{ "document": { "aggregate_severity": { "text": "Important" }, "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "text": "TuxCare License Agreement", "tlp": { "label": "WHITE", "url": "https://www.first.org/tlp/" } }, "lang": "en", "notes": [ { "category": "legal_disclaimer", "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Cloud Linux Inc. and provide a link to the original.", "title": "Terms of Use" }, { "category": "details", "text": "CVE-2024-0409: fix incorrect cursor private key usage in Xwayland/Xephyr that\n caused XSELINUX devPrivates corruption\n- CVE-2025-26597: fix buffer overflow in XkbChangeTypesOfKey() by properly resizing\n key syms and actions when nGroups is zero\n- CVE-2025-26594: fix root cursor lifetime handling to prevent use-after-free\n and stale references", "title": "Details" } ], "publisher": { "category": "vendor", "contact_details": "https://tuxcare.com/contact/", "name": "TuxCare", "namespace": "https://tuxcare.com/" }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://security.tuxcare.com/csaf/v2/els_os/almalinux9.2esu/advisories/2025/clsa-2025_1763647564.json" }, { "category": "self", "summary": "https://cve.tuxcare.com/els/releases/CLSA-2025:1763647564", "url": "https://cve.tuxcare.com/els/releases/CLSA-2025:1763647564" } ], "tracking": { "current_release_date": "2026-02-16T09:49:48Z", "generator": { "date": "2026-02-16T09:49:48Z", "engine": { "name": "pyCSAF" } }, "id": "CLSA-2025:1763647564", "initial_release_date": "2025-11-20T14:07:01Z", "revision_history": [ { "date": "2025-11-20T14:07:01Z", "number": "1", "summary": "Initial version" }, { "date": "2026-02-16T09:49:48Z", "number": "2", "summary": "Update document" } ], "status": "final", "version": "2" }, "title": "xorg-x11-server-Xwayland: Fix of 3 CVEs" }, "product_tree": { "branches": [ { "branches": [ { "branches": [ { "category": "product_name", "name": "AlmaLinux 9.2", "product": { "name": "AlmaLinux 9.2", "product_id": "AlmaLinux-9.2", "product_identification_helper": { "cpe": "cpe:2.3:o:almalinux:almalinux:9.2:*:*:*:*:*:*:*" } } } ], "category": "product_family", "name": "AlmaLinux" } ], "category": "vendor", "name": "AlmaLinux OS Foundation" }, { "branches": [ { "branches": [ { "category": "product_version", "name": "xorg-x11-server-Xwayland-0:21.1.3-7.el9.tuxcare.els7.i686", "product": { "name": "xorg-x11-server-Xwayland-0:21.1.3-7.el9.tuxcare.els7.i686", "product_id": "xorg-x11-server-Xwayland-0:21.1.3-7.el9.tuxcare.els7.i686", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/xorg-x11-server-Xwayland@21.1.3-7.el9.tuxcare.els7?arch=i686" } } }, { "category": "product_version", "name": "xorg-x11-server-Xwayland-devel-0:21.1.3-7.el9.tuxcare.els7.i686", "product": { "name": "xorg-x11-server-Xwayland-devel-0:21.1.3-7.el9.tuxcare.els7.i686", "product_id": "xorg-x11-server-Xwayland-devel-0:21.1.3-7.el9.tuxcare.els7.i686", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/xorg-x11-server-Xwayland-devel@21.1.3-7.el9.tuxcare.els7?arch=i686" } } } ], "category": "architecture", "name": "i686" }, { "branches": [ { "category": "product_version", "name": "xorg-x11-server-Xwayland-0:21.1.3-7.el9.tuxcare.els7.x86_64", "product": { "name": "xorg-x11-server-Xwayland-0:21.1.3-7.el9.tuxcare.els7.x86_64", "product_id": "xorg-x11-server-Xwayland-0:21.1.3-7.el9.tuxcare.els7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/xorg-x11-server-Xwayland@21.1.3-7.el9.tuxcare.els7?arch=x86_64" } } }, { "category": "product_version", "name": "xorg-x11-server-Xwayland-devel-0:21.1.3-7.el9.tuxcare.els7.x86_64", "product": { "name": "xorg-x11-server-Xwayland-devel-0:21.1.3-7.el9.tuxcare.els7.x86_64", "product_id": "xorg-x11-server-Xwayland-devel-0:21.1.3-7.el9.tuxcare.els7.x86_64", "product_identification_helper": { "purl": "pkg:rpm/tuxcare/xorg-x11-server-Xwayland-devel@21.1.3-7.el9.tuxcare.els7?arch=x86_64" } } } ], "category": "architecture", "name": "x86_64" } ], "category": "vendor", "name": "TuxCare" } ], "relationships": [ { "category": "default_component_of", "full_product_name": { "name": "xorg-x11-server-Xwayland-0:21.1.3-7.el9.tuxcare.els7.i686 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:xorg-x11-server-Xwayland-0:21.1.3-7.el9.tuxcare.els7.i686" }, "product_reference": "xorg-x11-server-Xwayland-0:21.1.3-7.el9.tuxcare.els7.i686", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "xorg-x11-server-Xwayland-0:21.1.3-7.el9.tuxcare.els7.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:xorg-x11-server-Xwayland-0:21.1.3-7.el9.tuxcare.els7.x86_64" }, "product_reference": "xorg-x11-server-Xwayland-0:21.1.3-7.el9.tuxcare.els7.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "xorg-x11-server-Xwayland-devel-0:21.1.3-7.el9.tuxcare.els7.x86_64 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:xorg-x11-server-Xwayland-devel-0:21.1.3-7.el9.tuxcare.els7.x86_64" }, "product_reference": "xorg-x11-server-Xwayland-devel-0:21.1.3-7.el9.tuxcare.els7.x86_64", "relates_to_product_reference": "AlmaLinux-9.2" }, { "category": "default_component_of", "full_product_name": { "name": "xorg-x11-server-Xwayland-devel-0:21.1.3-7.el9.tuxcare.els7.i686 as a component of AlmaLinux 9.2", "product_id": "AlmaLinux-9.2:xorg-x11-server-Xwayland-devel-0:21.1.3-7.el9.tuxcare.els7.i686" }, "product_reference": "xorg-x11-server-Xwayland-devel-0:21.1.3-7.el9.tuxcare.els7.i686", "relates_to_product_reference": "AlmaLinux-9.2" } ] }, "vulnerabilities": [ { "cve": "CVE-2024-0229", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "notes": [ { "category": "description", "text": "An out-of-bounds memory access flaw was found in the X.Org server. This issue can be triggered when a device frozen by a sync grab is reattached to a different master device. This issue may lead to an application crash, local privilege escalation (if the server runs with extended privileges), or remote code execution in SSH X11 forwarding environments.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AlmaLinux-9.2:xorg-x11-server-Xwayland-0:21.1.3-7.el9.tuxcare.els7.i686", "AlmaLinux-9.2:xorg-x11-server-Xwayland-0:21.1.3-7.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:xorg-x11-server-Xwayland-devel-0:21.1.3-7.el9.tuxcare.els7.i686", "AlmaLinux-9.2:xorg-x11-server-Xwayland-devel-0:21.1.3-7.el9.tuxcare.els7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2024-0229" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2024:0320", "url": "https://access.redhat.com/errata/RHSA-2024:0320" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2024:0557", "url": "https://access.redhat.com/errata/RHSA-2024:0557" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2024:0558", "url": "https://access.redhat.com/errata/RHSA-2024:0558" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2024:0597", "url": "https://access.redhat.com/errata/RHSA-2024:0597" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2024:0607", "url": "https://access.redhat.com/errata/RHSA-2024:0607" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2024:0614", "url": "https://access.redhat.com/errata/RHSA-2024:0614" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2024:0617", "url": "https://access.redhat.com/errata/RHSA-2024:0617" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2024:0621", "url": "https://access.redhat.com/errata/RHSA-2024:0621" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2024:0626", "url": "https://access.redhat.com/errata/RHSA-2024:0626" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2024:0629", "url": "https://access.redhat.com/errata/RHSA-2024:0629" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2024:2169", "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2024:2170", "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2024:2995", "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2024:2996", "url": "https://access.redhat.com/errata/RHSA-2024:2996" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2025:12751", "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "category": "external", "summary": "https://access.redhat.com/security/cve/CVE-2024-0229", "url": "https://access.redhat.com/security/cve/CVE-2024-0229" }, { "category": "external", "summary": "https://bugzilla.redhat.com/show_bug.cgi?id=2256690", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256690" }, { "category": "external", "summary": "https://lists.debian.org/debian-lts-announce/2024/01/msg00016.html", "url": "https://lists.debian.org/debian-lts-announce/2024/01/msg00016.html" }, { "category": "external", "summary": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5J4H7CH565ALSZZYKOJFYDA5KFLG6NUK/", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5J4H7CH565ALSZZYKOJFYDA5KFLG6NUK/" }, { "category": "external", "summary": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EJBMCWQ54R6ZL3MYU2D2JBW6JMZL7BQW/", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EJBMCWQ54R6ZL3MYU2D2JBW6JMZL7BQW/" }, { "category": "external", "summary": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IZ75X54CN4IFYMIV7OK3JVZ57FHQIGIC/", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IZ75X54CN4IFYMIV7OK3JVZ57FHQIGIC/" } ], "release_date": "2024-02-09T07:16:00Z", "remediations": [ { "category": "vendor_fix", "date": "2025-11-20T14:06:06.727218Z", "details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2025:1763647564", "product_ids": [ "AlmaLinux-9.2:xorg-x11-server-Xwayland-0:21.1.3-7.el9.tuxcare.els7.i686", "AlmaLinux-9.2:xorg-x11-server-Xwayland-0:21.1.3-7.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:xorg-x11-server-Xwayland-devel-0:21.1.3-7.el9.tuxcare.els7.i686", "AlmaLinux-9.2:xorg-x11-server-Xwayland-devel-0:21.1.3-7.el9.tuxcare.els7.x86_64" ], "url": "https://cve.tuxcare.com/els/releases/CLSA-2025:1763647564" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AlmaLinux-9.2:xorg-x11-server-Xwayland-0:21.1.3-7.el9.tuxcare.els7.i686", "AlmaLinux-9.2:xorg-x11-server-Xwayland-0:21.1.3-7.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:xorg-x11-server-Xwayland-devel-0:21.1.3-7.el9.tuxcare.els7.i686", "AlmaLinux-9.2:xorg-x11-server-Xwayland-devel-0:21.1.3-7.el9.tuxcare.els7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2025-26597", "cwe": { "id": "CWE-119", "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer" }, "notes": [ { "category": "description", "text": "A buffer overflow flaw was found in X.Org and Xwayland. If XkbChangeTypesOfKey() is called with a 0 group, it will resize the key symbols table to 0 but leave the key actions unchanged. If the same function is later called with a non-zero value of groups, this will cause a buffer overflow because the key actions are of the wrong size.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AlmaLinux-9.2:xorg-x11-server-Xwayland-0:21.1.3-7.el9.tuxcare.els7.i686", "AlmaLinux-9.2:xorg-x11-server-Xwayland-0:21.1.3-7.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:xorg-x11-server-Xwayland-devel-0:21.1.3-7.el9.tuxcare.els7.i686", "AlmaLinux-9.2:xorg-x11-server-Xwayland-devel-0:21.1.3-7.el9.tuxcare.els7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2025-26597" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2025:2500", "url": "https://access.redhat.com/errata/RHSA-2025:2500" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2025:2502", "url": "https://access.redhat.com/errata/RHSA-2025:2502" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2025:2861", "url": "https://access.redhat.com/errata/RHSA-2025:2861" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2025:2862", "url": "https://access.redhat.com/errata/RHSA-2025:2862" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2025:2865", "url": "https://access.redhat.com/errata/RHSA-2025:2865" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2025:2866", "url": "https://access.redhat.com/errata/RHSA-2025:2866" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2025:2873", "url": "https://access.redhat.com/errata/RHSA-2025:2873" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2025:2874", "url": "https://access.redhat.com/errata/RHSA-2025:2874" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2025:2875", "url": "https://access.redhat.com/errata/RHSA-2025:2875" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2025:2879", "url": "https://access.redhat.com/errata/RHSA-2025:2879" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2025:2880", "url": "https://access.redhat.com/errata/RHSA-2025:2880" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2025:7163", "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2025:7165", "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2025:7458", "url": "https://access.redhat.com/errata/RHSA-2025:7458" }, { "category": "external", "summary": "https://access.redhat.com/security/cve/CVE-2025-26597", "url": "https://access.redhat.com/security/cve/CVE-2025-26597" }, { "category": "external", "summary": "https://bugzilla.redhat.com/show_bug.cgi?id=2345255", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345255" }, { "category": "external", "summary": "https://lists.debian.org/debian-lts-announce/2025/02/msg00036.html", "url": "https://lists.debian.org/debian-lts-announce/2025/02/msg00036.html" } ], "release_date": "2025-02-25T16:15:00Z", "remediations": [ { "category": "vendor_fix", "date": "2025-11-20T14:06:06.727218Z", "details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2025:1763647564", "product_ids": [ "AlmaLinux-9.2:xorg-x11-server-Xwayland-0:21.1.3-7.el9.tuxcare.els7.i686", "AlmaLinux-9.2:xorg-x11-server-Xwayland-0:21.1.3-7.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:xorg-x11-server-Xwayland-devel-0:21.1.3-7.el9.tuxcare.els7.i686", "AlmaLinux-9.2:xorg-x11-server-Xwayland-devel-0:21.1.3-7.el9.tuxcare.els7.x86_64" ], "url": "https://cve.tuxcare.com/els/releases/CLSA-2025:1763647564" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AlmaLinux-9.2:xorg-x11-server-Xwayland-0:21.1.3-7.el9.tuxcare.els7.i686", "AlmaLinux-9.2:xorg-x11-server-Xwayland-0:21.1.3-7.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:xorg-x11-server-Xwayland-devel-0:21.1.3-7.el9.tuxcare.els7.i686", "AlmaLinux-9.2:xorg-x11-server-Xwayland-devel-0:21.1.3-7.el9.tuxcare.els7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2024-0409", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "notes": [ { "category": "description", "text": "A flaw was found in the X.Org server. The cursor code in both Xephyr and Xwayland uses the wrong type of private at creation. It uses the cursor bits type with the cursor as private, and when initiating the cursor, that overwrites the XSELINUX context.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AlmaLinux-9.2:xorg-x11-server-Xwayland-0:21.1.3-7.el9.tuxcare.els7.i686", "AlmaLinux-9.2:xorg-x11-server-Xwayland-0:21.1.3-7.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:xorg-x11-server-Xwayland-devel-0:21.1.3-7.el9.tuxcare.els7.i686", "AlmaLinux-9.2:xorg-x11-server-Xwayland-devel-0:21.1.3-7.el9.tuxcare.els7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2024-0409" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2024:0320", "url": "https://access.redhat.com/errata/RHSA-2024:0320" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2024:2169", "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2024:2170", "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2024:2995", "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2024:2996", "url": "https://access.redhat.com/errata/RHSA-2024:2996" }, { "category": "external", "summary": "https://access.redhat.com/security/cve/CVE-2024-0409", "url": "https://access.redhat.com/security/cve/CVE-2024-0409" }, { "category": "external", "summary": "https://bugzilla.redhat.com/show_bug.cgi?id=2257690", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257690" }, { "category": "external", "summary": "https://lists.debian.org/debian-lts-announce/2024/01/msg00016.html", "url": "https://lists.debian.org/debian-lts-announce/2024/01/msg00016.html" }, { "category": "external", "summary": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5J4H7CH565ALSZZYKOJFYDA5KFLG6NUK/", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5J4H7CH565ALSZZYKOJFYDA5KFLG6NUK/" }, { "category": "external", "summary": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EJBMCWQ54R6ZL3MYU2D2JBW6JMZL7BQW/", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EJBMCWQ54R6ZL3MYU2D2JBW6JMZL7BQW/" }, { "category": "external", "summary": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IZ75X54CN4IFYMIV7OK3JVZ57FHQIGIC/", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IZ75X54CN4IFYMIV7OK3JVZ57FHQIGIC/" }, { "category": "external", "summary": "https://security.gentoo.org/glsa/202401-30", "url": "https://security.gentoo.org/glsa/202401-30" }, { "category": "external", "summary": "https://security.netapp.com/advisory/ntap-20240307-0006/", "url": "https://security.netapp.com/advisory/ntap-20240307-0006/" } ], "release_date": "2024-01-18T16:15:00Z", "remediations": [ { "category": "vendor_fix", "date": "2025-11-20T14:06:06.727218Z", "details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2025:1763647564", "product_ids": [ "AlmaLinux-9.2:xorg-x11-server-Xwayland-0:21.1.3-7.el9.tuxcare.els7.i686", "AlmaLinux-9.2:xorg-x11-server-Xwayland-0:21.1.3-7.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:xorg-x11-server-Xwayland-devel-0:21.1.3-7.el9.tuxcare.els7.i686", "AlmaLinux-9.2:xorg-x11-server-Xwayland-devel-0:21.1.3-7.el9.tuxcare.els7.x86_64" ], "url": "https://cve.tuxcare.com/els/releases/CLSA-2025:1763647564" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AlmaLinux-9.2:xorg-x11-server-Xwayland-0:21.1.3-7.el9.tuxcare.els7.i686", "AlmaLinux-9.2:xorg-x11-server-Xwayland-0:21.1.3-7.