Advisories » MGASA-2025-0263

Updated x11-server, x11-server-xwayland & tigervnc packages fix security vulnerabilities

Publication date: 06 Nov 2025
Modification date: 06 Nov 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-62229 , CVE-2025-62230 , CVE-2025-62231

Description

Use-after-free in XPresentNotify structures creation. (CVE-2025-62229)
Use-after-free in Xkb client resource removal. (CVE-2025-62230)
Value overflow in Xkb extension XkbSetCompatMap(). (CVE-2025-62231)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=34701
• https://www.openwall.com/lists/oss-security/2025/10/28/7
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62229
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62230
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62231

SRPMS

9/core

• x11-server-21.1.8-7.9.mga9
• x11-server-xwayland-22.1.9-1.9.mga9
• tigervnc-1.13.1-2.9.mga9