Red Hat Product Errata RHSA-2022:8222 - Security Advisory
Issued:
2022-11-15
Updated:
2022-11-15

RHSA-2022:8222 - Security Advisory

Synopsis

Moderate: xorg-x11-server-Xwayland security update

Type/Severity

Security Advisory: Moderate

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for xorg-x11-server-Xwayland is now available for Red Hat Enterprise Linux 9.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Xwayland is an X server for running X clients under Wayland.

Security Fix(es):

  • xorg-x11-server: X.Org Server ProcXkbSetGeometry out-of-bounds access (CVE-2022-2319)
  • xorg-x11-server: out-of-bounds access in ProcXkbSetDeviceInfo request handler of the Xkb extension (CVE-2022-2320)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Red Hat Enterprise Linux 9.1 Release Notes linked from the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux for x86_64 9 x86_64
  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.4 x86_64
  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.2 x86_64
  • Red Hat Enterprise Linux Server - AUS 9.4 x86_64
  • Red Hat Enterprise Linux Server - AUS 9.2 x86_64
  • Red Hat Enterprise Linux for IBM z Systems 9 s390x
  • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.4 s390x
  • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.2 s390x
  • Red Hat Enterprise Linux for Power, little endian 9 ppc64le
  • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.4 ppc64le
  • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.2 ppc64le
  • Red Hat Enterprise Linux for ARM 64 9 aarch64
  • Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.4 aarch64
  • Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.2 aarch64
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.4 ppc64le
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.2 ppc64le
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.4 x86_64
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.2 x86_64
  • Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.4 aarch64
  • Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.2 aarch64
  • Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.4 s390x
  • Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.2 s390x

Fixes

  • BZ - 2106671 - CVE-2022-2319 xorg-x11-server: X.Org Server ProcXkbSetGeometry out-of-bounds access
  • BZ - 2106683 - CVE-2022-2320 xorg-x11-server: out-of-bounds access in ProcXkbSetDeviceInfo request handler of the Xkb extension

Red Hat Enterprise Linux for x86_64 9

SRPM
xorg-x11-server-Xwayland-21.1.3-3.el9.src.rpm SHA-256: 5f58e8878bfba7fcfcf15224da38fb1c0a89e4b81d157ca3fd959c03b918cbe9
x86_64
xorg-x11-server-Xwayland-21.1.3-3.el9.x86_64.rpm SHA-256: eda1ae8f149f9afcb43cf3b07c4ad9cd610c95e9ff29445e3f2afa4a6f2b50c9
xorg-x11-server-Xwayland-debuginfo-21.1.3-3.el9.x86_64.rpm SHA-256: 6997465a7080de9a597dea733c7671f5cb27e14e6220102bdec6c7e1eddfbc13
xorg-x11-server-Xwayland-debugsource-21.1.3-3.el9.x86_64.rpm SHA-256: d12186a296f7debf829514afcdfdd94bab61203e906f322a04d8f8ca0b9991fc

Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.4

SRPM
xorg-x11-server-Xwayland-21.1.3-3.el9.src.rpm SHA-256: 5f58e8878bfba7fcfcf15224da38fb1c0a89e4b81d157ca3fd959c03b918cbe9
x86_64
xorg-x11-server-Xwayland-21.1.3-3.el9.x86_64.rpm SHA-256: eda1ae8f149f9afcb43cf3b07c4ad9cd610c95e9ff29445e3f2afa4a6f2b50c9
xorg-x11-server-Xwayland-debuginfo-21.1.3-3.el9.x86_64.rpm SHA-256: 6997465a7080de9a597dea733c7671f5cb27e14e6220102bdec6c7e1eddfbc13
xorg-x11-server-Xwayland-debugsource-21.1.3-3.el9.x86_64.rpm SHA-256: d12186a296f7debf829514afcdfdd94bab61203e906f322a04d8f8ca0b9991fc

Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.2

SRPM
xorg-x11-server-Xwayland-21.1.3-3.el9.src.rpm SHA-256: 5f58e8878bfba7fcfcf15224da38fb1c0a89e4b81d157ca3fd959c03b918cbe9
x86_64
xorg-x11-server-Xwayland-21.1.3-3.el9.x86_64.rpm SHA-256: eda1ae8f149f9afcb43cf3b07c4ad9cd610c95e9ff29445e3f2afa4a6f2b50c9
xorg-x11-server-Xwayland-debuginfo-21.1.3-3.el9.x86_64.rpm SHA-256: 6997465a7080de9a597dea733c7671f5cb27e14e6220102bdec6c7e1eddfbc13
xorg-x11-server-Xwayland-debugsource-21.1.3-3.el9.x86_64.rpm SHA-256: d12186a296f7debf829514afcdfdd94bab61203e906f322a04d8f8ca0b9991fc

