Red Hat Product Errata RHSA-2022:0003 - Security Advisory

Issued:: 2022-01-03
Updated:: 2022-01-03

RHSA-2022:0003 - Security Advisory

Overview
Updated Packages

Synopsis

Important: xorg-x11-server security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for xorg-x11-server is now available for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

X.Org is an open-source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon.

Security Fix(es):

xorg-x11-server: SProcRenderCompositeGlyphs out-of-bounds access (CVE-2021-4008)
xorg-x11-server: SProcXFixesCreatePointerBarrier out-of-bounds access (CVE-2021-4009)
xorg-x11-server: SProcScreenSaverSuspend out-of-bounds access (CVE-2021-4010)
xorg-x11-server: SwapCreateRegister out-of-bounds access (CVE-2021-4011)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux Server 7 x86_64
Red Hat Enterprise Linux Workstation 7 x86_64
Red Hat Enterprise Linux Desktop 7 x86_64
Red Hat Enterprise Linux for IBM z Systems 7 s390x
Red Hat Enterprise Linux for Power, big endian 7 ppc64
Red Hat Enterprise Linux for Scientific Computing 7 x86_64
Red Hat Enterprise Linux for Power, little endian 7 ppc64le

Fixes

BZ - 2026059 - CVE-2021-4008 xorg-x11-server: SProcRenderCompositeGlyphs out-of-bounds access
BZ - 2026072 - CVE-2021-4009 xorg-x11-server: SProcXFixesCreatePointerBarrier out-of-bounds access
BZ - 2026073 - CVE-2021-4010 xorg-x11-server: SProcScreenSaverSuspend out-of-bounds access
BZ - 2026074 - CVE-2021-4011 xorg-x11-server: SwapCreateRegister out-of-bounds access

CVEs

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server 7

SRPM
xorg-x11-server-1.20.4-17.el7_9.src.rpm	SHA-256: 568cd40dce74fb505f7e4be95bbeb53486af51f2bd0b117097a70beafe6e89e2
x86_64
xorg-x11-server-Xdmx-1.20.4-17.el7_9.x86_64.rpm	SHA-256: 7baaf0c3f38c4ffdc594de85e3addd7d343d8e38adeac26be229abc99f5ee78a
xorg-x11-server-Xephyr-1.20.4-17.el7_9.x86_64.rpm	SHA-256: dfbdbf01ea0efd6906b03320be0c0b98d2350d1f6611dee7f154e55d30b18034
xorg-x11-server-Xnest-1.20.4-17.el7_9.x86_64.rpm	SHA-256: caa9057844679d4a03070382c9038203dd13ad1e06b94b34909354c55a941ac3
xorg-x11-server-Xorg-1.20.4-17.el7_9.x86_64.rpm	SHA-256: f9438ce6bb7f2d83c2297d43ee17c25fdef288840c86fe896227ef256845cedd
xorg-x11-server-Xvfb-1.20.4-17.el7_9.x86_64.rpm	SHA-256: 252af5ee1d1339aaa89b45a51d6405724bc69bf4e9f7e77b8d9ef6b20a5ffe1f
xorg-x11-server-Xwayland-1.20.4-17.el7_9.x86_64.rpm	SHA-256: eae59ac989fd6a0e9ddc499051746de729d3cf2284c9f64ef50caf78c4d98276
xorg-x11-server-common-1.20.4-17.el7_9.x86_64.rpm	SHA-256: 7924cf301487c522ef8cf311a495aadacfc908e3e303d5f8e8376e0d5ae43df0
xorg-x11-server-debuginfo-1.20.4-17.el7_9.i686.rpm	SHA-256: 0e3e786ffc3f14813147a5e067db7657e63bdbd583d0cc0fa093c4963f404b1f
xorg-x11-server-debuginfo-1.20.4-17.el7_9.x86_64.rpm	SHA-256: 7250be8fccae4d86507d584922bf47140046292ebfbf42b929ee32ef2424a87f
xorg-x11-server-debuginfo-1.20.4-17.el7_9.x86_64.rpm	SHA-256: 7250be8fccae4d86507d584922bf47140046292ebfbf42b929ee32ef2424a87f
xorg-x11-server-devel-1.20.4-17.el7_9.i686.rpm	SHA-256: 631aa8f32bb586921e78bbb34e2a478d3704cb0e36bb0d7d0d27ce6b6423fff4
xorg-x11-server-devel-1.20.4-17.el7_9.x86_64.rpm	SHA-256: e0c791c4d3f4e5d6a909e8a8ef663f2db358ca880a9d91c2489b204716a99a9f
xorg-x11-server-source-1.20.4-17.el7_9.noarch.rpm	SHA-256: 46d272dc9d9f81eff7b59a4d63d7d0bd7eb986014874297d723438dbc9bf991a

Red Hat Enterprise Linux Workstation 7

SRPM
xorg-x11-server-1.20.4-17.el7_9.src.rpm	SHA-256: 568cd40dce74fb505f7e4be95bbeb53486af51f2bd0b117097a70beafe6e89e2
x86_64
xorg-x11-server-Xdmx-1.20.4-17.el7_9.x86_64.rpm	SHA-256: 7baaf0c3f38c4ffdc594de85e3addd7d343d8e38adeac26be229abc99f5ee78a
xorg-x11-server-Xephyr-1.20.4-17.el7_9.x86_64.rpm	SHA-256: dfbdbf01ea0efd6906b03320be0c0b98d2350d1f6611dee7f154e55d30b18034
xorg-x11-server-Xnest-1.20.4-17.el7_9.x86_64.rpm	SHA-256: caa9057844679d4a03070382c9038203dd13ad1e06b94b34909354c55a941ac3
xorg-x11-server-Xorg-1.20.4-17.el7_9.x86_64.rpm	SHA-256: f9438ce6bb7f2d83c2297d43ee17c25fdef288840c86fe896227ef256845cedd
xorg-x11-server-Xvfb-1.20.4-17.el7_9.x86_64.rpm	SHA-256: 252af5ee1d1339aaa89b45a51d6405724bc69bf4e9f7e77b8d9ef6b20a5ffe1f
xorg-x11-server-Xwayland-1.20.4-17.el7_9.x86_64.rpm	SHA-256: eae59ac989fd6a0e9ddc499051746de729d3cf2284c9f64ef50caf78c4d98276
xorg-x11-server-common-1.20.4-17.el7_9.x86_64.rpm	SHA-256: 7924cf301487c522ef8cf311a495aadacfc908e3e303d5f8e8376e0d5ae43df0
xorg-x11-server-debuginfo-1.20.4-17.el7_9.i686.rpm	SHA-256: 0e3e786ffc3f14813147a5e067db7657e63bdbd583d0cc0fa093c4963f404b1f
xorg-x11-server-debuginfo-1.20.4-17.el7_9.x86_64.rpm	SHA-256: 7250be8fccae4d86507d584922bf47140046292ebfbf42b929ee32ef2424a87f
xorg-x11-server-debuginfo-1.20.4-17.el7_9.x86_64.rpm	SHA-256: 7250be8fccae4d86507d584922bf47140046292ebfbf42b929ee32ef2424a87f
xorg-x11-server-devel-1.20.4-17.el7_9.i686.rpm	SHA-256: 631aa8f32bb586921e78bbb34e2a478d3704cb0e36bb0d7d0d27ce6b6423fff4
xorg-x11-server-devel-1.20.4-17.el7_9.x86_64.rpm	SHA-256: e0c791c4d3f4e5d6a909e8a8ef663f2db358ca880a9d91c2489b204716a99a9f
xorg-x11-server-source-1.20.4-17.el7_9.noarch.rpm	SHA-256: 46d272dc9d9f81eff7b59a4d63d7d0bd7eb986014874297d723438dbc9bf991a

