Issued:: 2023-05-16
Updated:: 2023-05-16

RHSA-2023:2805 - Security Advisory

Overview
Updated Packages

Synopsis

Moderate: xorg-x11-server-Xwayland security update

Type/Severity

Security Advisory: Moderate

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for xorg-x11-server-Xwayland is now available for Red Hat Enterprise Linux 8.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Xwayland is an X server for running X clients under Wayland.

Security Fix(es):

xorg-x11-server: buffer overflow in _GetCountedString() in xkb/xkb.c (CVE-2022-3550)
xorg-x11-server: XkbGetKbdByName use-after-free (CVE-2022-4283)
xorg-x11-server: XTestSwapFakeInput stack overflow (CVE-2022-46340)
xorg-x11-server: XIPassiveUngrab out-of-bounds access (CVE-2022-46341)
xorg-x11-server: XvdiSelectVideoNotify use-after-free (CVE-2022-46342)
xorg-x11-server: ScreenSaverSetAttributes use-after-free (CVE-2022-46343)
xorg-x11-server: XIChangeProperty out-of-bounds access (CVE-2022-46344)
xorg-x11-server: DeepCopyPointerClasses use-after-free leads to privilege elevation (CVE-2023-0494)
xorg-x11-server: memory leak in ProcXkbGetKbdByName() in xkb/xkb.c (CVE-2022-3551)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.8 Release Notes linked from the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat Enterprise Linux for x86_64 8 x86_64
Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.8 x86_64
Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.8 x86_64
Red Hat Enterprise Linux for IBM z Systems 8 s390x
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.8 s390x
Red Hat Enterprise Linux for Power, little endian 8 ppc64le
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.8 ppc64le
Red Hat Enterprise Linux Server - TUS 8.8 x86_64
Red Hat Enterprise Linux for ARM 64 8 aarch64
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.8 aarch64
Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.8 ppc64le
Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.8 x86_64
Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 8.10 x86_64
Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 8.10 aarch64
Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 8.10 ppc64le
Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 8.10 s390x

Fixes

BZ - 2140698 - CVE-2022-3550 xorg-x11-server: buffer overflow in _GetCountedString() in xkb/xkb.c
BZ - 2140701 - CVE-2022-3551 xorg-x11-server: memory leak in ProcXkbGetKbdByName() in xkb/xkb.c
BZ - 2151755 - CVE-2022-46340 xorg-x11-server: XTestSwapFakeInput stack overflow
BZ - 2151756 - CVE-2022-46341 xorg-x11-server: XIPassiveUngrab out-of-bounds access
BZ - 2151757 - CVE-2022-46342 xorg-x11-server: XvdiSelectVideoNotify use-after-free
BZ - 2151758 - CVE-2022-46343 xorg-x11-server: ScreenSaverSetAttributes use-after-free
BZ - 2151760 - CVE-2022-46344 xorg-x11-server: XIChangeProperty out-of-bounds access
BZ - 2151761 - CVE-2022-4283 xorg-x11-server: XkbGetKbdByName use-after-free
BZ - 2165995 - CVE-2023-0494 xorg-x11-server: DeepCopyPointerClasses use-after-free leads to privilege elevation

CVEs

References

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux for x86_64 8

SRPM
xorg-x11-server-Xwayland-21.1.3-10.el8.src.rpm	SHA-256: 094b933f16819061d8f905ab05ea158013e92160f0cbe4b76c724b9f22853919
x86_64
xorg-x11-server-Xwayland-21.1.3-10.el8.x86_64.rpm	SHA-256: 3547c52ef01fde1f4a70cecb893f5784f15db081d19e82d10a1853c63998a3d7
xorg-x11-server-Xwayland-debuginfo-21.1.3-10.el8.x86_64.rpm	SHA-256: 3661edacd509d0b4f8e98d5ff9730e2690cfdac48afd81dc0ce5a51f68c13202
xorg-x11-server-Xwayland-debugsource-21.1.3-10.el8.x86_64.rpm	SHA-256: 0f7e4d85d38d01e7ddf320fa4cc9377d59f32be0a93f1cd964a052f327758bba

Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.8

SRPM
xorg-x11-server-Xwayland-21.1.3-10.el8.src.rpm	SHA-256: 094b933f16819061d8f905ab05ea158013e92160f0cbe4b76c724b9f22853919
x86_64
xorg-x11-server-Xwayland-21.1.3-10.el8.x86_64.rpm	SHA-256: 3547c52ef01fde1f4a70cecb893f5784f15db081d19e82d10a1853c63998a3d7
xorg-x11-server-Xwayland-debuginfo-21.1.3-10.el8.x86_64.rpm	SHA-256: 3661edacd509d0b4f8e98d5ff9730e2690cfdac48afd81dc0ce5a51f68c13202
xorg-x11-server-Xwayland-debugsource-21.1.3-10.el8.x86_64.rpm	SHA-256: 0f7e4d85d38d01e7ddf320fa4cc9377d59f32be0a93f1cd964a052f327758bba

Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.8

SRPM
xorg-x11-server-Xwayland-21.1.3-10.el8.src.rpm	SHA-256: 094b933f16819061d8f905ab05ea158013e92160f0cbe4b76c724b9f22853919
x86_64
xorg-x11-server-Xwayland-21.1.3-10.el8.x86_64.rpm	SHA-256: 3547c52ef01fde1f4a70cecb893f5784f15db081d19e82d10a1853c63998a3d7
xorg-x11-server-Xwayland-debuginfo-21.1.3-10.el8.x86_64.rpm	SHA-256: 3661edacd509d0b4f8e98d5ff9730e2690cfdac48afd81dc0ce5a51f68c13202
xorg-x11-server-Xwayland-debugsource-21.1.3-10.el8.x86_64.rpm	SHA-256: 0f7e4d85d38d01e7ddf320fa4cc9377d59f32be0a93f1cd964a052f327758bba

Red Hat Enterprise Linux for IBM z Systems 8

SRPM
xorg-x11-server-Xwayland-21.1.3-10.el8.src.rpm	SHA-256: 094b933f16819061d8f905ab05ea158013e92160f0cbe4b76c724b9f22853919
s390x
xorg-x11-server-Xwayland-21.1.3-10.el8.s390x.rpm	SHA-256: ef8b1592771bc7a9372efb5654cf2d9d99b06763ab12471987afd740e413a356
xorg-x11-server-Xwayland-debuginfo-21.1.3-10.el8.s390x.rpm	SHA-256: 46f285bda2e92bf43530d65fa9d9d9959ba18770a93516abaabf700c24b47d10
xorg-x11-server-Xwayland-debugsource-21.1.3-10.el8.s390x.rpm	SHA-256: 65f00b831c82c8bac46876c64f4bd4de6219167be7e45e87cf4d95061a166260

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.8

SRPM
xorg-x11-server-Xwayland-21.1.3-10.el8.src.rpm	SHA-256: 094b933f16819061d8f905ab05ea158013e92160f0cbe4b76c724b9f22853919
s390x
xorg-x11-server-Xwayland-21.1.3-10.el8.s390x.rpm	SHA-256: ef8b1592771bc7a9372efb5654cf2d9d99b06763ab12471987afd740e413a356
xorg-x11-server-Xwayland-debuginfo-21.1.3-10.el8.s390x.rpm	SHA-256: 46f285bda2e92bf43530d65fa9d9d9959ba18770a93516abaabf700c24b47d10
xorg-x11-server-Xwayland-debugsource-21.1.3-10.el8.s390x.rpm	SHA-256: 65f00b831c82c8bac46876c64f4bd4de6219167be7e45e87cf4d95061a166260

Red Hat Enterprise Linux for Power, little endian 8

SRPM
xorg-x11-server-Xwayland-21.1.3-10.el8.src.rpm	SHA-256: 094b933f16819061d8f905ab05ea158013e92160f0cbe4b76c724b9f22853919
ppc64le
xorg-x11-server-Xwayland-21.1.3-10.el8.ppc64le.rpm	SHA-256: af290fddb08f4edd26171858aca462a6a63b37d2f8832a9429e3d6e75986a07f
xorg-x11-server-Xwayland-debuginfo-21.1.3-10.el8.ppc64le.rpm	SHA-256: ee91c34ad32cd9cdf0a9c9a9e5a9191125481024c887bc286d42f15ada5f9cb0
xorg-x11-server-Xwayland-debugsource-21.1.3-10.el8.ppc64le.rpm	SHA-256: c0af522d80167f8c84744ccc920932e4f6a6be413037a15b2b5e54b978955e28