Red Hat Enterprise Linux Server - AUS 9.4

SRPM
xorg-x11-server-Xwayland-21.1.3-3.el9.src.rpm SHA-256: 5f58e8878bfba7fcfcf15224da38fb1c0a89e4b81d157ca3fd959c03b918cbe9
x86_64
xorg-x11-server-Xwayland-21.1.3-3.el9.x86_64.rpm SHA-256: eda1ae8f149f9afcb43cf3b07c4ad9cd610c95e9ff29445e3f2afa4a6f2b50c9
xorg-x11-server-Xwayland-debuginfo-21.1.3-3.el9.x86_64.rpm SHA-256: 6997465a7080de9a597dea733c7671f5cb27e14e6220102bdec6c7e1eddfbc13
xorg-x11-server-Xwayland-debugsource-21.1.3-3.el9.x86_64.rpm SHA-256: d12186a296f7debf829514afcdfdd94bab61203e906f322a04d8f8ca0b9991fc

Red Hat Enterprise Linux Server - AUS 9.2

SRPM
xorg-x11-server-Xwayland-21.1.3-3.el9.src.rpm SHA-256: 5f58e8878bfba7fcfcf15224da38fb1c0a89e4b81d157ca3fd959c03b918cbe9
x86_64
xorg-x11-server-Xwayland-21.1.3-3.el9.x86_64.rpm SHA-256: eda1ae8f149f9afcb43cf3b07c4ad9cd610c95e9ff29445e3f2afa4a6f2b50c9
xorg-x11-server-Xwayland-debuginfo-21.1.3-3.el9.x86_64.rpm SHA-256: 6997465a7080de9a597dea733c7671f5cb27e14e6220102bdec6c7e1eddfbc13
xorg-x11-server-Xwayland-debugsource-21.1.3-3.el9.x86_64.rpm SHA-256: d12186a296f7debf829514afcdfdd94bab61203e906f322a04d8f8ca0b9991fc

Red Hat Enterprise Linux for IBM z Systems 9

SRPM
xorg-x11-server-Xwayland-21.1.3-3.el9.src.rpm SHA-256: 5f58e8878bfba7fcfcf15224da38fb1c0a89e4b81d157ca3fd959c03b918cbe9
s390x
xorg-x11-server-Xwayland-21.1.3-3.el9.s390x.rpm SHA-256: a8139214e4507686fb33bec616f3de942832473c313c735e1be6acf38ab3e701
xorg-x11-server-Xwayland-debuginfo-21.1.3-3.el9.s390x.rpm SHA-256: cc712bd88da2cd06d731ebe655169975b3c9ee046293b84aee4f6578ab2e1cae
xorg-x11-server-Xwayland-debugsource-21.1.3-3.el9.s390x.rpm SHA-256: a71ff134a06af8aa3bbe883fa086ba33d55aacb06a277ff49d406037a84d1f36

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.4

SRPM
xorg-x11-server-Xwayland-21.1.3-3.el9.src.rpm SHA-256: 5f58e8878bfba7fcfcf15224da38fb1c0a89e4b81d157ca3fd959c03b918cbe9
s390x
xorg-x11-server-Xwayland-21.1.3-3.el9.s390x.rpm SHA-256: a8139214e4507686fb33bec616f3de942832473c313c735e1be6acf38ab3e701
xorg-x11-server-Xwayland-debuginfo-21.1.3-3.el9.s390x.rpm SHA-256: cc712bd88da2cd06d731ebe655169975b3c9ee046293b84aee4f6578ab2e1cae
xorg-x11-server-Xwayland-debugsource-21.1.3-3.el9.s390x.rpm SHA-256: a71ff134a06af8aa3bbe883fa086ba33d55aacb06a277ff49d406037a84d1f36

