unofficial mirror of guix-patches@gnu.org 
 help / color / mirror / code / Atom feed
* [bug#74248] [PATCH 0/3] Update xorg-server and xwayland for CVE-2024-9632.
@ 2024-11-07 21:33 Kaelyn Takata via Guix-patches via
  2024-11-07 21:41 ` [bug#74248] [PATCH 1/3] gnu: xorg-server: Update to 21.1.14. [security fixes] Kaelyn Takata via Guix-patches via
                   ` (4 more replies)
  0 siblings, 5 replies; 6+ messages in thread
From: Kaelyn Takata via Guix-patches via @ 2024-11-07 21:33 UTC (permalink / raw)
  To: 74248; +Cc: Kaelyn Takata

This patch series updates xorg-server and xorg-server-xwayland to their latest
versions to fix CVE-2024-9632, which Red Hat has rated "7.8 High" according to
https://nvd.nist.gov/vuln/detail/CVE-2024-9632.

The updated Xwayland depends on a newer version of presentproto than is
available in the current xorgproto package, so I added xorgproto-next to
satisfy Xwayland's dependency while avoiding triggering 10761 additional
package rebuilds.

Kaelyn Takata (3):
  gnu: xorg-server: Update to 21.1.14. [security fixes]
  gnu: Add xorgproto-next.
  gnu: xorg-server-xwayland: Update to 24.1.4 [security fixes].

 gnu/packages/xorg.scm | 35 ++++++++++++++++++++++++++++-------
 1 file changed, 28 insertions(+), 7 deletions(-)


base-commit: 2a6d96425eea57dc6dd48a2bec16743046e32e06
--
2.46.0





^ permalink raw reply	[flat|nested] 6+ messages in thread

end of thread, other threads:[~2024-11-28  5:32 UTC | newest]

Thread overview: 6+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2024-11-07 21:33 [bug#74248] [PATCH 0/3] Update xorg-server and xwayland for CVE-2024-9632 Kaelyn Takata via Guix-patches via
2024-11-07 21:41 ` [bug#74248] [PATCH 1/3] gnu: xorg-server: Update to 21.1.14. [security fixes] Kaelyn Takata via Guix-patches via
2024-11-07 21:41 ` [bug#74248] [PATCH 2/3] gnu: Add xorgproto-next Kaelyn Takata via Guix-patches via
2024-11-07 21:41 ` [bug#74248] [PATCH 3/3] gnu: xorg-server-xwayland: Update to 24.1.4 [security fixes] Kaelyn Takata via Guix-patches via
2024-11-27 22:30 ` [bug#74248] Comment Andreas Enge
2024-11-28  5:31 ` bug#74248: [PATCH 0/3] Update xorg-server and xwayland for CVE-2024-9632 John Kehayias via Guix-patches via

Code repositories for project(s) associated with this public inbox

	https://git.savannah.gnu.org/cgit/guix.git

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).