Ubuntu Security Notice USN-5846-1

Ubuntu Security Notice USN-5846-1: Posted Feb 8, 2023; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 5846-1 - Jan-Niklas Sohn discovered that the X.Org X Server incorrectly handled certain memory operations. An attacker could possibly use these issues to cause the X Server to crash, execute arbitrary code, or escalate privileges.; tags | advisory, arbitrary; systems | linux, ubuntu; advisories | CVE-2023-0494; SHA-256 | 20b14bba6bf0005b56c4052dec5d080c08df04d9798cd779224b69132af76c17; Download | Favorite | View

Ubuntu Security Notice USN-5846-1

==========================================================================
Ubuntu Security Notice USN-5846-1
February 07, 2023

xorg-server, xorg-server-hwe-18.04, xwayland vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 22.10
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS
- Ubuntu 18.04 LTS

Summary:

X.Org X Server could be made to crash or run programs as the administrator
if it received specially crafted input.

Software Description:
- xorg-server: X.Org X11 server
- xwayland: X server for running X clients under Wayland
- xorg-server-hwe-18.04: X.Org X11 server

Details:

Jan-Niklas Sohn discovered that the X.Org X Server incorrectly handled
certain memory operations. An attacker could possibly use these issues to
cause the X Server to crash, execute arbitrary code, or escalate
privileges.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 22.10:
   xserver-xorg-core               2:21.1.4-2ubuntu1.5
   xwayland                        2:22.1.3-2ubuntu0.3

Ubuntu 22.04 LTS:
   xserver-xorg-core               2:21.1.3-2ubuntu2.7
   xwayland                        2:22.1.1-1ubuntu0.5

Ubuntu 20.04 LTS:
   xserver-xorg-core               2:1.20.13-1ubuntu1~20.04.6
   xwayland                        2:1.20.13-1ubuntu1~20.04.6

Ubuntu 18.04 LTS:
   xserver-xorg-core               2:1.19.6-1ubuntu4.14
   xserver-xorg-core-hwe-18.04     2:1.20.8-2ubuntu2.2~18.04.10
   xwayland                        2:1.19.6-1ubuntu4.14
   xwayland-hwe-18.04              2:1.20.8-2ubuntu2.2~18.04.10

After a standard system update you need to reboot your computer to make all
the necessary changes.

References:
   https://ubuntu.com/security/notices/USN-5846-1
   CVE-2023-0494

Package Information:
   https://launchpad.net/ubuntu/+source/xorg-server/2:21.1.4-2ubuntu1.5
   https://launchpad.net/ubuntu/+source/xwayland/2:22.1.3-2ubuntu0.3
   https://launchpad.net/ubuntu/+source/xorg-server/2:21.1.3-2ubuntu2.7
   https://launchpad.net/ubuntu/+source/xwayland/2:22.1.1-1ubuntu0.5
   https://launchpad.net/ubuntu/+source/xorg-server/2:1.20.13-1ubuntu1~20.04.6
   https://launchpad.net/ubuntu/+source/xorg-server/2:1.19.6-1ubuntu4.14
 
https://launchpad.net/ubuntu/+source/xorg-server-hwe-18.04/2:1.20.8-2ubuntu2.2~18.04.10

Top Authors In Last 30 Days

Red Hat 183 files
Ubuntu 59 files
Debian 20 files
Valentin Lobstein 11 files
nu11secur1ty 9 files
Apple 6 files
Google Security Research 6 files
E1.Coders 4 files
Ersin Erenler 4 files
tmrswrr 4 files

File Archives

Systems

AIX (429)
Apple (2,078)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,007)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,467)
HPUX (880)
iOS (373)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,166)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (15,459)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,428)
UNIX (9,390)
UnixWare (187)
Windows (6,647)
Other

Ubuntu Security Notice USN-5846-1

Ubuntu Security Notice USN-5846-1

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Ubuntu Security Notice USN-5846-1

Share This

Ubuntu Security Notice USN-5846-1

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems