-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2022-5495b36bed 2022-11-24 01:33:42.487528 --------------------------------------------------------------------------------
Name : xorg-x11-server-Xwayland Product : Fedora 35 Version : 21.1.4 Release : 3.fc35 URL : http://www.x.org Summary : Xwayland Description : Xwayland is an X server for running X clients under Wayland.
-------------------------------------------------------------------------------- Update Information:
Security fix for CVE-2022-3550, CVE-2022-3551 -------------------------------------------------------------------------------- ChangeLog:
* Tue Nov 8 2022 Olivier Fourdan ofourdan@redhat.com - 21.1.4-3 - Fix CVE-2022-3550, CVE-2022-3551 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2140698 - CVE-2022-3550 xorg-x11-server: buffer overflow in _GetCountedString() in xkb/xkb.c https://bugzilla.redhat.com/show_bug.cgi?id=2140698 [ 2 ] Bug #2140701 - CVE-2022-3551 xorg-x11-server: memory leak in ProcXkbGetKbdByName() in xkb/xkb.c https://bugzilla.redhat.com/show_bug.cgi?id=2140701 --------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-5495b36bed' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------