Red Hat Enterprise Linux Desktop 7

SRPM
xorg-x11-server-1.20.4-17.el7_9.src.rpm	SHA-256: 568cd40dce74fb505f7e4be95bbeb53486af51f2bd0b117097a70beafe6e89e2
x86_64
xorg-x11-server-Xdmx-1.20.4-17.el7_9.x86_64.rpm	SHA-256: 7baaf0c3f38c4ffdc594de85e3addd7d343d8e38adeac26be229abc99f5ee78a
xorg-x11-server-Xephyr-1.20.4-17.el7_9.x86_64.rpm	SHA-256: dfbdbf01ea0efd6906b03320be0c0b98d2350d1f6611dee7f154e55d30b18034
xorg-x11-server-Xnest-1.20.4-17.el7_9.x86_64.rpm	SHA-256: caa9057844679d4a03070382c9038203dd13ad1e06b94b34909354c55a941ac3
xorg-x11-server-Xorg-1.20.4-17.el7_9.x86_64.rpm	SHA-256: f9438ce6bb7f2d83c2297d43ee17c25fdef288840c86fe896227ef256845cedd
xorg-x11-server-Xvfb-1.20.4-17.el7_9.x86_64.rpm	SHA-256: 252af5ee1d1339aaa89b45a51d6405724bc69bf4e9f7e77b8d9ef6b20a5ffe1f
xorg-x11-server-Xwayland-1.20.4-17.el7_9.x86_64.rpm	SHA-256: eae59ac989fd6a0e9ddc499051746de729d3cf2284c9f64ef50caf78c4d98276
xorg-x11-server-common-1.20.4-17.el7_9.x86_64.rpm	SHA-256: 7924cf301487c522ef8cf311a495aadacfc908e3e303d5f8e8376e0d5ae43df0
xorg-x11-server-debuginfo-1.20.4-17.el7_9.i686.rpm	SHA-256: 0e3e786ffc3f14813147a5e067db7657e63bdbd583d0cc0fa093c4963f404b1f
xorg-x11-server-debuginfo-1.20.4-17.el7_9.x86_64.rpm	SHA-256: 7250be8fccae4d86507d584922bf47140046292ebfbf42b929ee32ef2424a87f
xorg-x11-server-debuginfo-1.20.4-17.el7_9.x86_64.rpm	SHA-256: 7250be8fccae4d86507d584922bf47140046292ebfbf42b929ee32ef2424a87f
xorg-x11-server-devel-1.20.4-17.el7_9.i686.rpm	SHA-256: 631aa8f32bb586921e78bbb34e2a478d3704cb0e36bb0d7d0d27ce6b6423fff4
xorg-x11-server-devel-1.20.4-17.el7_9.x86_64.rpm	SHA-256: e0c791c4d3f4e5d6a909e8a8ef663f2db358ca880a9d91c2489b204716a99a9f
xorg-x11-server-source-1.20.4-17.el7_9.noarch.rpm	SHA-256: 46d272dc9d9f81eff7b59a4d63d7d0bd7eb986014874297d723438dbc9bf991a

Red Hat Enterprise Linux for IBM z Systems 7

SRPM
xorg-x11-server-1.20.4-17.el7_9.src.rpm	SHA-256: 568cd40dce74fb505f7e4be95bbeb53486af51f2bd0b117097a70beafe6e89e2
s390x
xorg-x11-server-Xdmx-1.20.4-17.el7_9.s390x.rpm	SHA-256: d05f2be28849acb64a1acc18300289d7bfd9614bb34e30cbe6e7ad9dff6f695a
xorg-x11-server-Xephyr-1.20.4-17.el7_9.s390x.rpm	SHA-256: 8fc2c60e82e0a9a5ec455e943959d3f500bcdced8c5328cdca1757f970a1c5cc
xorg-x11-server-Xnest-1.20.4-17.el7_9.s390x.rpm	SHA-256: d2daed226bc495f3043e5c7ee18a354f93917aa9074d89f7e2edcdfbc5fda894
xorg-x11-server-Xvfb-1.20.4-17.el7_9.s390x.rpm	SHA-256: b9f44b3c388a6445a9385fd6bcb168897f00a1404f82290173f48025af13a708
xorg-x11-server-Xwayland-1.20.4-17.el7_9.s390x.rpm	SHA-256: 484c8fbbc5895bd8f94976517581127b1503d6ca5e6f279bdee208a288c59439
xorg-x11-server-common-1.20.4-17.el7_9.s390x.rpm	SHA-256: 4f0214e6bba72305cdc003d99382db73c0d6a9abd23efba8fe75c3a90e1e0b42
xorg-x11-server-debuginfo-1.20.4-17.el7_9.s390x.rpm	SHA-256: 60d97c95188fa2e1e20ea4af35ea78333171c0113d03f86cf41d15d54cd396a1
xorg-x11-server-debuginfo-1.20.4-17.el7_9.s390x.rpm	SHA-256: 60d97c95188fa2e1e20ea4af35ea78333171c0113d03f86cf41d15d54cd396a1
xorg-x11-server-source-1.20.4-17.el7_9.noarch.rpm	SHA-256: 46d272dc9d9f81eff7b59a4d63d7d0bd7eb986014874297d723438dbc9bf991a

