.x86_64.rpm xorg-x11-server-Xephyr-1.20.8-37.oe2003sp4.x86_64.rpm xorg-x11-server-debuginfo-1.20.8-37.oe2003sp4.x86_64.rpm xorg-x11-server-debugsource-1.20.8-37.oe2003sp4.x86_64.rpm xorg-x11-server-devel-1.20.8-37.oe2003sp4.x86_64.rpm xorg-x11-server-1.20.11-43.oe2203sp4.x86_64.rpm xorg-x11-server-Xdmx-1.20.11-43.oe2203sp4.x86_64.rpm xorg-x11-server-Xephyr-1.20.11-43.oe2203sp4.x86_64.rpm xorg-x11-server-Xnest-1.20.11-43.oe2203sp4.x86_64.rpm xorg-x11-server-Xvfb-1.20.11-43.oe2203sp4.x86_64.rpm xorg-x11-server-common-1.20.11-43.oe2203sp4.x86_64.rpm xorg-x11-server-debuginfo-1.20.11-43.oe2203sp4.x86_64.rpm xorg-x11-server-debugsource-1.20.11-43.oe2203sp4.x86_64.rpm xorg-x11-server-devel-1.20.11-43.oe2203sp4.x86_64.rpm xorg-x11-server-help-1.20.11-44.oe2403.noarch.rpm xorg-x11-server-source-1.20.11-44.oe2403.noarch.rpm xorg-x11-server-help-1.20.11-44.oe2403sp1.noarch.rpm xorg-x11-server-source-1.20.11-44.oe2403sp1.noarch.rpm xorg-x11-server-help-1.20.11-44.oe2403sp3.noarch.rpm xorg-x11-server-source-1.20.11-44.oe2403sp3.noarch.rpm xorg-x11-server-help-1.20.8-37.oe2003sp4.noarch.rpm xorg-x11-server-help-1.20.11-43.oe2203sp4.noarch.rpm xorg-x11-server-source-1.20.11-43.oe2203sp4.noarch.rpm A flaw was found in the X.Org X server. This integer underflow vulnerability, specifically in the XKB compatibility map handling, allows an attacker with local or remote X11 server access to trigger a buffer read overrun. This can lead to memory-safety violations and potentially a denial of service (DoS) or other severe impacts. 2026-05-03 CVE-2026-33999 openEuler-24.03-LTS openEuler-24.03-LTS-SP1 openEuler-24.03-LTS-SP3 openEuler-20.03-LTS-SP4 openEuler-22.03-LTS-SP4 High 7.8 AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H xorg-x11-server security update 2026-05-03 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2139 2026-05-03 CVE-2026-34000 openEuler-24.03-LTS openEuler-24.03-LTS-SP1 openEuler-24.03-LTS-SP3 openEuler-20.03-LTS-SP4 openEuler-22.03-LTS-SP4 Medium 6.1 AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H xorg-x11-server security update 2026-05-03 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2139 A flaw was found in the X.Org X server. This use-after-free vulnerability occurs in the XSYNC fence triggering logic, specifically within the miSyncTriggerFence() function. An attacker with access to the X11 server can exploit this without user interaction, leading to a server crash and potentially enabling memory corruption. This could result in a denial of service or further compromise of the system. 2026-05-03 CVE-2026-34001 openEuler-24.03-LTS openEuler-24.03-LTS-SP1 openEuler-24.03-LTS-SP3 openEuler-20.03-LTS-SP4 openEuler-22.03-LTS-SP4 High 7.8 AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H xorg-x11-server security update 2026-05-03 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2139 2026-05-03 CVE-2026-34002 openEuler-24.03-LTS openEuler-24.03-LTS-SP1 openEuler-24.03-LTS-SP3 openEuler-20.03-LTS-SP4 openEuler-22.03-LTS-SP4 Medium 6.1 AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H xorg-x11-server security update 2026-05-03 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2139 A flaw was found in the X.Org X server's XKB key types request validation. A local attacker could send a specially crafted request to the X server, leading to an out-of-bounds memory access vulnerability. This could result in the disclosure of sensitive information or cause the server to crash, leading to a Denial of Service (DoS). In certain configurations, higher impact outcomes may be possible. 2026-05-03 CVE-2026-34003 openEuler-24.03-LTS openEuler-24.03-LTS-SP1 openEuler-24.03-LTS-SP3 openEuler-20.03-LTS-SP4 openEuler-22.03-LTS-SP4 High 7.8 AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H xorg-x11-server security update 2026-05-03 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-2139