[ubuntu/kinetic-proposed] xorg-server 2:21.1.3-2ubuntu3 (Accepted)

Marc Deslauriers marc.deslauriers at ubuntu.com
Tue Jul 12 15:28:16 UTC 2022 

xorg-server (2:21.1.3-2ubuntu3) kinetic; urgency=medium

  * SECURITY UPDATE: ProcXkbSetGeometry Out-Of-Bounds Access
    - debian/patches/CVE-2022-2319-pre1.patch: switch to array index loops
      to moving pointers in xkb/xkb.c.
    - debian/patches/CVE-2022-2319.patch: add request length validation for
      XkbSetGeometry in xkb/xkb.c.
    - CVE-2022-2319
  * SECURITY UPDATE: ProcXkbSetDeviceInfo Out-Of-Bounds Access
    - debian/patches/CVE-2022-2320.patch: swap XkbSetDeviceInfo and
      XkbSetDeviceInfoCheck in xkb/xkb.c.
    - CVE-2022-2320

Date: Wed, 06 Jul 2022 09:45:33 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu X-SWAT <ubuntu-x at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/xorg-server/2:21.1.3-2ubuntu3
-------------- next part --------------
Format: 1.8
Date: Wed, 06 Jul 2022 09:45:33 -0400
Source: xorg-server
Built-For-Profiles: noudeb
Architecture: source
Version: 2:21.1.3-2ubuntu3
Distribution: kinetic
Urgency: medium
Maintainer: Ubuntu X-SWAT <ubuntu-x at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Changes:
 xorg-server (2:21.1.3-2ubuntu3) kinetic; urgency=medium
 .
   * SECURITY UPDATE: ProcXkbSetGeometry Out-Of-Bounds Access
     - debian/patches/CVE-2022-2319-pre1.patch: switch to array index loops
       to moving pointers in xkb/xkb.c.
     - debian/patches/CVE-2022-2319.patch: add request length validation for
       XkbSetGeometry in xkb/xkb.c.
     - CVE-2022-2319
   * SECURITY UPDATE: ProcXkbSetDeviceInfo Out-Of-Bounds Access
     - debian/patches/CVE-2022-2320.patch: swap XkbSetDeviceInfo and
       XkbSetDeviceInfoCheck in xkb/xkb.c.
     - CVE-2022-2320
Checksums-Sha1:
 70662a648addddc7a7a10b4413515001e67f3fd7 4344 xorg-server_21.1.3-2ubuntu3.dsc
 4a570a531dad6389e9ef31e6bfdce2d4374387c9 231197 xorg-server_21.1.3-2ubuntu3.diff.gz
 56cec2a1f4e64bdfb9619de760298b1f8e556536 12112 xorg-server_21.1.3-2ubuntu3_source.buildinfo
Checksums-Sha256:
 b6985266b3d63d39bb8a213b8c3d9061afa740838bcdaa8e76f43a7be4c7e2bb 4344 xorg-server_21.1.3-2ubuntu3.dsc
 840569340517ee011097fa5fdb05c0c00527beb3ea6c09c0b94bccc4906c2cd3 231197 xorg-server_21.1.3-2ubuntu3.diff.gz
 6ca02a982616f1d86096244bf04218f7dc7503a15080cf41e649657369ebd1d4 12112 xorg-server_21.1.3-2ubuntu3_source.buildinfo
Files:
 a6336df0ab31c10855d24541df2d588c 4344 x11 optional xorg-server_21.1.3-2ubuntu3.dsc
 dff88e8573c395e655c8edbf1b710f79 231197 x11 optional xorg-server_21.1.3-2ubuntu3.diff.gz
 42aeae153f6be8dd4a92e636301c98d7 12112 x11 optional xorg-server_21.1.3-2ubuntu3_source.buildinfo
Original-Maintainer: Debian X Strike Force <debian-x at lists.debian.org>

More information about the kinetic-changes mailing list