Kutulutsidwa koyenera kwa X.Org Server 21.1.4 kulipo, komwe kumakonza zovuta ziwiri muzowongolera zowonjezera za Xkb, kukulolani kuti mukweze mwayi wanu pamakina ngati seva ya X ikugwira ntchito ngati mizu, kapena kugwiritsa ntchito kachidindo pakompyuta yakutali. ngati kuwongolera gawo kumagwiritsidwa ntchito kupeza X11 pogwiritsa ntchito SSH. Zowopsazi ndi chifukwa chosowa kukula koyenera kuwunika mu ProcXkbSetGeometry (CVE-2022-2319) ndi ProcXkbSetDeviceInfo (CVE-2022-2320), omwe angagwiritsidwe ntchito kulembera malo okumbukira kupitilira malire a buffer yomwe yaperekedwa. .
Pankhani ya ProcXkbSetGeometry, panalibe cheke cha kukula kwa minda yopempha, yomwe idalola kuti kasitomala apangitse kusefukira mwa kufotokoza magawo angapo mu pempho lomwe silinagwirizane ndi zomwe zidatumizidwadi. Mu ProcXkbSetDeviceInfo handler, chiwopsezocho chimayamba chifukwa cha dongosolo lolakwika la kuyimba foni - ntchito yowunikira magawo idayitanidwa pambuyo pa ntchito yomwe magawowa adagwiritsidwa ntchito (mayina azinthuzo adasakanizidwa ndipo XkbSetDeviceInfo idaphatikizanso code yowunikira. , ndi XkbSetDeviceInfoCheck - pokhazikitsa mfundo).
Source: opennet.ru