X.Org Hit By New Security Vulnerabilities - Two Date Back To 1988 With X11R2

Linux@lemmy.ml – 236 points – 9 months ago

X.Org Hit By New Security Vulnerabilities - Two Date Back To 1988 With X11R2

Made public today was CVE-2023-43785 as an out-of-bounds memory access within the libX11 code that has been around since 1996. A second libX11 flaw is stack exhaustion from infinite recursion within the PutSubImage() function of libX11... This vulnerability has been around since X11R2 in February of 1988.

Due to these issues coming to light, libX11 1.8.7 and libXpm 3.5.17 were released today with the necessary security fixes. More details on these latest X.Org security vulnerabilities via today's X.Org security advisory.

You are viewing a single comment

View all comments Show the parent comment

Series 10 is safe to use in wayland?

[This comment has been deleted by an automated system]

Cool, thanks!