Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2023:4934-1

Опубликовано: 20 дек. 2023
Источник: suse-cvrf

Описание

Security update for xorg-x11-server

This update for xorg-x11-server fixes the following issues:

  • CVE-2023-6377: Fixed out-of-bounds memory write in XKB button actions (bsc#1217765).

Список пакетов

Image SLES15-SP3-SAPCAL-Azure
xorg-x11-server-1.20.3-150200.22.5.85.1
Image SLES15-SP3-SAPCAL-EC2-HVM
xorg-x11-server-1.20.3-150200.22.5.85.1
Image SLES15-SP3-SAPCAL-GCE
xorg-x11-server-1.20.3-150200.22.5.85.1
SUSE Enterprise Storage 7.1
xorg-x11-server-1.20.3-150200.22.5.85.1
xorg-x11-server-extra-1.20.3-150200.22.5.85.1
xorg-x11-server-sdk-1.20.3-150200.22.5.85.1
SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS
xorg-x11-server-1.20.3-150200.22.5.85.1
xorg-x11-server-extra-1.20.3-150200.22.5.85.1
xorg-x11-server-sdk-1.20.3-150200.22.5.85.1
SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS
xorg-x11-server-1.20.3-150200.22.5.85.1
xorg-x11-server-extra-1.20.3-150200.22.5.85.1
xorg-x11-server-sdk-1.20.3-150200.22.5.85.1
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS
xorg-x11-server-1.20.3-150200.22.5.85.1
xorg-x11-server-extra-1.20.3-150200.22.5.85.1
xorg-x11-server-sdk-1.20.3-150200.22.5.85.1
SUSE Linux Enterprise Server 15 SP2-LTSS
xorg-x11-server-1.20.3-150200.22.5.85.1
xorg-x11-server-extra-1.20.3-150200.22.5.85.1
xorg-x11-server-sdk-1.20.3-150200.22.5.85.1
SUSE Linux Enterprise Server 15 SP3-LTSS
xorg-x11-server-1.20.3-150200.22.5.85.1
xorg-x11-server-extra-1.20.3-150200.22.5.85.1
xorg-x11-server-sdk-1.20.3-150200.22.5.85.1
SUSE Linux Enterprise Server for SAP Applications 15 SP2
xorg-x11-server-1.20.3-150200.22.5.85.1
xorg-x11-server-extra-1.20.3-150200.22.5.85.1
xorg-x11-server-sdk-1.20.3-150200.22.5.85.1
SUSE Linux Enterprise Server for SAP Applications 15 SP3
xorg-x11-server-1.20.3-150200.22.5.85.1
xorg-x11-server-extra-1.20.3-150200.22.5.85.1
xorg-x11-server-sdk-1.20.3-150200.22.5.85.1
SUSE Linux Enterprise Workstation Extension 15 SP4
xorg-x11-server-wayland-1.20.3-150200.22.5.85.1
SUSE Linux Enterprise Workstation Extension 15 SP5
xorg-x11-server-wayland-1.20.3-150200.22.5.85.1
openSUSE Leap 15.4
xorg-x11-server-wayland-1.20.3-150200.22.5.85.1

Ссылки

Описание

A flaw was found in xorg-server. Querying or changing XKB button actions such as moving from a touchpad to a mouse can result in out-of-bounds memory reads and writes. This may allow local privilege escalation or possible remote code execution in cases where X11 forwarding is involved.

Затронутые продукты
Image SLES15-SP3-SAPCAL-Azure:xorg-x11-server-1.20.3-150200.22.5.85.1
Image SLES15-SP3-SAPCAL-EC2-HVM:xorg-x11-server-1.20.3-150200.22.5.85.1
Image SLES15-SP3-SAPCAL-GCE:xorg-x11-server-1.20.3-150200.22.5.85.1
SUSE Enterprise Storage 7.1:xorg-x11-server-1.20.3-150200.22.5.85.1
Ссылки