[Git][security-tracker-team/security-tracker][master] lts: CVE-2025-49177/xorg-server n/a on bullseye
Emilio Pozuelo Monfort (@pochu)
pochu at debian.org
Wed Jun 25 11:20:45 BST 2025
Emilio Pozuelo Monfort pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a0e8a40b by Emilio Pozuelo Monfort at 2025-06-25T12:20:18+02:00
lts: CVE-2025-49177/xorg-server n/a on bullseye
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -3212,6 +3212,7 @@ CVE-2025-49178 (A flaw was found in the X server's request handling. Non-zero 'b
CVE-2025-49177 (A flaw was found in the XFIXES extension. The XFixesSetClientDisconnec ...)
{DSA-5947-1}
- xorg-server 2:21.1.16-1.2
+ [bullseye] - xorg-server <not-affected> (Vulnerable code introduced later)
- xwayland <unfixed>
[bookworm] - xwayland <ignored> (Minor issue; Xwayland shouldn't be running as root)
NOTE: Fixed by: https://gitlab.freedesktop.org/xorg/xserver/-/commit/ab02fb96b1c701c3bb47617d965522c34befa6af
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a0e8a40bdfe8b8b99412a9ce0eaaa9f8720b4e4b
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a0e8a40bdfe8b8b99412a9ce0eaaa9f8720b4e4b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250625/d96c1167/attachment.htm>
More information about the debian-security-tracker-commits
mailing list