{ "document":{ "aggregate_severity":{ "namespace":"https://nvd.nist.gov/vuln-metrics/cvss", "text":"High" }, "category":"csaf_vex", "csaf_version":"2.0", "distribution":{ "tlp":{ "label":"WHITE", "url":"https:/www.first.org/tlp/" } }, "lang":"en", "notes":[ { "text":"xorg-x11-server security update", "category":"general", "title":"Synopsis" }, { "text":"An update for xorg-x11-server is now available for openEuler-20.03-LTS-SP3.", "category":"general", "title":"Summary" }, { "text":"\n\nSecurity Fix(es):\n\nA flaw was found in xorg-x11-server in versions before 21.1.2 and before 1.20.14. An out-of-bounds access can occur in the SProcRenderCompositeGlyphs function. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.(CVE-2021-4008)\n\nA flaw was found in xorg-x11-server in versions before 21.1.2 and before 1.20.14. An out-of-bounds access can occur in the SProcXFixesCreatePointerBarrier function. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.(CVE-2021-4009)\n\nA security issue has been found in X.Org before version 21.1.2 and Xwayland before version 21.1.4. The handler for the Suspend request of the Screen Saver extension does not properly validate the request length leading to an out of bounds memory write. This can lead to local privileges elevation on systems where the X server is running privileged and remote code execution for SSH X forwarding sessions.(CVE-2021-4010)\n\nA flaw was found in xorg-x11-server in versions before 21.1.2 and before 1.20.14. An out-of-bounds access can occur in the SwapCreateRegister function. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.(CVE-2021-4011)", "category":"general", "title":"Description" }, { "text":"An update for xorg-x11-server is now available for openEuler-20.03-LTS-SP3.\n\nopenEuler Security has rated this update as having a security impact of high. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section.", "category":"general", "title":"Topic" }, { "text":"High", "category":"general", "title":"Severity" }, { "text":"xorg-x11-server", "category":"general", "title":"Affected Component" } ], "publisher":{ "issuing_authority":"openEuler security committee", "name":"openEuler", "namespace":"https://www.openeuler.org", "contact_details":"openeuler-security@openeuler.org", "category":"vendor" }, "references":[ { "summary":"openEuler-SA-2022-1949", "category":"self", "url":"https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2022-1949" }, { "summary":"CVE-2021-4008", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail?cveId=CVE-2021-4008&packageName=xorg-x11-server" }, { "summary":"CVE-2021-4009", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail?cveId=CVE-2021-4009&packageName=xorg-x11-server" }, { "summary":"CVE-2021-4010", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail?cveId=CVE-2021-4010&packageName=xorg-x11-server" }, { "summary":"CVE-2021-4011", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail?cveId=CVE-2021-4011&packageName=xorg-x11-server" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2021-4008" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2021-4009" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2021-4010" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2021-4011" }, { "summary":"openEuler-SA-2022-1949 vex file", "category":"self", "url":"https://repo.openeuler.org/security/data/csaf/advisories/2022/csaf-openeuler-sa-2022-1949.json" } ], "title":"An update for xorg-x11-server is now available for openEuler-20.03-LTS-SP3", "tracking":{ "initial_release_date":"2022-09-23T09:45:47+08:00", "revision_history":[ { "date":"2022-09-23T09:45:47+08:00", "summary":"Initial", "number":"1.0.0" }, { "date":"2024-10-31T09:45:47+08:00", "summary":"final", "number":"2.0.0" } ], "generator":{ "date":"2024-10-31T09:45:47+08:00", "engine":{ "name":"openEuler CSAF Tool V1.0" } }, "current_release_date":"2024-10-31T09:45:47+08:00", "id":"openEuler-SA-2022-1949", "version":"2.0.0", "status":"final" } }, "product_tree":{ "branches":[ { "name":"openEuler", "category":"vendor", "branches":[ { "name":"openEuler", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:20.03-LTS-SP3" }, "product_id":"openEuler-20.03-LTS-SP3", "name":"openEuler-20.03-LTS-SP3" }, "name":"openEuler-20.03-LTS-SP3", "category":"product_version" } ], "category":"product_name" }, { "name":"aarch64", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:20.03-LTS-SP3" }, "product_id":"xorg-x11-server-1.20.8-12.oe1.aarch64.rpm(20.03-LTS-SP3)", "name":"xorg-x11-server-1.20.8-12.oe1.aarch64.rpm" }, "name":"xorg-x11-server-1.20.8-12.oe1.