All Topics
All Topics
Technology
Technology
Design
Design
Programming
Programming
Science
Science
News
News
Gaming
Gaming
Entertainment
Entertainment
Business
Business
Finance
Finance
Sports
Sports
Health
Health
Food
Food
Travel
Travel
Art
Art
Music
Music
Books
Books
Education
Education
Politics
Politics
Personal
Personal
No algorithm. No AI slop. No ads. Just RSS. Pro-human. Indie writers. Real journalism. Open web. Chronological. Hand toasted.

X.Org Patches Nine Security Flaws in Server and Xwayland Updates

By

Bobby Borisov

6h ago· 3 min readenNews
Bagel score 80 of 100
80/100
Golden Brown
Bagelometer

The kind of bagel that ruins lesser bagels for you.

Score80TypenewsSentimentneutral

Summary

X.Org has released security updates (X.Org Server 21.1.23 and Xwayland 24.1.12) patching nine security vulnerabilities, including stack-based buffer overflows, use-after-free flaws, out-of-bounds read/write bugs, and information disclosure issues. The flaws affect components such as Font Alias handling, XSYNC, XKB, GLX, CreateSaverWindow, and DRI2. CVE identifiers were requested but not assigned before public disclosure.

Key quotes

· 4 pulled
X.Org has released security updates for both X.Org Server and Xwayland, addressing multiple vulnerabilities.
The advisory lists nine security issues, including stack-based buffer overflows, use-after-free flaws, out-of-bounds read and write bugs, and information disclosure vulnerabilities.
Affected components include Font Alias handling, XSYNC, XKB, GLX, CreateSaverWindow, and DRI2.
CVE identifiers were requested but not assigned before public disclosure.
Snippet from the RSS feed
X.Org Server 21.1.23 and Xwayland 24.1.12 fix multiple security flaws affecting both X11 and Wayland compatibility.

You might also wanna read

X.Org Security Advisory: Multiple Vulnerabilities Fixed in X Server 21.1.19 and Xwayland 24.1.9

X.Org has released security advisories for multiple vulnerabilities in X.Org X server (prior to version 21.1.18) and Xwayland (prior to vers

lists.x.org·7mo ago

React Server Components Security Vulnerabilities: Denial of Service and Source Code Exposure Risks

The React team has disclosed critical security vulnerabilities in React Server Components affecting versions 19.0.0 through 19.2.3, includin

react.dev·5mo ago

Next.js Security Update: Two New React Server Component Vulnerabilities Identified

Two new security vulnerabilities (CVE-2025-55183 and CVE-2025-55184) have been discovered in React Server Components (RSC) protocol, affecti

nextjs.org·5mo ago

libpng 1.6.51 Released with Security Fixes for Four Buffer Overflow Vulnerabilities

libpng 1.6.51 has been released to address four buffer overflow vulnerabilities discovered through fuzzing and security research. The releas

openwall.com·6mo ago

Libxslt Library Unmaintained with Multiple Unfixed Security Vulnerabilities

Libxslt, a widely used XML transformation library, is currently unmaintained and has multiple unfixed security vulnerabilities. Two of the t

vuxml.freebsd.org·9mo ago

The X.Org Server just got forked (announcing XLibre)

github.com·1y ago