UbuntuUpdates.org

Package "xwayland"

Name: xwayland

Description:

X server for running X clients under Wayland
Latest version: 2:24.1.6-1ubuntu0.1
Release: plucky (25.04)
Level: security
Repository: main
Homepage: https://www.x.org/

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "xwayland"

32-bit deb package
64-bit deb package
APT INSTALL

Other versions of "xwayland" in Plucky

Repository Area Version
base main 2:24.1.6-1
updates main 2:24.1.6-1ubuntu0.1

Changelog

Version: 2:24.1.6-1ubuntu0.1 2025-06-17 19:07:46 UTC

  xwayland (2:24.1.6-1ubuntu0.1) plucky-security; urgency=medium

  * SECURITY UPDATE: Out-of-bounds access in X Rendering extension
    - debian/patches/CVE-2025-49175.patch: avoid 0 or less animated cursors
      in render/animcur.c, render/render.c.
    - CVE-2025-49175
  * SECURITY UPDATE: Integer overflow in Big Requests Extension
    - debian/patches/CVE-2025-49176.patch: do not overflow the integer size
      with BigRequest in dix/dispatch.c, os/io.c.
    - CVE-2025-49176
  * SECURITY UPDATE: Data leak in XFIXES Extension 6
    - debian/patches/CVE-2025-49177.patch: check request length for
      SetClientDisconnectMode in xfixes/disconnect.c.
    - CVE-2025-49177
  * SECURITY UPDATE: Unprocessed client request via bytes to ignore
    - debian/patches/CVE-2025-49178.patch: account for bytes to ignore when
      sharing input buffer in os/io.c.
    - CVE-2025-49178
  * SECURITY UPDATE: Integer overflow in X Record extension
    - debian/patches/CVE-2025-49179.patch: check for overflow in
      RecordSanityCheckRegisterClients() in record/record.c.
    - CVE-2025-49179
  * SECURITY UPDATE: Integer overflow in RandR extension
    - debian/patches/CVE-2025-49180-1.patch: check for overflow in
      RRChangeProviderProperty() in randr/rrproviderproperty.c.
    - CVE-2025-49180

 -- Marc Deslauriers <email address hidden> Wed, 11 Jun 2025 09:02:41 -0400


About   -   Send Feedback to @ubuntu_updates