Bug#1068470: xorg-server: double free in fix for CVE-2024-31083

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#1068470: xorg-server: double free in fix for CVE-2024-31083
From: Julien Cristau <jcristau@debian.org>
Date: Fri, 5 Apr 2024 20:14:38 +0200
Message-id: <[🔎] ZhA_jvlX0VeahFlV@jcristau-z4>
Reply-to: Julien Cristau <jcristau@debian.org>, 1068470@bugs.debian.org

Source: xorg-server
Version: 2:21.1.11-3
Severity: grave
Tags: security upstream patch
Justification: user security hole
X-Debbugs-Cc: jcristau@debian.org, Debian Security Team <team@security.debian.org>

The latest security fixes introduced a regression, apparently replacing
use-after-free with double-free in some circumstances:
https://gitlab.freedesktop.org/xorg/xserver/-/issues/1659
https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/1476

Cheers,
Julien

Reply to:

Follow-Ups:
- Bug#1068470: marked as done (xorg-server: double free in fix for CVE-2024-31083)
  - From: "Debian Bug Tracking System" <owner@bugs.debian.org>

Prev by Date: Bug#1068467: libgl1-mesa-dri: GPU hangs and resets while playing 3D games on Framework Laptop 13, AMD Ryzen 7640U
Next by Date: Processed: bug 1068470 is forwarded to https://gitlab.freedesktop.org/xorg/xserver/-/issues/1659
Previous by thread: Bug#1068467: libgl1-mesa-dri: GPU hangs and resets while playing 3D games on Framework Laptop 13, AMD Ryzen 7640U
Next by thread: Bug#1068470: marked as done (xorg-server: double free in fix for CVE-2024-31083)
Index(es):
- Date
- Thread