A xorg-server security update has been released for Debian GNU/Linux 8 and 9 Extended LTS to address a potential use after free that may result in local privilege escalation.

ELA-794-1 xorg-server security update

Package : xorg-server
Version : 2:1.16.4-1+deb8u10 (jessie), 2:1.19.2-1+deb9u13 (stretch)

Related CVEs :
CVE-2023-0494

Jan-Niklas Sohn, working with Trend Micro Zero Day Initiative, discovered a vulnerability in the X.Org X server. A potential use after free mighty result in local privilege escalation if the X server is running privileged or remote code execution during ssh X forwarding sessions.

  ELA-794-1 xorg-server security update