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.8

SRPM
xorg-x11-server-Xwayland-21.1.3-10.el8.src.rpm	SHA-256: 094b933f16819061d8f905ab05ea158013e92160f0cbe4b76c724b9f22853919
ppc64le
xorg-x11-server-Xwayland-21.1.3-10.el8.ppc64le.rpm	SHA-256: af290fddb08f4edd26171858aca462a6a63b37d2f8832a9429e3d6e75986a07f
xorg-x11-server-Xwayland-debuginfo-21.1.3-10.el8.ppc64le.rpm	SHA-256: ee91c34ad32cd9cdf0a9c9a9e5a9191125481024c887bc286d42f15ada5f9cb0
xorg-x11-server-Xwayland-debugsource-21.1.3-10.el8.ppc64le.rpm	SHA-256: c0af522d80167f8c84744ccc920932e4f6a6be413037a15b2b5e54b978955e28

Red Hat Enterprise Linux Server - TUS 8.8

SRPM
xorg-x11-server-Xwayland-21.1.3-10.el8.src.rpm	SHA-256: 094b933f16819061d8f905ab05ea158013e92160f0cbe4b76c724b9f22853919
x86_64
xorg-x11-server-Xwayland-21.1.3-10.el8.x86_64.rpm	SHA-256: 3547c52ef01fde1f4a70cecb893f5784f15db081d19e82d10a1853c63998a3d7
xorg-x11-server-Xwayland-debuginfo-21.1.3-10.el8.x86_64.rpm	SHA-256: 3661edacd509d0b4f8e98d5ff9730e2690cfdac48afd81dc0ce5a51f68c13202
xorg-x11-server-Xwayland-debugsource-21.1.3-10.el8.x86_64.rpm	SHA-256: 0f7e4d85d38d01e7ddf320fa4cc9377d59f32be0a93f1cd964a052f327758bba

Red Hat Enterprise Linux for ARM 64 8

SRPM
xorg-x11-server-Xwayland-21.1.3-10.el8.src.rpm	SHA-256: 094b933f16819061d8f905ab05ea158013e92160f0cbe4b76c724b9f22853919
aarch64
xorg-x11-server-Xwayland-21.1.3-10.el8.aarch64.rpm	SHA-256: af78e996a7823ed9ecc8a62452fb5a172538c3939cd7ac7d39f61e4cf731e208
xorg-x11-server-Xwayland-debuginfo-21.1.3-10.el8.aarch64.rpm	SHA-256: 8d2d1ab0597bca9daac08ca1f3af10efa95deb758c99f838d5177a81f9ebcab7
xorg-x11-server-Xwayland-debugsource-21.1.3-10.el8.aarch64.rpm	SHA-256: a8cc61e4e5f4f16c73e948c5707d3dc7e9635d2f7d84e23654759abd51877b49

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.8

SRPM
xorg-x11-server-Xwayland-21.1.3-10.el8.src.rpm	SHA-256: 094b933f16819061d8f905ab05ea158013e92160f0cbe4b76c724b9f22853919
aarch64
xorg-x11-server-Xwayland-21.1.3-10.el8.aarch64.rpm	SHA-256: af78e996a7823ed9ecc8a62452fb5a172538c3939cd7ac7d39f61e4cf731e208
xorg-x11-server-Xwayland-debuginfo-21.1.3-10.el8.aarch64.rpm	SHA-256: 8d2d1ab0597bca9daac08ca1f3af10efa95deb758c99f838d5177a81f9ebcab7
xorg-x11-server-Xwayland-debugsource-21.1.3-10.el8.aarch64.rpm	SHA-256: a8cc61e4e5f4f16c73e948c5707d3dc7e9635d2f7d84e23654759abd51877b49

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.8

SRPM
xorg-x11-server-Xwayland-21.1.3-10.el8.src.rpm	SHA-256: 094b933f16819061d8f905ab05ea158013e92160f0cbe4b76c724b9f22853919
ppc64le
xorg-x11-server-Xwayland-21.1.3-10.el8.ppc64le.rpm	SHA-256: af290fddb08f4edd26171858aca462a6a63b37d2f8832a9429e3d6e75986a07f
xorg-x11-server-Xwayland-debuginfo-21.1.3-10.el8.ppc64le.rpm	SHA-256: ee91c34ad32cd9cdf0a9c9a9e5a9191125481024c887bc286d42f15ada5f9cb0
xorg-x11-server-Xwayland-debugsource-21.1.3-10.el8.ppc64le.rpm	SHA-256: c0af522d80167f8c84744ccc920932e4f6a6be413037a15b2b5e54b978955e28

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.8

SRPM
xorg-x11-server-Xwayland-21.1.3-10.el8.src.rpm	SHA-256: 094b933f16819061d8f905ab05ea158013e92160f0cbe4b76c724b9f22853919
x86_64
xorg-x11-server-Xwayland-21.1.3-10.el8.x86_64.rpm	SHA-256: 3547c52ef01fde1f4a70cecb893f5784f15db081d19e82d10a1853c63998a3d7
xorg-x11-server-Xwayland-debuginfo-21.1.3-10.el8.x86_64.rpm	SHA-256: 3661edacd509d0b4f8e98d5ff9730e2690cfdac48afd81dc0ce5a51f68c13202
xorg-x11-server-Xwayland-debugsource-21.1.3-10.el8.x86_64.rpm	SHA-256: 0f7e4d85d38d01e7ddf320fa4cc9377d59f32be0a93f1cd964a052f327758bba

Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 8.10

SRPM
xorg-x11-server-Xwayland-21.1.3-10.el8.src.rpm	SHA-256: 094b933f16819061d8f905ab05ea158013e92160f0cbe4b76c724b9f22853919
x86_64
xorg-x11-server-Xwayland-21.1.3-10.el8.x86_64.rpm	SHA-256: 3547c52ef01fde1f4a70cecb893f5784f15db081d19e82d10a1853c63998a3d7
xorg-x11-server-Xwayland-debuginfo-21.1.3-10.el8.x86_64.rpm	SHA-256: 3661edacd509d0b4f8e98d5ff9730e2690cfdac48afd81dc0ce5a51f68c13202
xorg-x11-server-Xwayland-debugsource-21.1.3-10.el8.x86_64.rpm	SHA-256: 0f7e4d85d38d01e7ddf320fa4cc9377d59f32be0a93f1cd964a052f327758bba

Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 8.10

SRPM
xorg-x11-server-Xwayland-21.1.3-10.el8.src.rpm	SHA-256: 094b933f16819061d8f905ab05ea158013e92160f0cbe4b76c724b9f22853919
aarch64
xorg-x11-server-Xwayland-21.1.3-10.el8.aarch64.rpm	SHA-256: af78e996a7823ed9ecc8a62452fb5a172538c3939cd7ac7d39f61e4cf731e208
xorg-x11-server-Xwayland-debuginfo-21.1.3-10.el8.aarch64.rpm	SHA-256: 8d2d1ab0597bca9daac08ca1f3af10efa95deb758c99f838d5177a81f9ebcab7
xorg-x11-server-Xwayland-debugsource-21.1.3-10.el8.aarch64.rpm	SHA-256: a8cc61e4e5f4f16c73e948c5707d3dc7e9635d2f7d84e23654759abd51877b49

Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 8.10

SRPM
xorg-x11-server-Xwayland-21.1.3-10.el8.src.rpm	SHA-256: 094b933f16819061d8f905ab05ea158013e92160f0cbe4b76c724b9f22853919
ppc64le
xorg-x11-server-Xwayland-21.1.3-10.el8.ppc64le.rpm	SHA-256: af290fddb08f4edd26171858aca462a6a63b37d2f8832a9429e3d6e75986a07f
xorg-x11-server-Xwayland-debuginfo-21.1.3-10.el8.ppc64le.rpm	SHA-256: ee91c34ad32cd9cdf0a9c9a9e5a9191125481024c887bc286d42f15ada5f9cb0
xorg-x11-server-Xwayland-debugsource-21.1.3-10.el8.ppc64le.rpm	SHA-256: c0af522d80167f8c84744ccc920932e4f6a6be413037a15b2b5e54b978955e28

Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 8.10

SRPM
xorg-x11-server-Xwayland-21.1.3-10.el8.src.rpm	SHA-256: 094b933f16819061d8f905ab05ea158013e92160f0cbe4b76c724b9f22853919
s390x
xorg-x11-server-Xwayland-21.1.3-10.el8.s390x.rpm	SHA-256: ef8b1592771bc7a9372efb5654cf2d9d99b06763ab12471987afd740e413a356
xorg-x11-server-Xwayland-debuginfo-21.1.3-10.el8.s390x.rpm	SHA-256: 46f285bda2e92bf43530d65fa9d9d9959ba18770a93516abaabf700c24b47d10
xorg-x11-server-Xwayland-debugsource-21.1.3-10.el8.s390x.rpm	SHA-256: 65f00b831c82c8bac46876c64f4bd4de6219167be7e45e87cf4d95061a166260

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation