GLSA Advocate
Joined: 12 May 2004 Posts: 2663
|
Posted: Wed Dec 09, 2020 3:26 pm Post subject: [ GLSA 202012-01 ] X.Org X Server |
|
|
Gentoo Linux Security Advisory
Title: X.Org X Server: Multiple vulnerabilities (GLSA 202012-01)
Severity: normal
Exploitable: local
Date: 2020-12-07
Bug(s): #734976, #757882
ID: 202012-01
Synopsis
Multiple vulnerabilities have been found in X.org X Server, the
worst of which could lead to privilege escalation.
Background
The X Window System is a graphical windowing system based on a
client/server model.
Affected Packages
Package: x11-base/xorg-server
Vulnerable: < 1.20.10
Unaffected: >= 1.20.10
Architectures: All supported architectures
Description
Multiple vulnerabilities have been discovered in X.org X Server. Please
review the CVE identifiers referenced below for details.
Impact
Please review the referenced CVE identifiers for details.
Workaround
A local attacker could escalate privileges.
Resolution
All X.org X Server users should upgrade to the latest version: Code: | # emerge --sync
# emerge --ask --oneshot --verbose ">=11-base/xorg-server-1.20.10"
|
References
CVE-2020-14345
CVE-2020-14346
CVE-2020-14347
CVE-2020-14360
CVE-2020-14361
CVE-2020-14362
CVE-2020-25712
Upstream advisory (2020-07-31)
Upstream advisory (2020-08-25)
Upstream advisory (2020-12-01)
|
|