Red Hat Enterprise Linux for Power, big endian 7

SRPM
xorg-x11-server-1.20.4-17.el7_9.src.rpm	SHA-256: 568cd40dce74fb505f7e4be95bbeb53486af51f2bd0b117097a70beafe6e89e2
ppc64
xorg-x11-server-Xdmx-1.20.4-17.el7_9.ppc64.rpm	SHA-256: b20fe1c73db6dbff9c957786c27c231f9afd9f246ee4986d1c0f5cf61399110a
xorg-x11-server-Xephyr-1.20.4-17.el7_9.ppc64.rpm	SHA-256: 97504eb8aeeac5ce9801379830cb2fee171bfbd0c4c107c826a9071dc1a0afa1
xorg-x11-server-Xnest-1.20.4-17.el7_9.ppc64.rpm	SHA-256: cb0823360fc5e83a7efe77d75067b1b5d12df005523f643444ba061b1f412ccf
xorg-x11-server-Xorg-1.20.4-17.el7_9.ppc64.rpm	SHA-256: e8cd1ac2660b2c02167dd50bcfa895fc040aa387cb683b792bb8c2d021eb2ed2
xorg-x11-server-Xvfb-1.20.4-17.el7_9.ppc64.rpm	SHA-256: 008dea95f26042b44fe3b5588a87e0eb6ace7cc92c14ad5f5e984b4659ec6260
xorg-x11-server-Xwayland-1.20.4-17.el7_9.ppc64.rpm	SHA-256: ebaf79ff7c5fbf021c16cf03dfb9fa81aaf17def522fa76ceb6b816f3a728a31
xorg-x11-server-common-1.20.4-17.el7_9.ppc64.rpm	SHA-256: d4630e909f0a552721339810ce0afdf022ff1087b11219941e9239cd21a3cbab
xorg-x11-server-debuginfo-1.20.4-17.el7_9.ppc.rpm	SHA-256: 956cbfb4cc74866cb8cea7017ac7d5849ae34fc9343fcd3ea140485abd0b5211
xorg-x11-server-debuginfo-1.20.4-17.el7_9.ppc64.rpm	SHA-256: d99ba81dbe545224f2ee015d036ca5f0a268cc2c8f25775b18f6ce28ac5ff758
xorg-x11-server-debuginfo-1.20.4-17.el7_9.ppc64.rpm	SHA-256: d99ba81dbe545224f2ee015d036ca5f0a268cc2c8f25775b18f6ce28ac5ff758
xorg-x11-server-devel-1.20.4-17.el7_9.ppc.rpm	SHA-256: 558b6ef56c0c3761e38602e6befcded763985ce4c0921dd9bde008d5e07c49a0
xorg-x11-server-devel-1.20.4-17.el7_9.ppc64.rpm	SHA-256: a24a348e0bba010f41ae19ff59c60c535db1bd32511ca9f078e24abdc26f05a9
xorg-x11-server-source-1.20.4-17.el7_9.noarch.rpm	SHA-256: 46d272dc9d9f81eff7b59a4d63d7d0bd7eb986014874297d723438dbc9bf991a

