-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Wed, 19 Feb 2025 14:42:13 +0100 Source: xorg-server Binary: xnest xnest-dbgsym xserver-xephyr xserver-xephyr-dbgsym xserver-xorg-core xserver-xorg-core-dbgsym xserver-xorg-core-udeb xserver-xorg-dev xserver-xorg-legacy xserver-xorg-legacy-dbgsym xvfb xvfb-dbgsym Architecture: i386 Version: 2:21.1.7-3+deb12u9 Distribution: bookworm-security Urgency: high Maintainer: amd64 / i386 Build Daemon (x86-ubc-01) Changed-By: Salvatore Bonaccorso Description: xnest - Nested X server xserver-xephyr - nested X server xserver-xorg-core - Xorg X server - core server xserver-xorg-core-udeb - Xorg X server - core server (udeb) xserver-xorg-dev - Xorg X server - development files xserver-xorg-legacy - setuid root Xorg server wrapper xvfb - Virtual Framebuffer 'fake' X server Changes: xorg-server (2:21.1.7-3+deb12u9) bookworm-security; urgency=high . * Non-maintainer upload by the Security Team. * Cursor: Refuse to free the root cursor (CVE-2025-26594) * dix: keep a ref to the rootCursor (CVE-2025-26594) * xkb: Fix buffer overflow in XkbVModMaskText() (CVE-2025-26595) * xkb: Fix computation of XkbSizeKeySyms (CVE-2025-26596) * xkb: Fix buffer overflow in XkbChangeTypesOfKey() (CVE-2025-26597) * Xi: Fix barrier device search (CVE-2025-26598) * composite: Handle failure to redirect in compRedirectWindow() (CVE-2025-26599) * composite: initialize border clip even when pixmap alloc fails (CVE-2025-26599) * dix: Dequeue pending events on frozen device on removal (CVE-2025-26600) * sync: Do not let sync objects uninitialized (CVE-2025-26601) * sync: Check values before applying changes (CVE-2025-26601) * sync: Do not fail SyncAddTriggerToSyncObject() (CVE-2025-26601) * sync: Apply changes last in SyncChangeAlarmAttributes() (CVE-2025-26601) Checksums-Sha1: 20be012f783990e2bb5c523b71f8513162bad065 2442060 xnest-dbgsym_21.1.7-3+deb12u9_i386.deb 2f0088f164471a2dd301771d0d01b15600c6285e 3059524 xnest_21.1.7-3+deb12u9_i386.deb 325bc0b476c5daf59a73967ba6cbb213364798e7 14623 xorg-server_21.1.7-3+deb12u9_i386-buildd.buildinfo 7ed1e9fdcf72f768c91fcd6cf56fa1a929e93e62 3575916 xserver-xephyr-dbgsym_21.1.7-3+deb12u9_i386.deb 68087931a9105c699d9c50cec90e42890e5df73c 3350844 xserver-xephyr_21.1.7-3+deb12u9_i386.deb ec2d8e759dcce184b8fc62f8cdf8eabc3a842262 5302868 xserver-xorg-core-dbgsym_21.1.7-3+deb12u9_i386.deb 0c642ad27db20452ac58c70f30a459d54bb1508b 1012636 xserver-xorg-core-udeb_21.1.7-3+deb12u9_i386.udeb 3ef4ee6083b7dd7b9e4ed1fa175fa7c97c38bf6a 3784816 xserver-xorg-core_21.1.7-3+deb12u9_i386.deb bc3568a61c689dfaae725566cc70dc5da001db2c 2554504 xserver-xorg-dev_21.1.7-3+deb12u9_i386.deb f1514d4f7b1897cdf7939d3617f973b2ea6e2836 8600 xserver-xorg-legacy-dbgsym_21.1.7-3+deb12u9_i386.deb 7dbc14c398f43d7c96f98c89c088b55c2829695c 2388484 xserver-xorg-legacy_21.1.7-3+deb12u9_i386.deb 93a61913362eb785fb70206bbbdd73869f309e25 2963048 xvfb-dbgsym_21.1.7-3+deb12u9_i386.deb 2977269dd95f71e65f050caead71cf7aac758e18 3204756 xvfb_21.1.7-3+deb12u9_i386.deb Checksums-Sha256: 9e189886273c4fb3b49b376c44c02a2c827c2cd04e5c05bc3c545ec3ac5f86b5 2442060 xnest-dbgsym_21.1.7-3+deb12u9_i386.deb ccb6f0c9454b6def695923b194d291063d5d7164dda034e1bcdb9b72bfe64814 3059524 xnest_21.1.7-3+deb12u9_i386.deb de6607c82f4659e48c2e50394960e7309c92008a7cc14a4dd2ce38f58acfc939 14623 xorg-server_21.1.7-3+deb12u9_i386-buildd.buildinfo e82a3a44812ca2391ff3e585a27b0ba79515398839a532ff6f9d5af700b1be65 3575916 xserver-xephyr-dbgsym_21.1.7-3+deb12u9_i386.deb e0710900dd79c9644e0a9172ab504f165bb88c7c24631c3f92f4d21db875c8ea 3350844 xserver-xephyr_21.1.7-3+deb12u9_i386.deb ddfb15a75b52789f06117b4dce5f111ca4408d21d3a654d1cbc31c6cff0e2d8e 5302868 xserver-xorg-core-dbgsym_21.1.7-3+deb12u9_i386.deb b45224ea775d43d5f845cf05cde8d4f46f9d960cd110e0419e279c6de1d429cc 1012636 xserver-xorg-core-udeb_21.1.7-3+deb12u9_i386.udeb aa37725b92d54d003485d3651340248fc6c64c820c0f4ad3fad7972f7294aeab 3784816 xserver-xorg-core_21.1.7-3+deb12u9_i386.deb 6d338957b0f46609c00e9bd6e40478ee3ec034f933c42f444594190373bc4ea2 2554504 xserver-xorg-dev_21.1.7-3+deb12u9_i386.deb 063e0aa13816760c5b5b8a270d9813d7e995bf4af1bf013a6fb179f5553f6f6a 8600 xserver-xorg-legacy-dbgsym_21.1.7-3+deb12u9_i386.deb b8d4d85c410c882946fac82faf2e8d64bfb08e7d3253083796ca95f06fe1ffac 2388484 xserver-xorg-legacy_21.1.7-3+deb12u9_i386.deb ddb2018c7e22db6b62727837479fb8cbb41350bfecfe9e36c51d29387311bbfd 2963048 xvfb-dbgsym_21.1.7-3+deb12u9_i386.deb d76774e0d5ca1ea970113f7973a52d57f1f9545cf6e0d9ed6d66a76eb38d156a 3204756 xvfb_21.1.7-3+deb12u9_i386.deb Files: 4033e677c759df29134078cfbca8f819 2442060 debug optional xnest-dbgsym_21.1.7-3+deb12u9_i386.deb 1660926aea959e2dca142f7e949fd23a 3059524 x11 optional xnest_21.1.7-3+deb12u9_i386.deb c3580fd922183f1a042f3af395e0f0c4 14623 x11 optional xorg-server_21.1.7-3+deb12u9_i386-buildd.buildinfo df9405df8e3485a72170529b1136591c 3575916 debug optional xserver-xephyr-dbgsym_21.1.7-3+deb12u9_i386.deb b154ebdadf632875b8a5b268f270c092 3350844 x11 optional xserver-xephyr_21.1.7-3+deb12u9_i386.deb 4bf505ce14dc397d056f911f781d1ede 5302868 debug optional xserver-xorg-core-dbgsym_21.1.7-3+deb12u9_i386.deb 90bf520f402c5cc001e8740905d4d892 1012636 debian-installer optional xserver-xorg-core-udeb_21.1.7-3+deb12u9_i386.udeb d6c38798f2c71018bed1c7078d784615 3784816 x11 optional xserver-xorg-core_21.1.7-3+deb12u9_i386.deb 0b1e63f8825f4e539b7f2e22599184a2 2554504 x11 optional xserver-xorg-dev_21.1.7-3+deb12u9_i386.deb a79f11d087c85174c51cd47775e21abb 8600 debug optional xserver-xorg-legacy-dbgsym_21.1.7-3+deb12u9_i386.deb bce4f7df3cf0f09e14fa41f3cc7603c2 2388484 x11 optional xserver-xorg-legacy_21.1.7-3+deb12u9_i386.deb dae263761b9d955f2f7597ad1fe2a5a1 2963048 debug optional xvfb-dbgsym_21.1.7-3+deb12u9_i386.deb 67ee7cfb250137845d3e211c2ee7d6c6 3204756 x11 optional xvfb_21.1.7-3+deb12u9_i386.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE4Unr4QHS5Yi4rr9Q3KGKEAtjIVgFAme2LswACgkQ3KGKEAtj IVi+WQ//YMYvnewQIsmYw9vHo9G+eisrZH/hJuDCF3Z9a3mUB6GiHtK77wm/MWS9 LeuDLWrA9uP6QlSHOK70dpPyx4wiXsX9sU9HIQWKs9YSkNnbF9mDyq+ezF5wZZVX X/XrGB2fDChl4sEzJZv+d7G8W79TJlKcXdODW9w4DTplMHx9iAbAWDKk2l9NwbXi oWMrbk7CR5VIgVOJp8Ytqd3zOl2QgdauOPDWycCgEJUC+0MkTkeRr4fvQs55c5W6 uh/p3PbKcLJ5uoYphvYh22ez0p3wWRGUqK6rN8advHrsWKSaYBX9Cz3wsbOp8ily E34E+7v9ydVoSQfJwVBmP+xvzFh9pufNNhFFKJJDantrcFM2NdlTHVJFu+3+5buO BsDvGfioQe0Kf5HUZGQlmGqkmZTXZNsMqXYoLWiP1cXttM9njgCzrjAen8l7jT/h VZ8qYU2zREUix5UC/OnKBpzY0J687qOZ31AaJrZMZ76G48wundnhjGjEhqBvSX19 0IZLsSVLOjc7C66VAf5eLPVIzruOURd4qIxeRI+wir0rq5+U/h4nJc66XoFLQ5E0 pOs9zcAfsZqfFobKq1RqyKJcRoMI5Wk0TPJ0OqaUuCgogVZPKN+H/yYlulV+gNVb MLwmHsLB5O1l8HtM5qqzqqsGtkvqlBxG6oqRx+aXvlCgGByEDd0= =nWm7 -----END PGP SIGNATURE-----