Gyaran sakewa na X.Org Server 21.1.5 da xwayland 22.1.6, na'ura-Dependent X (DDX) bangaren da ke ba da damar X.Org Server don gudanar da aikace-aikacen X11 a cikin wuraren da ke cikin Wayland, an buga su. Sabbin sigogin suna gyara lahani guda shida waɗanda za a iya amfani da su don haɓaka gata akan tsarin da ke gudana uwar garken X azaman tushen, da kuma aiwatar da lambar nesa a cikin jeri waɗanda ke amfani da isar da zaman X11 ta hanyar SSH.
- CVE-2022-46340 - Tari ambaliya lokacin sarrafa buƙatun XTestSwapFakeInput tare da bayanan da ya fi girma fiye da 32 bytes da aka wuce zuwa filin GenericEvents.
- CVE-2022-46341 - Akwai rashin lahani na shiga daga waje yayin da ake gudanar da buƙatun XIPassiveUngrab da ake kira tare da manyan maɓalli ko lambobin maɓalli.
- CVE-2022-46342 - Akwai rashin lahani bayan-free amfani saboda magudin buƙatun XvdiSelectVideoNotify.
- CVE-2022-46343 - Amfani-bayan-lalacewar-kyauta saboda neman magudin aikace-aikacen ScreenSaverSetAttributes.
- CVE-2022-46344 - Rashin iyakoki na samun damar bayanai lokacin sarrafa buƙatun XIChangeProperty tare da manyan sigogi.
- CVE-2022-46283 - Lalacewar amfani bayan-kyauta saboda magudin buƙatun XkbGetKbdByName.
source: budenet.ru