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:xorg-x11-server-Xwayland-devel-0:21.1.3-7.el9.tuxcare.els7.i686", "AlmaLinux-9.2:xorg-x11-server-Xwayland-devel-0:21.1.3-7.el9.tuxcare.els7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] }, { "cve": "CVE-2025-26594", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "notes": [ { "category": "description", "text": "A use-after-free flaw was found in X.Org and Xwayland. The root cursor is referenced in the X server as a global variable. If a client frees the root cursor, the internal reference points to freed memory and causes a use-after-free.", "title": "Vulnerability description" }, { "category": "general", "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", "title": "CVSS score applicability" } ], "product_status": { "fixed": [ "AlmaLinux-9.2:xorg-x11-server-Xwayland-0:21.1.3-7.el9.tuxcare.els7.i686", "AlmaLinux-9.2:xorg-x11-server-Xwayland-0:21.1.3-7.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:xorg-x11-server-Xwayland-devel-0:21.1.3-7.el9.tuxcare.els7.i686", "AlmaLinux-9.2:xorg-x11-server-Xwayland-devel-0:21.1.3-7.el9.tuxcare.els7.x86_64" ] }, "references": [ { "category": "self", "summary": "Canonical URL", "url": "https://cve.tuxcare.com/els/cve/CVE-2025-26594" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2025:2500", "url": "https://access.redhat.com/errata/RHSA-2025:2500" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2025:2502", "url": "https://access.redhat.com/errata/RHSA-2025:2502" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2025:2861", "url": "https://access.redhat.com/errata/RHSA-2025:2861" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2025:2862", "url": "https://access.redhat.com/errata/RHSA-2025:2862" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2025:2865", "url": "https://access.redhat.com/errata/RHSA-2025:2865" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2025:2866", "url": "https://access.redhat.com/errata/RHSA-2025:2866" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2025:2873", "url": "https://access.redhat.com/errata/RHSA-2025:2873" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2025:2874", "url": "https://access.redhat.com/errata/RHSA-2025:2874" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2025:2875", "url": "https://access.redhat.com/errata/RHSA-2025:2875" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2025:2879", "url": "https://access.redhat.com/errata/RHSA-2025:2879" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2025:2880", "url": "https://access.redhat.com/errata/RHSA-2025:2880" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2025:7163", "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2025:7165", "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "category": "external", "summary": "https://access.redhat.com/errata/RHSA-2025:7458", "url": "https://access.redhat.com/errata/RHSA-2025:7458" }, { "category": "external", "summary": "https://access.redhat.com/security/cve/CVE-2025-26594", "url": "https://access.redhat.com/security/cve/CVE-2025-26594" }, { "category": "external", "summary": "https://bugzilla.redhat.com/show_bug.cgi?id=2345248", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345248" }, { "category": "external", "summary": "https://lists.debian.org/debian-lts-announce/2025/02/msg00036.html", "url": "https://lists.debian.org/debian-lts-announce/2025/02/msg00036.html" } ], "release_date": "2025-02-25T16:15:00Z", "remediations": [ { "category": "vendor_fix", "date": "2025-11-20T14:06:06.727218Z", "details": "Details on how to apply the fix are available at: https://cve.tuxcare.com/els/releases/CLSA-2025:1763647564", "product_ids": [ "AlmaLinux-9.2:xorg-x11-server-Xwayland-0:21.1.3-7.el9.tuxcare.els7.i686", "AlmaLinux-9.2:xorg-x11-server-Xwayland-0:21.1.3-7.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:xorg-x11-server-Xwayland-devel-0:21.1.3-7.el9.tuxcare.els7.i686", "AlmaLinux-9.2:xorg-x11-server-Xwayland-devel-0:21.1.3-7.el9.tuxcare.els7.x86_64" ], "url": "https://cve.tuxcare.com/els/releases/CLSA-2025:1763647564" } ], "scores": [ { "cvss_v3": { "attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1" }, "products": [ "AlmaLinux-9.2:xorg-x11-server-Xwayland-0:21.1.3-7.el9.tuxcare.els7.i686", "AlmaLinux-9.2:xorg-x11-server-Xwayland-0:21.1.3-7.el9.tuxcare.els7.x86_64", "AlmaLinux-9.2:xorg-x11-server-Xwayland-devel-0:21.1.3-7.el9.tuxcare.els7.i686", "AlmaLinux-9.2:xorg-x11-server-Xwayland-devel-0:21.1.3-7.el9.tuxcare.els7.x86_64" ] } ], "threats": [ { "category": "impact", "details": "Important" } ] } ] }