[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 4072-1] xorg-server security update

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian LTS Advisory DLA-4072-1                debian-lts@lists.debian.org
https://www.debian.org/lts/security/                    Thorsten Alteholz
March 01, 2025                                https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package        : xorg-server
Version        : 2:1.20.11-1+deb11u15
CVE ID         : CVE-2025-26594 CVE-2025-26595 CVE-2025-26596
                 CVE-2025-26597 CVE-2025-26598 CVE-2025-26599
                 CVE-2025-26600 CVE-2025-26601


Jan-Niklas Sohn discovered several vulnerabilities in the Xorg X server,
which may result in privilege escalation if the X server is running
privileged.


For Debian 11 bullseye, these problems have been fixed in version
2:1.20.11-1+deb11u15.

We recommend that you upgrade your xorg-server packages.

For the detailed security status of xorg-server please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/xorg-server

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

-----BEGIN PGP SIGNATURE-----
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=+gPO
-----END PGP SIGNATURE-----
Reply to: