(RHSA-2021:1804) Moderate: userspace graphics, xorg-x11, and mesa security, bug fix, and enhancement update

2021-05-1806:07:47

access.redhat.com

0.001 Low

EPSS

Percentile

26.7%

JSON

X.Org is an open-source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon.

Mesa provides a 3D graphics API that is compatible with Open Graphics Library (OpenGL). It also provides hardware-accelerated drivers for many popular graphics chips.

The following packages have been upgraded to a later upstream version: egl-wayland (1.1.5), libdrm (2.4.103), libglvnd (1.3.2), libinput (1.16.3), libwacom (1.6), mesa (20.3.3), xorg-x11-server (1.20.10). (BZ#1878160, BZ#1886648, BZ#1887654, BZ#1887655)

Security Fix(es):

xorg-x11-server: Out-of-bounds access in XkbSetNames function (CVE-2020-14345)
xorg-x11-server: Integer underflow in the X input extension protocol (CVE-2020-14346)
xorg-x11-server: Out-of-bounds access in XkbSetMap function (CVE-2020-14360)
xorg-x11-server: XkbSelectEvents integer underflow privilege escalation vulnerability (CVE-2020-14361)
xorg-x11-server: XRecordRegisterClients integer underflow privilege escalation vulnerability (CVE-2020-14362)
libX11: Integer overflow leads to double free in locale handling (CVE-2020-14363)
xorg-x11-server: XkbSetDeviceInfo heap-based buffer overflow privilege escalation vulnerability (CVE-2020-25712)
libX11: Heap overflow in the X input method client (CVE-2020-14344)
xorg-x11-server: Leak of uninitialized heap memory from the X server to clients in AllocatePixmap of dix/pixmap.c (CVE-2020-14347)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.4 Release Notes linked from the References section.

OSVersionArchitecturePackageVersionFilename
RedHat8i686mesa-libosmesa-devel< 20.3.3-2.el8mesa-libOSMesa-devel-20.3.3-2.el8.i686.rpm
RedHat8ppc64lelibwacom< 1.6-2.el8libwacom-1.6-2.el8.ppc64le.rpm
RedHat8x86_64xorg-x11-server-xwayland< 1.20.10-1.el8xorg-x11-server-Xwayland-1.20.10-1.el8.x86_64.rpm
RedHat8i686libglvnd-glx-debuginfo< 1.3.2-1.el8libglvnd-glx-debuginfo-1.3.2-1.el8.i686.rpm
RedHat8x86_64libinput-debuginfo< 1.16.3-1.el8libinput-debuginfo-1.16.3-1.el8.x86_64.rpm
RedHat8i686xorg-x11-server-debugsource< 1.20.10-1.el8xorg-x11-server-debugsource-1.20.10-1.el8.i686.rpm
RedHat8i686libwacom-devel< 1.6-2.el8libwacom-devel-1.6-2.el8.i686.rpm
RedHat8aarch64mesa-libxatracker-debuginfo< 20.3.3-2.el8mesa-libxatracker-debuginfo-20.3.3-2.el8.aarch64.rpm
RedHat8aarch64libx11-xcb< 1.6.8-4.el8libX11-xcb-1.6.8-4.el8.aarch64.rpm
RedHat8aarch64mesa-libglapi< 20.3.3-2.el8mesa-libglapi-20.3.3-2.el8.aarch64.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	8	i686	mesa-libosmesa-devel	< 20.3.3-2.el8	mesa-libOSMesa-devel-20.3.3-2.el8.i686.rpm
RedHat	8	ppc64le	libwacom	< 1.6-2.el8	libwacom-1.6-2.el8.ppc64le.rpm
RedHat	8	x86_64	xorg-x11-server-xwayland	< 1.20.10-1.el8	xorg-x11-server-Xwayland-1.20.10-1.el8.x86_64.rpm
RedHat	8	i686	libglvnd-glx-debuginfo	< 1.3.2-1.el8	libglvnd-glx-debuginfo-1.3.2-1.el8.i686.rpm
RedHat	8	x86_64	libinput-debuginfo	< 1.16.3-1.el8	libinput-debuginfo-1.16.3-1.el8.x86_64.rpm
RedHat	8	i686	xorg-x11-server-debugsource	< 1.20.10-1.el8	xorg-x11-server-debugsource-1.20.10-1.el8.i686.rpm
RedHat	8	i686	libwacom-devel	< 1.6-2.el8	libwacom-devel-1.6-2.el8.i686.rpm
RedHat	8	aarch64	mesa-libxatracker-debuginfo	< 20.3.3-2.el8	mesa-libxatracker-debuginfo-20.3.3-2.el8.aarch64.rpm
RedHat	8	aarch64	libx11-xcb	< 1.6.8-4.el8	libX11-xcb-1.6.8-4.el8.aarch64.rpm
RedHat	8	aarch64	mesa-libglapi	< 20.3.3-2.el8	mesa-libglapi-20.3.3-2.el8.aarch64.rpm