[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 3631-1] xorg-server security update

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian LTS Advisory DLA-3631-1                debian-lts@lists.debian.org
https://www.debian.org/lts/security/                    Thorsten Alteholz
October 25, 2023                              https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package        : xorg-server
Version        : 2:1.20.4-1+deb10u10
CVE ID         : CVE-2023-5367 CVE-2023-5380


Jan-Niklas Sohn discovered several vulnerabilities in the Xorg X server,
which may result in privilege escalation if the X server is running
privileged.


For Debian 10 buster, these problems have been fixed in version
2:1.20.4-1+deb10u10.

We recommend that you upgrade your xorg-server packages.

For the detailed security status of xorg-server please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/xorg-server

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

-----BEGIN PGP SIGNATURE-----
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=MWd+
-----END PGP SIGNATURE-----
Reply to: