SECURITY: Fedora 35 Update: xorg-x11-server-Xwayland-21.1.4-3.fc35
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2022-5495b36bed
2022-11-24 01:33:42.487528
--------------------------------------------------------------------------------
Name : xorg-x11-server-Xwayland
Product : Fedora 35
Version : 21.1.4
Release : 3.fc35
URL : http://www.x.org
Summary : Xwayland
Description :
Xwayland is an X server for running X clients under Wayland.
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2022-3550, CVE-2022-3551
--------------------------------------------------------------------------------
ChangeLog:
* Tue Nov 8 2022 Olivier Fourdan - 21.1.4-3
- Fix CVE-2022-3550, CVE-2022-3551
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2140698 - CVE-2022-3550 xorg-x11-server: buffer overflow in _GetCountedString() in xkb/xkb.c
https://bugzilla.redhat.com/show_bug.cgi?id=2140698
[ 2 ] Bug #2140701 - CVE-2022-3551 xorg-x11-server: memory leak in ProcXkbGetKbdByName() in xkb/xkb.c
https://bugzilla.redhat.com/show_bug.cgi?id=2140701
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2022-5495b36bed' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
Axorg-x11-server-Xwayland security update has been released for Fedora 35.
