Debian Linux Security Advisory 5342-1 - Jan-Niklas Sohn discovered that a user-after-free flaw in the X Input extension of the X.org X server may result in privilege escalation if the X server is running under the root user.
d9cd986f6b68c068a98e8f263690e16240a4bad3bcee76be602630f0b4931e29