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:20.03-LTS-SP3" }, "product_id":"xorg-x11-server-debuginfo-1.20.8-12.oe1.aarch64.rpm(20.03-LTS-SP3)", "name":"xorg-x11-server-debuginfo-1.20.8-12.oe1.aarch64.rpm" }, "name":"xorg-x11-server-debuginfo-1.20.8-12.oe1.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:20.03-LTS-SP3" }, "product_id":"xorg-x11-server-Xephyr-1.20.8-12.oe1.aarch64.rpm(20.03-LTS-SP3)", "name":"xorg-x11-server-Xephyr-1.20.8-12.oe1.aarch64.rpm" }, "name":"xorg-x11-server-Xephyr-1.20.8-12.oe1.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:20.03-LTS-SP3" }, "product_id":"xorg-x11-server-devel-1.20.8-12.oe1.aarch64.rpm(20.03-LTS-SP3)", "name":"xorg-x11-server-devel-1.20.8-12.oe1.aarch64.rpm" }, "name":"xorg-x11-server-devel-1.20.8-12.oe1.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:20.03-LTS-SP3" }, "product_id":"xorg-x11-server-debugsource-1.20.8-12.oe1.aarch64.rpm(20.03-LTS-SP3)", "name":"xorg-x11-server-debugsource-1.20.8-12.oe1.aarch64.rpm" }, "name":"xorg-x11-server-debugsource-1.20.8-12.oe1.aarch64.rpm", "category":"product_version" } ], "category":"architecture" }, { "name":"noarch", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:20.03-LTS-SP3" }, "product_id":"xorg-x11-server-help-1.20.8-12.oe1.noarch.rpm(20.03-LTS-SP3)", "name":"xorg-x11-server-help-1.20.8-12.oe1.noarch.rpm" }, "name":"xorg-x11-server-help-1.20.8-12.oe1.noarch.rpm", "category":"product_version" } ], "category":"architecture" }, { "name":"src", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:20.03-LTS-SP3" }, "product_id":"xorg-x11-server-1.20.8-12.oe1.src.rpm(20.03-LTS-SP3)", "name":"xorg-x11-server-1.20.8-12.oe1.src.rpm" }, "name":"xorg-x11-server-1.20.8-12.oe1.src.rpm", "category":"product_version" } ], "category":"architecture" }, { "name":"x86_64", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:20.03-LTS-SP3" }, "product_id":"xorg-x11-server-devel-1.20.8-12.oe1.x86_64.rpm(20.03-LTS-SP3)", "name":"xorg-x11-server-devel-1.20.8-12.oe1.x86_64.rpm" }, "name":"xorg-x11-server-devel-1.20.8-12.oe1.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:20.03-LTS-SP3" }, "product_id":"xorg-x11-server-debuginfo-1.20.8-12.oe1.x86_64.rpm(20.03-LTS-SP3)", "name":"xorg-x11-server-debuginfo-1.20.8-12.oe1.x86_64.rpm" }, "name":"xorg-x11-server-debuginfo-1.20.8-12.oe1.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:20.03-LTS-SP3" }, "product_id":"xorg-x11-server-debugsource-1.20.8-12.oe1.x86_64.rpm(20.03-LTS-SP3)", "name":"xorg-x11-server-debugsource-1.20.8-12.oe1.x86_64.rpm" }, "name":"xorg-x11-server-debugsource-1.20.8-12.oe1.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:20.03-LTS-SP3" }, "product_id":"xorg-x11-server-Xephyr-1.20.8-12.oe1.x86_64.rpm(20.03-LTS-SP3)", "name":"xorg-x11-server-Xephyr-1.20.8-12.oe1.x86_64.rpm" }, "name":"xorg-x11-server-Xephyr-1.20.8-12.oe1.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:20.03-LTS-SP3" }, "product_id":"xorg-x11-server-1.20.8-12.oe1.x86_64.rpm(20.03-LTS-SP3)", "name":"xorg-x11-server-1.20.8-12.oe1.x86_64.rpm" }, "name":"xorg-x11-server-1.20.8-12.oe1.x86_64.rpm", "category":"product_version" } ], "category":"architecture" } ] } ], "relationships":[ { "relates_to_product_reference":"openEuler-20.03-LTS-SP3", "product_reference":"xorg-x11-server-1.20.8-12.oe1.aarch64.rpm(20.03-LTS-SP3)", "full_product_name":{ "product_id":"openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.aarch64", "name":"xorg-x11-server-1.20.8-12.oe1.aarch64 as a component of openEuler-20.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-20.03-LTS-SP3", "product_reference":"xorg-x11-server-debuginfo-1.20.8-12.oe1.aarch64.rpm(20.03-LTS-SP3)", "full_product_name":{ "product_id":"openEuler-20.03-LTS-SP3:xorg-x11-server-debuginfo-1.20.8-12.oe1.aarch64", "name":"xorg-x11-server-debuginfo-1.20.8-12.oe1.aarch64 as a component of openEuler-20.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-20.03-LTS-SP3", "product_reference":"xorg-x11-server-Xephyr-1.20.8-12.oe1.aarch64.rpm(20.03-LTS-SP3)", "full_product_name":{ "product_id":"openEuler-20.03-LTS-SP3:xorg-x11-server-Xephyr-1.20.8-12.oe1.aarch64", "name":"xorg-x11-server-Xephyr-1.20.8-12.oe1.aarch64 as a component of openEuler-20.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-20.03-LTS-SP3", "product_reference":"xorg-x11-server-devel-1.20.8-12.oe1.aarch64.rpm(20.03-LTS-SP3)", "full_product_name":{ "product_id":"openEuler-20.03-LTS-SP3:xorg-x11-server-devel-1.20.8-12.oe1.aarch64", "name":"xorg-x11-server-devel-1.20.8-12.oe1.aarch64 as a component of openEuler-20.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-20.03-LTS-SP3", "product_reference":"xorg-x11-server-debugsource-1.20.8-12.oe1.aarch64.rpm(20.03-LTS-SP3)", "full_product_name":{ "product_id":"openEuler-20.03-LTS-SP3:xorg-x11-server-debugsource-1.20.8-12.oe1.aarch64", "name":"xorg-x11-server-debugsource-1.20.8-12.oe1.aarch64 as a component of openEuler-20.