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.2

SRPM
xorg-x11-server-Xwayland-21.1.3-3.el9.src.rpm SHA-256: 5f58e8878bfba7fcfcf15224da38fb1c0a89e4b81d157ca3fd959c03b918cbe9
s390x
xorg-x11-server-Xwayland-21.1.3-3.el9.s390x.rpm SHA-256: a8139214e4507686fb33bec616f3de942832473c313c735e1be6acf38ab3e701
xorg-x11-server-Xwayland-debuginfo-21.1.3-3.el9.s390x.rpm SHA-256: cc712bd88da2cd06d731ebe655169975b3c9ee046293b84aee4f6578ab2e1cae
xorg-x11-server-Xwayland-debugsource-21.1.3-3.el9.s390x.rpm SHA-256: a71ff134a06af8aa3bbe883fa086ba33d55aacb06a277ff49d406037a84d1f36

Red Hat Enterprise Linux for Power, little endian 9

SRPM
xorg-x11-server-Xwayland-21.1.3-3.el9.src.rpm SHA-256: 5f58e8878bfba7fcfcf15224da38fb1c0a89e4b81d157ca3fd959c03b918cbe9
ppc64le
xorg-x11-server-Xwayland-21.1.3-3.el9.ppc64le.rpm SHA-256: 36e88f911514e94984d390fb1bff3ffe992264bdcabbbf28b9c822b778aa2b66
xorg-x11-server-Xwayland-debuginfo-21.1.3-3.el9.ppc64le.rpm SHA-256: a77f2dd3c904b08e512e75815617d2e5b85f2046a528143dd7a79cada548c136
xorg-x11-server-Xwayland-debugsource-21.1.3-3.el9.ppc64le.rpm SHA-256: f2339241c14209d6a826a86fed2eca94bd06b2b1f715148ddd5be7a87d69000f

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.4

SRPM
xorg-x11-server-Xwayland-21.1.3-3.el9.src.rpm SHA-256: 5f58e8878bfba7fcfcf15224da38fb1c0a89e4b81d157ca3fd959c03b918cbe9
ppc64le
xorg-x11-server-Xwayland-21.1.3-3.el9.ppc64le.rpm SHA-256: 36e88f911514e94984d390fb1bff3ffe992264bdcabbbf28b9c822b778aa2b66
xorg-x11-server-Xwayland-debuginfo-21.1.3-3.el9.ppc64le.rpm SHA-256: a77f2dd3c904b08e512e75815617d2e5b85f2046a528143dd7a79cada548c136
xorg-x11-server-Xwayland-debugsource-21.1.3-3.el9.ppc64le.rpm SHA-256: f2339241c14209d6a826a86fed2eca94bd06b2b1f715148ddd5be7a87d69000f

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.2

SRPM
xorg-x11-server-Xwayland-21.1.3-3.el9.src.rpm SHA-256: 5f58e8878bfba7fcfcf15224da38fb1c0a89e4b81d157ca3fd959c03b918cbe9
ppc64le
xorg-x11-server-Xwayland-21.1.3-3.el9.ppc64le.rpm SHA-256: 36e88f911514e94984d390fb1bff3ffe992264bdcabbbf28b9c822b778aa2b66
xorg-x11-server-Xwayland-debuginfo-21.1.3-3.el9.ppc64le.rpm SHA-256: a77f2dd3c904b08e512e75815617d2e5b85f2046a528143dd7a79cada548c136
xorg-x11-server-Xwayland-debugsource-21.1.3-3.el9.ppc64le.rpm SHA-256: f2339241c14209d6a826a86fed2eca94bd06b2b1f715148ddd5be7a87d69000f

Red Hat Enterprise Linux for ARM 64 9

SRPM
xorg-x11-server-Xwayland-21.1.3-3.el9.src.rpm SHA-256: 5f58e8878bfba7fcfcf15224da38fb1c0a89e4b81d157ca3fd959c03b918cbe9
aarch64
xorg-x11-server-Xwayland-21.1.3-3.el9.aarch64.rpm SHA-256: 0f86126e1b0d3a195e96067a880b99a947764f37911180b9b3af4befedce4aae
xorg-x11-server-Xwayland-debuginfo-21.1.3-3.el9.aarch64.rpm SHA-256: d6fb7d3d22a1bc02b19b90551f66459f0762a893080a901e58cd15cfb8bb8ebe
xorg-x11-server-Xwayland-debugsource-21.1.3-3.el9.aarch64.rpm SHA-256: 48637432d198788961e16d2fdf83e83629e7ee91565cff641de912a4065d7a5c