Red Hat Enterprise Linux for Scientific Computing 7

SRPM
xorg-x11-server-1.20.4-17.el7_9.src.rpm	SHA-256: 568cd40dce74fb505f7e4be95bbeb53486af51f2bd0b117097a70beafe6e89e2
x86_64
xorg-x11-server-Xdmx-1.20.4-17.el7_9.x86_64.rpm	SHA-256: 7baaf0c3f38c4ffdc594de85e3addd7d343d8e38adeac26be229abc99f5ee78a
xorg-x11-server-Xephyr-1.20.4-17.el7_9.x86_64.rpm	SHA-256: dfbdbf01ea0efd6906b03320be0c0b98d2350d1f6611dee7f154e55d30b18034
xorg-x11-server-Xnest-1.20.4-17.el7_9.x86_64.rpm	SHA-256: caa9057844679d4a03070382c9038203dd13ad1e06b94b34909354c55a941ac3
xorg-x11-server-Xorg-1.20.4-17.el7_9.x86_64.rpm	SHA-256: f9438ce6bb7f2d83c2297d43ee17c25fdef288840c86fe896227ef256845cedd
xorg-x11-server-Xvfb-1.20.4-17.el7_9.x86_64.rpm	SHA-256: 252af5ee1d1339aaa89b45a51d6405724bc69bf4e9f7e77b8d9ef6b20a5ffe1f
xorg-x11-server-Xwayland-1.20.4-17.el7_9.x86_64.rpm	SHA-256: eae59ac989fd6a0e9ddc499051746de729d3cf2284c9f64ef50caf78c4d98276
xorg-x11-server-common-1.20.4-17.el7_9.x86_64.rpm	SHA-256: 7924cf301487c522ef8cf311a495aadacfc908e3e303d5f8e8376e0d5ae43df0
xorg-x11-server-debuginfo-1.20.4-17.el7_9.i686.rpm	SHA-256: 0e3e786ffc3f14813147a5e067db7657e63bdbd583d0cc0fa093c4963f404b1f
xorg-x11-server-debuginfo-1.20.4-17.el7_9.x86_64.rpm	SHA-256: 7250be8fccae4d86507d584922bf47140046292ebfbf42b929ee32ef2424a87f
xorg-x11-server-devel-1.20.4-17.el7_9.i686.rpm	SHA-256: 631aa8f32bb586921e78bbb34e2a478d3704cb0e36bb0d7d0d27ce6b6423fff4
xorg-x11-server-devel-1.20.4-17.el7_9.x86_64.rpm	SHA-256: e0c791c4d3f4e5d6a909e8a8ef663f2db358ca880a9d91c2489b204716a99a9f
xorg-x11-server-source-1.20.4-17.el7_9.noarch.rpm	SHA-256: 46d272dc9d9f81eff7b59a4d63d7d0bd7eb986014874297d723438dbc9bf991a

Red Hat Enterprise Linux for Power, little endian 7

SRPM
xorg-x11-server-1.20.4-17.el7_9.src.rpm	SHA-256: 568cd40dce74fb505f7e4be95bbeb53486af51f2bd0b117097a70beafe6e89e2
ppc64le
xorg-x11-server-Xdmx-1.20.4-17.el7_9.ppc64le.rpm	SHA-256: d2ec7a7237da5d132bcf64e13558663932a554d273bc310d00404f049086f36f
xorg-x11-server-Xephyr-1.20.4-17.el7_9.ppc64le.rpm	SHA-256: 3e1b22e54587888e851838a72d78d3a4bbfcc94cb2cdbd98f2a477b778d3dd1e
xorg-x11-server-Xnest-1.20.4-17.el7_9.ppc64le.rpm	SHA-256: 96a84ba56d046618cdca481cd25c8e2f7ea86bfc866bac12315a316b126798d9
xorg-x11-server-Xorg-1.20.4-17.el7_9.ppc64le.rpm	SHA-256: 97853ea588629f70a6867e1ac8101f2b2f7446cf4a26e0f599b7c3771e481ef0
xorg-x11-server-Xvfb-1.20.4-17.el7_9.ppc64le.rpm	SHA-256: a5f73cdb4eb394ab9c65bf95587e6137eef83a6dc4f06613a70357d3741a9d52
xorg-x11-server-Xwayland-1.20.4-17.el7_9.ppc64le.rpm	SHA-256: ed988910966b58e3113e2b0e6ac79b6c8448ec126d691a0e1cf5463756973487
xorg-x11-server-common-1.20.4-17.el7_9.ppc64le.rpm	SHA-256: fa87b2a0434364f490801539397b771d9451850bd0f3e59f7ac3fc57fcd9971b
xorg-x11-server-debuginfo-1.20.4-17.el7_9.ppc64le.rpm	SHA-256: f30cf29c43ee1accdfb922740b13048a7109010a8741252e484b0054d09eea03
xorg-x11-server-debuginfo-1.20.4-17.el7_9.ppc64le.rpm	SHA-256: f30cf29c43ee1accdfb922740b13048a7109010a8741252e484b0054d09eea03
xorg-x11-server-devel-1.20.4-17.el7_9.ppc64le.rpm	SHA-256: f8a6d740377b58223bf0a832652a045052e2c469d9cd8dd8d237d00608c54371
xorg-x11-server-source-1.20.4-17.el7_9.noarch.rpm	SHA-256: 46d272dc9d9f81eff7b59a4d63d7d0bd7eb986014874297d723438dbc9bf991a

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation