ProHoster > Blog > internet nhau > X.Org Server 21.1.18 inogadziridza ine 6 kusasimba kwakagadziriswa

X.Org Server 21.1.18 inogadziridza ine 6 kusasimba kwakagadziriswa

Kururamisa kuburitswa kweX.Org Server 21.1.17 uye DDX (Chishandiso-Inotsamira X) chikamu xwayland 24.1.7 zvakatsikiswa, izvo zvinove nechokwadi kutangwa kweX.Org Server yekuronga kuitwa kweX11 maapplication munzvimbo dzeWayland-based. Shanduro itsva yeX.Org Server inogadzirisa 6. Nyaya idzi dzinogona kushandiswa kukwidziridza maropafadzo pane masisitimu ari kushanda sevhavha yeX semudzi, uye kuita kodhi kure kure pane zvigadziriso uko X11 chikamu chekutumira chinoshandiswa kuwana kuburikidza neSSH.

Zvinozivikanwa vulnerabilities:

  • CVE-2025-49176 - Kufashukira kwakazara kunotungamira kuhuwori hwendangariro kuripo mukuitwa kweBig Zvikumbiro zvekuwedzera, izvo zvinobvumira kutumira zvikumbiro zvakakura kupfuura 64 kilobytes. Kusagadzikana kwave kuripo kubva pakaburitswa X11R6.0 (1994).
  • CVE-2025-49179 - Kufashukira kwakazara kunotungamira kuhuwori hwendangariro kuripo muX Rekodha yekuwedzera kushandiswa kana uchitumira yakakura yakawandisa nhamba yemutengi kana huwandu. Kusagadzikana kwave kuripo kubvira X11R6.1 (1996).
  • CVE-2025-49180 kuwanda kwakazara kunotungamira kuhuwori hwekurangarira mukuitwa kweRandR yekuwedzera. Kusagadzikana kunoonekwa kubva pakaburitswa 1.13 RC1 (2012).
  • CVE-2025-49178 -Kugona kwekugadzira mamiriro anotungamira kuvharidzira zvikumbiro kubva kune vamwe vatengi. Kusagadzikana kunozviratidza kubva pakaburitswa Xorg 1.10.0
  • CVE-2025-49175 - Kunze-kwe-maganho verenga mu X Rendering yekuwedzera paunenge uchiita mashandiro pane animated cursors. Kusagadzikana kwave kuripo kubvira XFree86 4.3.0 (2003).
  • CVE-2025-49177 - Kudonha kwedata mukushandiswa kwekuwedzera kweXFIXES kunokonzerwa nekushaikwa kwekutarisa saizi yekukumbira kwemutengi muXFixesSetClientDisconnectMode handler (mutengi anogona kutumira chikumbiro chipfupi uye kuverenga data yechikumbiro chekare. Kusagadzikana kunozviratidza kubva pakaburitswa Xorg Server 21.1RC1).

Kwidziridzo: Kupisa pazvitsitsinho zvekuburitswa uku, X.Org Server 21.1.18 uye xwayland 24.1.8 zvakaburitswa, izvo zvinosanganisira dzimwe shanduko kugadzirisa CVE-2025-49176 kushaya simba.

Source: opennet.ru

Voeg