ΠΠΏΠΈΡΠ°Π½ΠΈΠ΅
Security update for xorg-x11-server
This update for xorg-x11-server fixes the following issues:
- CVE-2023-6377: Fixed out-of-bounds memory write in XKB button actions (bsc#1217765).
Π‘ΠΏΠΈΡΠΎΠΊ ΠΏΠ°ΠΊΠ΅ΡΠΎΠ²
Image SLES15-SP5-SAPCAL-Azure
xorg-x11-server-21.1.4-150500.7.13.1
xorg-x11-server-Xvfb-21.1.4-150500.7.13.1
Image SLES15-SP5-SAPCAL-EC2
xorg-x11-server-21.1.4-150500.7.13.1
xorg-x11-server-Xvfb-21.1.4-150500.7.13.1
Image SLES15-SP5-SAPCAL-GCE
xorg-x11-server-21.1.4-150500.7.13.1
xorg-x11-server-Xvfb-21.1.4-150500.7.13.1
SUSE Linux Enterprise Module for Basesystem 15 SP5
xorg-x11-server-21.1.4-150500.7.13.1
xorg-x11-server-Xvfb-21.1.4-150500.7.13.1
xorg-x11-server-extra-21.1.4-150500.7.13.1
SUSE Linux Enterprise Module for Development Tools 15 SP5
xorg-x11-server-sdk-21.1.4-150500.7.13.1
openSUSE Leap 15.5
xorg-x11-server-21.1.4-150500.7.13.1
xorg-x11-server-Xvfb-21.1.4-150500.7.13.1
xorg-x11-server-extra-21.1.4-150500.7.13.1
xorg-x11-server-sdk-21.1.4-150500.7.13.1
xorg-x11-server-source-21.1.4-150500.7.13.1
Π‘ΡΡΠ»ΠΊΠΈ
- Link for SUSE-SU-2023:4925-1
- E-Mail link for SUSE-SU-2023:4925-1
- SUSE Security Ratings
- SUSE Bug 1217765
- SUSE CVE CVE-2023-6377 page
ΠΠΏΠΈΡΠ°Π½ΠΈΠ΅
A flaw was found in xorg-server. Querying or changing XKB button actions such as moving from a touchpad to a mouse can result in out-of-bounds memory reads and writes. This may allow local privilege escalation or possible remote code execution in cases where X11 forwarding is involved.
ΠΠ°ΡΡΠΎΠ½ΡΡΡΠ΅ ΠΏΡΠΎΠ΄ΡΠΊΡΡ
Image SLES15-SP5-SAPCAL-Azure:xorg-x11-server-21.1.4-150500.7.13.1
Image SLES15-SP5-SAPCAL-Azure:xorg-x11-server-Xvfb-21.1.4-150500.7.13.1
Image SLES15-SP5-SAPCAL-EC2:xorg-x11-server-21.1.4-150500.7.13.1
Image SLES15-SP5-SAPCAL-EC2:xorg-x11-server-Xvfb-21.1.4-150500.7.13.1
Π‘ΡΡΠ»ΠΊΠΈ
- CVE-2023-6377
- SUSE Bug 1217765
- SUSE Bug 1221590