-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Sun, 23 Feb 2025 10:03:02 +0100
Source: xorg-server
Architecture: source
Version: 2:1.20.11-1+deb11u15
Distribution: bullseye-security
Urgency: high
Maintainer: Debian X Strike Force <debian-x@lists.debian.org>
Changed-By: Thorsten Alteholz <debian@alteholz.de>
Changes:
xorg-server (2:1.20.11-1+deb11u15) bullseye-security; urgency=high
.
* Non-maintainer upload by the LTS Team.
* CVE-2025-26594
dix: keep a ref to the rootCursor
Cursor: Refuse to free the root cursor
* CVE-2025-26595
xkb: Fix buffer overflow in XkbVModMaskText()
* CVE-2025-26596
xkb: Fix computation of XkbSizeKeySyms
* CVE-2025-26597
xkb: Fix buffer overflow in XkbChangeTypesOfKey()
* CVE-2025-26598
Xi: Fix barrier device search
* CVE-2025-26599
composite: Handle failure to redirect in compRedirectWindow()
composite: initialize border clip even when pixmap alloc fails
* CVE-2025-26600
dix: Dequeue pending events on frozen device on removal
* CVE-2025-26601
sync: Do not let sync objects uninitialized
sync: Check values before applying changes
sync: Do not fail SyncAddTriggerToSyncObject()
sync: Apply changes last in SyncChangeAlarmAttributes()
Checksums-Sha1:
104f39d277591f74823456352e7d83446ec477b4 4661 xorg-server_1.20.11-1+deb11u15.dsc
f7dc0c615f39e297cd01c670aacd0fb28227d4a3 199100 xorg-server_1.20.11-1+deb11u15.diff.gz
67007cedd84b5ada8c496daed213efcd05146cbb 18020 xorg-server_1.20.11-1+deb11u15_amd64.buildinfo
Checksums-Sha256:
3202a51a121358de1a9ef529def2b5e8e6bfef422e562f1a72a45b4740109932 4661 xorg-server_1.20.11-1+deb11u15.dsc
59cf0dcb1d89b389e95bceddd4680d15840810581d2af1a4255d3ba61539e7b6 199100 xorg-server_1.20.11-1+deb11u15.diff.gz
12ea45210f0d175d6ba0a719512adfc2576277635504055eca553716d8fba368 18020 xorg-server_1.20.11-1+deb11u15_amd64.buildinfo
Files:
dae708d58df2c911c76bf4c2bfc8e648 4661 x11 optional xorg-server_1.20.11-1+deb11u15.dsc
881a2384ab28c0af895f3f127315790e 199100 x11 optional xorg-server_1.20.11-1+deb11u15.diff.gz
e8a6aa9991c32e522bf26198990d85e4 18020 x11 optional xorg-server_1.20.11-1+deb11u15_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----
iQKnBAEBCgCRFiEEYgH7/9u94Hgi6ruWlvysDTh7WEcFAmfCBdRfFIAAAAAALgAo
aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDYy
MDFGQkZGREJCREUwNzgyMkVBQkI5Njk2RkNBQzBEMzg3QjU4NDcTHGRlYmlhbkBh
bHRlaG9sei5kZQAKCRCW/KwNOHtYRy9FD/9tZDkq96YtBSi2hgxBG8yb9JHsSJ8E
5Yei3wJGNzry84MDbRwBYnqimsdTZAQTuw4vQYdJSUZh8UjlkUQ9hOnhMf2I7LkI
/1g2ggAq5NgqLkklCoC+16clUKNGT/5+1TrAZUTsEcUjnomNhj6h7DwcfB19TCzf
Krk7If7HndmTMm71vnWjs7bajy7z08D4qVa+oUeHh7oSTVt/FS8ifxipSmRrGwTE
kZjUK9+TuYZa5THbh0IKe6KET89lbSih/1ejMUt8ys8bznITOpms8vNFZUFHyku3
o7HdfLmakCgOGfqSSXPmh9Q5m7G592g5KpdNOURRzqcezMGw0v2txHOq2bgCCTor
jtBLFCX3hT4Od6XBA2w3p6r6Kcsz7xAvF6tLD/apn3sjRd2+7GOEoYeB2AKHe7A8
AL4A3O7P99M2y5IrNl+AXRLv3blHiYrMjEnONrab+qrpbwJTMXv/BbKnd+TDVou+
AWfVzrTPyDKT9iaZFz2WeMEN6AhLcLb4fdz25YXffKOgrDrBLrb9SB+Nb9XMfklb
VZm8l/szQqtwjHgmYzz1z96S6DMbZ741HStATAvRd/1RbW961abI1PV2kskb6p2N
FKJ8KQ5C0E/iMSgnade3YArGDCoNst6e0GpM1hrmevrQzdDozwPpZxxS7j5WrGs1
QpAeoGX3lepRDg==
=u4FD
-----END PGP SIGNATURE-----
Attachment:
pgpy7PHX7ySdt.pgp
Description: PGP signature