Home / mailings

PDF

[slackware-security] xorg-server (SSA:2025-169-02)

Posted on 19 June 2025
Slackware Security

[slackware-security] xorg-server (SSA:2025-169-02)

New xorg-server packages are available for Slackware 15.0 and -current to
fix a security issue.


Here are the details from the Slackware 15.0 ChangeLog:
+--------------------------+
patches/packages/xorg-server-1.20.14-i586-17_slack15.0.txz: Rebuilt.
Check for another possible integer overflow once we get a complete xReq
with BigRequest.
For more information, see:
https://lists.x.org/archives/xorg/2025-June/062055.html
https://www.cve.org/CVERecord?id=CVE-2025-49176
(* Security fix *)
patches/packages/xorg-server-xephyr-1.20.14-i586-17_slack15.0.txz: Rebuilt.
patches/packages/xorg-server-xnest-1.20.14-i586-17_slack15.0.txz: Rebuilt.
patches/packages/xorg-server-xvfb-1.20.14-i586-17_slack15.0.txz: Rebuilt.
patches/packages/xorg-server-xwayland-21.1.4-i586-15_slack15.0.txz: Rebuilt.
Check for another possible integer overflow once we get a complete xReq
with BigRequest.
For more information, see:
https://lists.x.org/archives/xorg/2025-June/062055.html
https://www.cve.org/CVERecord?id=CVE-2025-49176
(* Security fix *)
+--------------------------+


Where to find the new packages:
+-----------------------------+

Thanks to the friendly folks at the OSU Open Source Lab
(http://osuosl.org) for donating FTP and rsync hosting
to the Slackware project! :-)

Also see the "Get Slack" section on http://slackware.com for
additional mirror sites near you.

Updated package for Slackware 15.0:
ftp://ftp.slackware.com/pub/slackware/slackware-15.0/patches/packages/xorg-server-1.20.14-i586-17_slack15.0.txz
ftp://ftp.slackware.com/pub/slackware/slackware-15.0/patches/packages/xorg-server-xephyr-1.20.14-i586-17_slack15.0.txz
ftp://ftp.slackware.com/pub/slackware/slackware-15.0/patches/packages/xorg-server-xnest-1.20.14-i586-17_slack15.0.txz
ftp://ftp.slackware.com/pub/slackware/slackware-15.0/patches/packages/xorg-server-xvfb-1.20.14-i586-17_slack15.0.txz
ftp://ftp.slackware.com/pub/slackware/slackware-15.0/patches/packages/xorg-server-xwayland-21.1.4-i586-15_slack15.0.txz

Updated package for Slackware x86_64 15.0:
ftp://ftp.slackware.com/pub/slackware/slackware64-15.0/patches/packages/xorg-server-1.20.14-x86_64-17_slack15.0.txz
ftp://ftp.slackware.com/pub/slackware/slackware64-15.0/patches/packages/xorg-server-xephyr-1.20.14-x86_64-17_slack15.0.txz
ftp://ftp.slackware.com/pub/slackware/slackware64-15.0/patches/packages/xorg-server-xnest-1.20.14-x86_64-17_slack15.0.txz
ftp://ftp.slackware.com/pub/slackware/slackware64-15.0/patches/packages/xorg-server-xvfb-1.20.14-x86_64-17_slack15.0.txz
ftp://ftp.slackware.com/pub/slackware/slackware64-15.0/patches/packages/xorg-server-xwayland-21.1.4-x86_64-15_slack15.0.txz

Updated package for Slackware -current:
ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/x/xorg-server-21.1.18-i686-1.txz
ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/x/xorg-server-xephyr-21.1.18-i686-1.txz
ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/x/xorg-server-xnest-21.1.18-i686-1.txz
ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/x/xorg-server-xvfb-21.1.18-i686-1.txz
ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/x/xorg-server-xwayland-24.1.8-i686-1.txz

Updated package for Slackware x86_64 -current:
ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/x/xorg-server-21.1.18-x86_64-1.txz
ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/x/xorg-server-xephyr-21.1.18-x86_64-1.txz
ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/x/xorg-server-xnest-21.1.18-x86_64-1.txz
ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/x/xorg-server-xvfb-21.1.18-x86_64-1.txz
ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/x/xorg-server-xwayland-24.1.8-x86_64-1.txz


MD5 signatures:
+-------------+

Slackware 15.0 package:
ccbcf3e6bedf8ee12cab60cebbbdf397 xorg-server-1.20.14-i586-17_slack15.0.txz
096360ed63c7f13d46d4335dd2e63cbd xorg-server-xephyr-1.20.14-i586-17_slack15.0.txz
ac4196c5ca0c50f9302df7d01e1440f1 xorg-server-xnest-1.20.14-i586-17_slack15.0.txz
ef4721107db0ee75d1b76c0f125c78e2 xorg-server-xvfb-1.20.14-i586-17_slack15.0.txz
bbb68caa99bcbd9fd43170b2172dc123 xorg-server-xwayland-21.1.4-i586-15_slack15.0.txz

Slackware x86_64 15.0 package:
8300298ea1535014db683e3054a6899c xorg-server-1.20.14-x86_64-17_slack15.0.txz
350f92a5d8fb30c359249708381d6f64 xorg-server-xephyr-1.20.14-x86_64-17_slack15.0.txz
6a06ec505e6ddaf2b9058c600b52d7c0 xorg-server-xnest-1.20.14-x86_64-17_slack15.0.txz
72d29b0dfd8149a2f34b13ee29999b26 xorg-server-xvfb-1.20.14-x86_64-17_slack15.0.txz
8bd8f5638280671e0f31a33b6d3f2641 xorg-server-xwayland-21.1.4-x86_64-15_slack15.0.txz

Slackware -current package:
08887eefb5dc59f9e79bfa2640df6e7e x/xorg-server-21.1.18-i686-1.txz
8eba3b05b125b9634e2df04beb6aef65 x/xorg-server-xephyr-21.1.18-i686-1.txz
a88221656c54f25da7c9abad4269089c x/xorg-server-xnest-21.1.18-i686-1.txz
12eb541d9830be855437b8d0c9558088 x/xorg-server-xvfb-21.1.18-i686-1.txz
f2bcef606c5e0a651055eb7cd0091554 x/xorg-server-xwayland-24.1.8-i686-1.txz

Slackware x86_64 -current package:
56868ea16c29d68a752792ae4c94dc85 x/xorg-server-21.1.18-x86_64-1.txz
447b3ed588615ea055961f9f8d290d87 x/xorg-server-xephyr-21.1.18-x86_64-1.txz
0f534c97dd9f1613d1f83df4445405f4 x/xorg-server-xnest-21.1.18-x86_64-1.txz
65c9b7d69afd3aa35ead24253e2dc564 x/xorg-server-xvfb-21.1.18-x86_64-1.txz
948088d087c9f9ad46eb7f92d8dc5bc5 x/xorg-server-xwayland-24.1.8-x86_64-1.txz


Installation instructions:
+------------------------+

Upgrade the package as root:
# upgradepkg xorg-server-*.txz


+-----+

Slackware Linux Security Team
http://slackware.com/gpg-key
security@slackware.com

 

TOP