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-20.03-LTS-SP3", "product_reference":"xorg-x11-server-help-1.20.8-12.oe1.noarch.rpm(20.03-LTS-SP3)", "full_product_name":{ "product_id":"openEuler-20.03-LTS-SP3:xorg-x11-server-help-1.20.8-12.oe1.noarch", "name":"xorg-x11-server-help-1.20.8-12.oe1.noarch as a component of openEuler-20.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-20.03-LTS-SP3", "product_reference":"xorg-x11-server-1.20.8-12.oe1.src.rpm(20.03-LTS-SP3)", "full_product_name":{ "product_id":"openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.src", "name":"xorg-x11-server-1.20.8-12.oe1.src as a component of openEuler-20.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-20.03-LTS-SP3", "product_reference":"xorg-x11-server-devel-1.20.8-12.oe1.x86_64.rpm(20.03-LTS-SP3)", "full_product_name":{ "product_id":"openEuler-20.03-LTS-SP3:xorg-x11-server-devel-1.20.8-12.oe1.x86_64", "name":"xorg-x11-server-devel-1.20.8-12.oe1.x86_64 as a component of openEuler-20.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-20.03-LTS-SP3", "product_reference":"xorg-x11-server-debuginfo-1.20.8-12.oe1.x86_64.rpm(20.03-LTS-SP3)", "full_product_name":{ "product_id":"openEuler-20.03-LTS-SP3:xorg-x11-server-debuginfo-1.20.8-12.oe1.x86_64", "name":"xorg-x11-server-debuginfo-1.20.8-12.oe1.x86_64 as a component of openEuler-20.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-20.03-LTS-SP3", "product_reference":"xorg-x11-server-debugsource-1.20.8-12.oe1.x86_64.rpm(20.03-LTS-SP3)", "full_product_name":{ "product_id":"openEuler-20.03-LTS-SP3:xorg-x11-server-debugsource-1.20.8-12.oe1.x86_64", "name":"xorg-x11-server-debugsource-1.20.8-12.oe1.x86_64 as a component of openEuler-20.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-20.03-LTS-SP3", "product_reference":"xorg-x11-server-Xephyr-1.20.8-12.oe1.x86_64.rpm(20.03-LTS-SP3)", "full_product_name":{ "product_id":"openEuler-20.03-LTS-SP3:xorg-x11-server-Xephyr-1.20.8-12.oe1.x86_64", "name":"xorg-x11-server-Xephyr-1.20.8-12.oe1.x86_64 as a component of openEuler-20.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-20.03-LTS-SP3", "product_reference":"xorg-x11-server-1.20.8-12.oe1.x86_64.rpm(20.03-LTS-SP3)", "full_product_name":{ "product_id":"openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.x86_64", "name":"xorg-x11-server-1.20.8-12.oe1.x86_64 as a component of openEuler-20.03-LTS-SP3" }, "category":"default_component_of" } ] }, "vulnerabilities":[ { "cve":"CVE-2021-4008", "notes":[ { "text":"A security issue has been found in X.Org before version 21.1.2 and Xwayland before version 21.1.4. The handler for the CompositeGlyphs request of the Render extension does not properly validate the request length leading to out of bounds memory write. This can lead to local privileges elevation on systems where the X server is running privileged and remote code execution for SSH X forwarding sessions.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debuginfo-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-Xephyr-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-devel-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debugsource-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-help-1.20.8-12.oe1.noarch", "openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.src", "openEuler-20.03-LTS-SP3:xorg-x11-server-devel-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debuginfo-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debugsource-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-Xephyr-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debuginfo-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-Xephyr-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-devel-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debugsource-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-help-1.20.8-12.oe1.noarch", "openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.src", "openEuler-20.03-LTS-SP3:xorg-x11-server-devel-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debuginfo-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debugsource-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-Xephyr-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.x86_64" ], "details":"xorg-x11-server security update", "category":"vendor_fix", "url":"https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2022-1949" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"HIGH", "baseScore":7.8, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version":"3.1" }, "products":[ "openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debuginfo-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-Xephyr-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-devel-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debugsource-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-help-1.20.8-12.oe1.noarch", "openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.src", "openEuler-20.03-LTS-SP3:xorg-x11-server-devel-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debuginfo-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debugsource-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-Xephyr-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.x86_64" ] } ], "threats":[ { "details":"High", "category":"impact" } ], "title":"CVE-2021-4008" }, { "cve":"CVE-2021-4009", "notes":[ { "text":"A security issue has been found in X.Org before version 21.1.2 and Xwayland before version 21.1.4. The handler for the CreatePointerBarrier request of the XFixes extension does not properly validate the request length leading to out of bounds memory write. This can lead to local privileges elevation on systems where the X server is running privileged and remote code execution for SSH X forwarding sessions.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debuginfo-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-Xephyr-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-devel-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debugsource-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-help-1.20.8-12.oe1.noarch", "openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.src", "openEuler-20.03-LTS-SP3:xorg-x11-server-devel-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debuginfo-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debugsource-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-Xephyr-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debuginfo-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-Xephyr-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-devel-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debugsource-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-help-1.20.8-12.oe1.noarch", "openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.src", "openEuler-20.03-LTS-SP3:xorg-x11-server-devel-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debuginfo-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debugsource-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-Xephyr-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.x86_64" ], "details":"xorg-x11-server security update", "category":"vendor_fix", "url":"https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2022-1949" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"HIGH", "baseScore":7.8, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version":"3.1" }, "products":[ "openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debuginfo-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-Xephyr-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-devel-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debugsource-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-help-1.20.8-12.oe1.noarch", "openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.src", "openEuler-20.03-LTS-SP3:xorg-x11-server-devel-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debuginfo-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debugsource-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-Xephyr-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.x86_64" ] } ], "threats":[ { "details":"High", "category":"impact" } ], "title":"CVE-2021-4009" }, { "cve":"CVE-2021-4010", "notes":[ { "text":"A security issue has been found in X.Org before version 21.1.2 and Xwayland before version 21.1.4. The handler for the Suspend request of the Screen Saver extension does not properly validate the request length leading to an out of bounds memory write. This can lead to local privileges elevation on systems where the X server is running privileged and remote code execution for SSH X forwarding sessions.