Security update for xorg-x11-server SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2024:3866-1 Final 1 1 2024-11-01T15:13:08Z current 2024-11-01T15:13:08Z 2024-11-01T15:13:08Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for xorg-x11-server This update for xorg-x11-server fixes the following issues: - CVE-2024-9632: Fixed heap-based buffer overflow privilege escalation in _XkbSetCompatMap (bsc#1231565). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Image SLES15-SP4-SAP-2024-3866,Image SLES15-SP4-SAP-Azure-2024-3866,Image SLES15-SP4-SAP-EC2-2024-3866,Image SLES15-SP4-SAP-GCE-2024-3866,Image SLES15-SP4-SAPCAL-2024-3866,Image SLES15-SP4-SAPCAL-Azure-2024-3866,Image SLES15-SP4-SAPCAL-EC2-2024-3866,Image SLES15-SP4-SAPCAL-GCE-2024-3866,SUSE-2024-3866,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-3866,SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-3866,SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-3866,SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-3866,SUSE-SLE-Product-SLES_SAP-15-SP4-2024-3866,SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-3866,SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-3866 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2024/suse-su-20243866-1/ Link for SUSE-SU-2024:3866-1 https://lists.suse.com/pipermail/sle-security-updates/2024-November/019763.html E-Mail link for SUSE-SU-2024:3866-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1231565 SUSE Bug 1231565 https://www.suse.com/security/cve/CVE-2024-9632/ SUSE CVE CVE-2024-9632 page Image SLES15-SP4-SAP Image SLES15-SP4-SAP-Azure Image SLES15-SP4-SAP-EC2 Image SLES15-SP4-SAP-GCE Image SLES15-SP4-SAPCAL Image SLES15-SP4-SAPCAL-Azure Image SLES15-SP4-SAPCAL-EC2 Image SLES15-SP4-SAPCAL-GCE SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS SUSE Linux Enterprise Server 15 SP4-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SP4 SUSE Manager Proxy 4.3 SUSE Manager Server 4.3 xorg-x11-server-1.20.3-150400.38.51.1 xorg-x11-server-extra-1.20.3-150400.38.51.1 xorg-x11-server-sdk-1.20.3-150400.38.51.1 xorg-x11-server-source-1.20.3-150400.38.51.1 xorg-x11-server-1.20.3-150400.38.51.1 as a component of Image SLES15-SP4-SAP xorg-x11-server-1.20.3-150400.38.51.1 as a component of Image SLES15-SP4-SAP-Azure xorg-x11-server-1.20.3-150400.38.51.1 as a component of Image SLES15-SP4-SAP-EC2 xorg-x11-server-1.20.3-150400.38.51.1 as a component of Image SLES15-SP4-SAP-GCE xorg-x11-server-1.20.3-150400.38.51.1 as a component of Image SLES15-SP4-SAPCAL xorg-x11-server-1.20.3-150400.38.51.1 as a component of Image SLES15-SP4-SAPCAL-Azure xorg-x11-server-1.20.3-150400.38.51.1 as a component of Image SLES15-SP4-SAPCAL-EC2 xorg-x11-server-1.20.3-150400.38.51.1 as a component of Image SLES15-SP4-SAPCAL-GCE xorg-x11-server-1.20.3-150400.38.51.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS xorg-x11-server-extra-1.20.3-150400.38.51.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS xorg-x11-server-sdk-1.20.3-150400.38.51.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS xorg-x11-server-1.20.3-150400.38.51.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS xorg-x11-server-extra-1.20.3-150400.38.51.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS xorg-x11-server-sdk-1.20.3-150400.38.51.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS xorg-x11-server-1.20.3-150400.38.51.1 as a component of SUSE Linux Enterprise Server 15 SP4-LTSS xorg-x11-server-extra-1.20.3-150400.38.51.1 as a component of SUSE Linux Enterprise Server 15 SP4-LTSS xorg-x11-server-sdk-1.20.3-150400.38.51.1 as a component of SUSE Linux Enterprise Server 15 SP4-LTSS xorg-x11-server-1.20.3-150400.38.51.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP4 xorg-x11-server-extra-1.20.3-150400.38.51.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP4 xorg-x11-server-sdk-1.20.3-150400.38.51.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP4 xorg-x11-server-1.20.3-150400.38.51.1 as a component of SUSE Manager Proxy 4.3 xorg-x11-server-extra-1.20.3-150400.38.51.1 as a component of SUSE Manager Proxy 4.3 xorg-x11-server-1.20.3-150400.38.51.1 as a component of SUSE Manager Server 4.3 xorg-x11-server-extra-1.20.3-150400.38.51.1 as a component of SUSE Manager Server 4.3 A flaw was found in the X.org server. Due to improperly tracked allocation size in _XkbSetCompatMap, a local attacker may be able to trigger a buffer overflow condition via a specially crafted payload, leading to denial of service or local privilege escalation in distributions where the X.org server is run with root privileges. CVE-2024-9632 Image SLES15-SP4-SAP-Azure:xorg-x11-server-1.20.3-150400.38.51.1 Image SLES15-SP4-SAP-EC2:xorg-x11-server-1.20.3-150400.38.51.1 Image SLES15-SP4-SAP-GCE:xorg-x11-server-1.20.3-150400.38.51.1 Image SLES15-SP4-SAP:xorg-x11-server-1.20.3-150400.38.51.1 Image SLES15-SP4-SAPCAL-Azure:xorg-x11-server-1.20.3-150400.38.51.1 Image SLES15-SP4-SAPCAL-EC2:xorg-x11-server-1.20.3-150400.38.51.1 Image SLES15-SP4-SAPCAL-GCE:xorg-x11-server-1.20.3-150400.38.51.1 Image SLES15-SP4-SAPCAL:xorg-x11-server-1.20.3-150400.38.51.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xorg-x11-server-1.20.3-150400.38.51.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xorg-x11-server-extra-1.20.3-150400.38.51.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:xorg-x11-server-sdk-1.20.3-150400.38.51.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xorg-x11-server-1.20.3-150400.38.51.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xorg-x11-server-extra-1.20.3-150400.38.51.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:xorg-x11-server-sdk-1.20.3-150400.38.51.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xorg-x11-server-1.20.3-150400.38.51.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xorg-x11-server-extra-1.20.3-150400.38.51.1 SUSE Linux Enterprise Server 15 SP4-LTSS:xorg-x11-server-sdk-1.20.3-150400.38.51.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xorg-x11-server-1.20.3-150400.38.51.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xorg-x11-server-extra-1.20.3-150400.38.51.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:xorg-x11-server-sdk-1.20.3-150400.38.51.1 SUSE Manager Proxy 4.3:xorg-x11-server-1.20.3-150400.38.51.1 SUSE Manager Proxy 4.3:xorg-x11-server-extra-1.20.3-150400.38.51.1 SUSE Manager Server 4.3:xorg-x11-server-1.20.3-150400.38.51.1 SUSE Manager Server 4.3:xorg-x11-server-extra-1.20.3-150400.38.51.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20243866-1/ https://www.suse.com/security/cve/CVE-2024-9632.html CVE-2024-9632 https://bugzilla.suse.com/1231565 SUSE Bug 1231565