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.4

SRPM
xorg-x11-server-Xwayland-21.1.3-3.el9.src.rpm SHA-256: 5f58e8878bfba7fcfcf15224da38fb1c0a89e4b81d157ca3fd959c03b918cbe9
aarch64
xorg-x11-server-Xwayland-21.1.3-3.el9.aarch64.rpm SHA-256: 0f86126e1b0d3a195e96067a880b99a947764f37911180b9b3af4befedce4aae
xorg-x11-server-Xwayland-debuginfo-21.1.3-3.el9.aarch64.rpm SHA-256: d6fb7d3d22a1bc02b19b90551f66459f0762a893080a901e58cd15cfb8bb8ebe
xorg-x11-server-Xwayland-debugsource-21.1.3-3.el9.aarch64.rpm SHA-256: 48637432d198788961e16d2fdf83e83629e7ee91565cff641de912a4065d7a5c

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.2

SRPM
xorg-x11-server-Xwayland-21.1.3-3.el9.src.rpm SHA-256: 5f58e8878bfba7fcfcf15224da38fb1c0a89e4b81d157ca3fd959c03b918cbe9
aarch64
xorg-x11-server-Xwayland-21.1.3-3.el9.aarch64.rpm SHA-256: 0f86126e1b0d3a195e96067a880b99a947764f37911180b9b3af4befedce4aae
xorg-x11-server-Xwayland-debuginfo-21.1.3-3.el9.aarch64.rpm SHA-256: d6fb7d3d22a1bc02b19b90551f66459f0762a893080a901e58cd15cfb8bb8ebe
xorg-x11-server-Xwayland-debugsource-21.1.3-3.el9.aarch64.rpm SHA-256: 48637432d198788961e16d2fdf83e83629e7ee91565cff641de912a4065d7a5c

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.4

SRPM
xorg-x11-server-Xwayland-21.1.3-3.el9.src.rpm SHA-256: 5f58e8878bfba7fcfcf15224da38fb1c0a89e4b81d157ca3fd959c03b918cbe9
ppc64le
xorg-x11-server-Xwayland-21.1.3-3.el9.ppc64le.rpm SHA-256: 36e88f911514e94984d390fb1bff3ffe992264bdcabbbf28b9c822b778aa2b66
xorg-x11-server-Xwayland-debuginfo-21.1.3-3.el9.ppc64le.rpm SHA-256: a77f2dd3c904b08e512e75815617d2e5b85f2046a528143dd7a79cada548c136
xorg-x11-server-Xwayland-debugsource-21.1.3-3.el9.ppc64le.rpm SHA-256: f2339241c14209d6a826a86fed2eca94bd06b2b1f715148ddd5be7a87d69000f

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.2

SRPM
xorg-x11-server-Xwayland-21.1.3-3.el9.src.rpm SHA-256: 5f58e8878bfba7fcfcf15224da38fb1c0a89e4b81d157ca3fd959c03b918cbe9
ppc64le
xorg-x11-server-Xwayland-21.1.3-3.el9.ppc64le.rpm SHA-256: 36e88f911514e94984d390fb1bff3ffe992264bdcabbbf28b9c822b778aa2b66
xorg-x11-server-Xwayland-debuginfo-21.1.3-3.el9.ppc64le.rpm SHA-256: a77f2dd3c904b08e512e75815617d2e5b85f2046a528143dd7a79cada548c136
xorg-x11-server-Xwayland-debugsource-21.1.3-3.el9.ppc64le.rpm SHA-256: f2339241c14209d6a826a86fed2eca94bd06b2b1f715148ddd5be7a87d69000f

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.4

SRPM
xorg-x11-server-Xwayland-21.1.3-3.el9.src.rpm SHA-256: 5f58e8878bfba7fcfcf15224da38fb1c0a89e4b81d157ca3fd959c03b918cbe9
x86_64
xorg-x11-server-Xwayland-21.1.3-3.el9.x86_64.rpm SHA-256: eda1ae8f149f9afcb43cf3b07c4ad9cd610c95e9ff29445e3f2afa4a6f2b50c9
xorg-x11-server-Xwayland-debuginfo-21.1.3-3.el9.x86_64.rpm SHA-256: 6997465a7080de9a597dea733c7671f5cb27e14e6220102bdec6c7e1eddfbc13
xorg-x11-server-Xwayland-debugsource-21.1.3-3.el9.x86_64.rpm SHA-256: d12186a296f7debf829514afcdfdd94bab61203e906f322a04d8f8ca0b9991fc

