[ANNOUNCE] xwayland 23.2.5

Olivier Fourdan ofourdan at redhat.com
Wed Apr 3 16:24:17 UTC 2024


This release contains the 3 security fixes that actually apply to
Xwayland reported in today's security advisory:

  * CVE-2024-31080
  * CVE-2024-31081
  * CVE-2024-31083

Additionally, it also contains a couple of other fixes, a copy/paste
error in the DeviceStateNotify event and a fix to enable buttons with
pointer gestures for backward compatibility with legacy X11 clients.

Alan Coopersmith (2):
       Xi: ProcXIGetSelectedEvents needs to use unswapped length to send reply
       Xi: ProcXIPassiveGrabDevice needs to use unswapped length to send reply

Olivier Fourdan (1):
       Bump version to 23.2.5

Peter Hutterer (2):
       dix: fix valuator copy/paste error in the DeviceStateNotify event
       render: fix refcounting of glyphs during ProcRenderAddGlyphs

Warren Togami (1):
       xwayland: Ensure pointer for gestures has buttons

git tag: xwayland-23.2.5

https://xorg.freedesktop.org/archive/individual/xserver/xwayland-23.2.5.tar.xz
SHA256: 33ec7ff2687a59faaa52b9b09aa8caf118e7ecb6aed8953f526a625ff9f4bd90  xwayland-23.2.5.tar.xz
SHA512: 8cf90d51db7c4c7e8191b5919e6529fe577bc735bb1d00fbc0139cb67ef95d30eb56c2026f3b2f639745c6a621b33bbd60f9ebabdd12175148dd192393ce1169  xwayland-23.2.5.tar.xz
PGP:  https://xorg.freedesktop.org/archive/individual/xserver/xwayland-23.2.5.tar.xz.sig
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_0x14706DBE1E4B4540.asc
Type: application/pgp-keys
Size: 2988 bytes
Desc: OpenPGP public key
URL: <https://lists.x.org/archives/xorg-announce/attachments/20240403/5a92f65b/attachment.key>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature.asc
Type: application/pgp-signature
Size: 203 bytes
Desc: OpenPGP digital signature
URL: <https://lists.x.org/archives/xorg-announce/attachments/20240403/5a92f65b/attachment.sig>


More information about the xorg-announce mailing list