Security News > 2022 > July > X.org servers update closes 2 security holes, adds neat component tweaks
A batch of updates to X.org's suite of X11 servers and components just appeared.
Among the new features, there were also fixes for two security holes mentioned in an X.org Foundation security advisory, which covers CVE-2022-2319 and CVE-2022-2320.
Together, these mean that X.org version 21.1.4 will be a necessary update for a lot of people, alongside XWayland version 22.1.3.
The security fixes are not the only new stuff: multiple other X.org subcomponents got updates too, including xclipboard and xmodmap.
The X font server xfs has received an update along with xfontsel, but that isn't very important these days as it's been largely obsoleted by Xft. Many X.org drivers have been updated too, including for Synaptics touchpads, plus Cirrus Logic, ATI Mach64, and Matrox cards.
It's still the basis of the graphical desktop on just about every other UNIX. X.org still matters, even today.
News URL
https://go.theregister.com/feed/www.theregister.com/2022/07/13/xorg_servers_updated/
Related Vulnerability
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-01 | CVE-2022-2320 | Out-of-bounds Write vulnerability in X.Org Xorg-Server 21.1.0 A flaw was found in the Xorg-x11-server. | 7.8 |
| 2022-09-01 | CVE-2022-2319 | Unspecified vulnerability in X.Org Xorg-Server 21.1.0 A flaw was found in the Xorg-x11-server. | 7.8 |