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.2

SRPM
xorg-x11-server-Xwayland-21.1.3-3.el9.src.rpm SHA-256: 5f58e8878bfba7fcfcf15224da38fb1c0a89e4b81d157ca3fd959c03b918cbe9
x86_64
xorg-x11-server-Xwayland-21.1.3-3.el9.x86_64.rpm SHA-256: eda1ae8f149f9afcb43cf3b07c4ad9cd610c95e9ff29445e3f2afa4a6f2b50c9
xorg-x11-server-Xwayland-debuginfo-21.1.3-3.el9.x86_64.rpm SHA-256: 6997465a7080de9a597dea733c7671f5cb27e14e6220102bdec6c7e1eddfbc13
xorg-x11-server-Xwayland-debugsource-21.1.3-3.el9.x86_64.rpm SHA-256: d12186a296f7debf829514afcdfdd94bab61203e906f322a04d8f8ca0b9991fc

Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.4

SRPM
xorg-x11-server-Xwayland-21.1.3-3.el9.src.rpm SHA-256: 5f58e8878bfba7fcfcf15224da38fb1c0a89e4b81d157ca3fd959c03b918cbe9
aarch64
xorg-x11-server-Xwayland-21.1.3-3.el9.aarch64.rpm SHA-256: 0f86126e1b0d3a195e96067a880b99a947764f37911180b9b3af4befedce4aae
xorg-x11-server-Xwayland-debuginfo-21.1.3-3.el9.aarch64.rpm SHA-256: d6fb7d3d22a1bc02b19b90551f66459f0762a893080a901e58cd15cfb8bb8ebe
xorg-x11-server-Xwayland-debugsource-21.1.3-3.el9.aarch64.rpm SHA-256: 48637432d198788961e16d2fdf83e83629e7ee91565cff641de912a4065d7a5c

Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.2

SRPM
xorg-x11-server-Xwayland-21.1.3-3.el9.src.rpm SHA-256: 5f58e8878bfba7fcfcf15224da38fb1c0a89e4b81d157ca3fd959c03b918cbe9
aarch64
xorg-x11-server-Xwayland-21.1.3-3.el9.aarch64.rpm SHA-256: 0f86126e1b0d3a195e96067a880b99a947764f37911180b9b3af4befedce4aae
xorg-x11-server-Xwayland-debuginfo-21.1.3-3.el9.aarch64.rpm SHA-256: d6fb7d3d22a1bc02b19b90551f66459f0762a893080a901e58cd15cfb8bb8ebe
xorg-x11-server-Xwayland-debugsource-21.1.3-3.el9.aarch64.rpm SHA-256: 48637432d198788961e16d2fdf83e83629e7ee91565cff641de912a4065d7a5c

Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.4

SRPM
xorg-x11-server-Xwayland-21.1.3-3.el9.src.rpm SHA-256: 5f58e8878bfba7fcfcf15224da38fb1c0a89e4b81d157ca3fd959c03b918cbe9
s390x
xorg-x11-server-Xwayland-21.1.3-3.el9.s390x.rpm SHA-256: a8139214e4507686fb33bec616f3de942832473c313c735e1be6acf38ab3e701
xorg-x11-server-Xwayland-debuginfo-21.1.3-3.el9.s390x.rpm SHA-256: cc712bd88da2cd06d731ebe655169975b3c9ee046293b84aee4f6578ab2e1cae
xorg-x11-server-Xwayland-debugsource-21.1.3-3.el9.s390x.rpm SHA-256: a71ff134a06af8aa3bbe883fa086ba33d55aacb06a277ff49d406037a84d1f36

Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.2

SRPM
xorg-x11-server-Xwayland-21.1.3-3.el9.src.rpm SHA-256: 5f58e8878bfba7fcfcf15224da38fb1c0a89e4b81d157ca3fd959c03b918cbe9
s390x
xorg-x11-server-Xwayland-21.1.3-3.el9.s390x.rpm SHA-256: a8139214e4507686fb33bec616f3de942832473c313c735e1be6acf38ab3e701
xorg-x11-server-Xwayland-debuginfo-21.1.3-3.el9.s390x.rpm SHA-256: cc712bd88da2cd06d731ebe655169975b3c9ee046293b84aee4f6578ab2e1cae
xorg-x11-server-Xwayland-debugsource-21.1.3-3.el9.s390x.rpm SHA-256: a71ff134a06af8aa3bbe883fa086ba33d55aacb06a277ff49d406037a84d1f36

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.