{"id":59996,"date":"2024-10-30T19:05:50","date_gmt":"2024-10-30T16:05:50","guid":{"rendered":"https:\/\/packetstormsecurity.com\/files\/182411\/dsa-5800-1.txt"},"modified":"2024-10-30T19:05:50","modified_gmt":"2024-10-30T16:05:50","slug":"debian-security-advisory-5800-1","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/debian-security-advisory-5800-1\/","title":{"rendered":"Debian Security Advisory 5800-1"},"content":{"rendered":"<p>&#8212;&#8211;BEGIN PGP SIGNED MESSAGE&#8212;&#8211;<br \/>Hash: SHA512<\/p>\n<p>&#8211; &#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;-<br \/>Debian Security Advisory DSA-5800-1 security@debian.org<br \/>https:\/\/www.debian.org\/security\/ Salvatore Bonaccorso<br \/>October 29, 2024 https:\/\/www.debian.org\/security\/faq<br \/>&#8211; &#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;-<\/p>\n<p>Package : xorg-server<br \/>CVE ID : CVE-2024-9632<br \/>Debian Bug : 1086244<\/p>\n<p>Jan-Niklas Sohn discovered that a heap-based buffer overflow in the<br \/>_XkbSetCompatMap function in the X Keyboard Extension of the X.org X<br \/>server may result in privilege escalation if the X server is running<br \/>privileged.<\/p>\n<p>For the stable distribution (bookworm), this problem has been fixed in<br \/>version 2:21.1.7-3+deb12u8.<\/p>\n<p>We recommend that you upgrade your xorg-server packages.<\/p>\n<p>For the detailed security status of xorg-server please refer to its<br \/>security tracker page at:<br \/>https:\/\/security-tracker.debian.org\/tracker\/xorg-server<\/p>\n<p>Further information about Debian Security Advisories, how to apply<br \/>these updates to your system and frequently asked questions can be<br \/>found at: https:\/\/www.debian.org\/security\/<\/p>\n<p>Mailing list: debian-security-announce@lists.debian.org<br \/>&#8212;&#8211;BEGIN PGP SIGNATURE&#8212;&#8211;<\/p>\n<p>iQKTBAEBCgB9FiEERkRAmAjBceBVMd3uBUy48xNDz0QFAmchKQNfFIAAAAAALgAo<br \/>aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2<br \/>NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQACgkQBUy48xND<br \/>z0S1og\/\/Qc+fk1SZNKINd1d\/ItoR5XQQGU4V92\/kQKcfNu97F2DLcb1wUc+BZAaY<br \/>yr1HS+ru3pY25XOKYLgR7Tx\/\/\/BEXzYxKdNxLGVMXzJqU06oSYXAkUBERFW5aU0\/<br \/>ayaV+UtwaX7ADUwYpCeJbQJcudMw3YtPlkRpN1uCs\/lHMHPcbsGpZt4VBpItksrs<br \/>iRpqq40eQiPafzGBpzx40ejaJyn200s9hYNN6dieqNDQTW6MmGSI9OLfY5alze6M<br \/>Iot3mopREg\/iKJblNz7+T2mKng0TEPY2PgolcsmHjvHEKCrWmWcGKwWHKlbvfpJX<br \/>s1522AAWS5aJeW8r6TeGbOa298caLsW4doQa\/6EX4HeADQu7SjV9oXZwrUtGsCxn<br \/>eb6oLUGhHs0FGmY\/Hvfng\/ouZwSj1wKWE45hMCJ1HRSlpbfCoJxQlFpNLWQziFaS<br \/>TuzebmpPXfbrbcXb7tNgUPtLcayu09JwJWxZLYPYcFDXZe1wUz3ZQIWkKHizXkSI<br \/>NZtQYdLMKqBp99XR65vkTORS7QWkpdaW6AY6JujoihKFzh+wRM7qKtgflHl6qTLd<br \/>mPK8DU\/qe5jCs5oqzLvQ7sZUb95JqhYaLf8ZWH6koTHLHqnMt9wOxqoEPoFfk4Lz<br \/>TH0FizIOHO6imr6USG+ubOtlf\/nd1py1achR9ihKtd+0GE0Hx8Q=<br \/>=Y9nq<br \/>&#8212;&#8211;END PGP SIGNATURE&#8212;&#8211;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>&#8212;&#8211;BEGIN PGP SIGNED MESSAGE&#8212;&#8211;Hash: SHA512 &#8211; &#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;-Debian Security Advisory DSA-5800-1 security@debian.orghttps:\/\/www.debian.org\/security\/ Salvatore BonaccorsoOctober 29, 2024 https:\/\/www.debian.org\/security\/faq&#8211; &#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;- Package : xorg-serverCVE ID : CVE-2024-9632Debian Bug : 1086244 Jan-Niklas Sohn discovered that a heap-based buffer overflow in the_XkbSetCompatMap function in the X Keyboard Extension of the X.org Xserver may result in privilege escalation if the X server &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-59996","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/59996","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=59996"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/59996\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=59996"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=59996"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=59996"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}