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debuginfo-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-Xephyr-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-devel-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debugsource-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-help-1.20.8-12.oe1.noarch", "openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.src", "openEuler-20.03-LTS-SP3:xorg-x11-server-devel-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debuginfo-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debugsource-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-Xephyr-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debuginfo-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-Xephyr-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-devel-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debugsource-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-help-1.20.8-12.oe1.noarch", "openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.src", "openEuler-20.03-LTS-SP3:xorg-x11-server-devel-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debuginfo-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debugsource-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-Xephyr-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.x86_64" ], "details":"xorg-x11-server security update", "category":"vendor_fix", "url":"https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2022-1949" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"HIGH", "baseScore":7.8, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version":"3.1" }, "products":[ "openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debuginfo-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-Xephyr-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-devel-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debugsource-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-help-1.20.8-12.oe1.noarch", "openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.src", "openEuler-20.03-LTS-SP3:xorg-x11-server-devel-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debuginfo-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debugsource-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-Xephyr-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.x86_64" ] } ], "threats":[ { "details":"High", "category":"impact" } ], "title":"CVE-2021-4010" }, { "cve":"CVE-2021-4011", "notes":[ { "text":"A security issue has been found in X.Org before version 21.1.2 and Xwayland before version 21.1.4. The handlers for the RecordCreateContext and RecordRegisterClients requests of the Record extension do not properly validate the request length leading to an out of bounds memory write. This can lead to local privileges elevation on systems where the X server is running privileged and remote code execution for SSH X forwarding sessions.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debuginfo-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-Xephyr-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-devel-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debugsource-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-help-1.20.8-12.oe1.noarch", "openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.src", "openEuler-20.03-LTS-SP3:xorg-x11-server-devel-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debuginfo-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debugsource-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-Xephyr-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debuginfo-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-Xephyr-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-devel-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debugsource-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-help-1.20.8-12.oe1.noarch", "openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.src", "openEuler-20.03-LTS-SP3:xorg-x11-server-devel-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debuginfo-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debugsource-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-Xephyr-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.x86_64" ], "details":"xorg-x11-server security update", "category":"vendor_fix", "url":"https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2022-1949" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"HIGH", "baseScore":7.8, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version":"3.1" }, "products":[ "openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debuginfo-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-Xephyr-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-devel-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debugsource-1.20.8-12.oe1.aarch64", "openEuler-20.03-LTS-SP3:xorg-x11-server-help-1.20.8-12.oe1.noarch", "openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.src", "openEuler-20.03-LTS-SP3:xorg-x11-server-devel-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debuginfo-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-debugsource-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-Xephyr-1.20.8-12.oe1.x86_64", "openEuler-20.03-LTS-SP3:xorg-x11-server-1.20.8-12.oe1.x86_64" ] } ], "threats":[ { "details":"High", "category":"impact" } ], "title":"CVE-2021-4011" } ] }