-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 04 Apr 2024 11:59:35 +0200
Source: xorg-server
Binary: xorg-server-source xserver-common
Architecture: all
Version: 2:21.1.7-3+deb12u6
Distribution: bookworm-security
Urgency: high
Maintainer: amd64 Build Daemon (x86-grnet-03) <buildd_amd64-x86-grnet-03@buildd.debian.org>
Changed-By: Julien Cristau <jcristau@debian.org>
Description:
 xorg-server-source - Xorg X server - source files
 xserver-common - common files used by various X servers
Changes:
 xorg-server (2:21.1.7-3+deb12u6) bookworm-security; urgency=high
 .
   * CVE-2024-31080: Heap buffer overread/data leakage in ProcXIGetSelectedEvents
   * CVE-2024-31081: Heap buffer overread/data leakage in ProcXIPassiveGrabDevice
   * CVE-2024-31082: Heap buffer overread/data leakage in ProcAppleDRICreatePixmap
   * CVE-2024-31083: User-after-free in ProcRenderAddGlyphs
Checksums-Sha1:
 518dad1f22afd4c68125e1ca3bcbe026c76013a4 7398004 xorg-server-source_21.1.7-3+deb12u6_all.deb
 234ff2e0df0c80af6c49fbd22cf2202b102a1a02 11537 xorg-server_21.1.7-3+deb12u6_all-buildd.buildinfo
 c521b973407b55713868693078690f3ed8759ed3 2382636 xserver-common_21.1.7-3+deb12u6_all.deb
Checksums-Sha256:
 f7ea6b22554699434f703513078ae81cae4b8394c2e7ebc4272c864f3319c81f 7398004 xorg-server-source_21.1.7-3+deb12u6_all.deb
 e206fba8f33c9ee6b46c315de146b6a43c1c238085c793b234b0b42188e888cf 11537 xorg-server_21.1.7-3+deb12u6_all-buildd.buildinfo
 463562e06a8bc49de82f1f36e588d837e49ee7fa06a736418e75749575ea56a2 2382636 xserver-common_21.1.7-3+deb12u6_all.deb
Files:
 329fd4829b245b7a10aea8db475fbba3 7398004 x11 optional xorg-server-source_21.1.7-3+deb12u6_all.deb
 15fb251fdafdb694b168bb121844f49e 11537 x11 optional xorg-server_21.1.7-3+deb12u6_all-buildd.buildinfo
 d04359e83ebca8b08871be5f1b7e144b 2382636 x11 optional xserver-common_21.1.7-3+deb12u6_all.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEe8x49oT2k+seQstpgDm7h4zfCpIFAmYOg5gACgkQgDm7h4zf
CpITaQ//QVAJg4TtbtnQlz3XjSDcg3TnMlaHHgA8rIn/jLKipHQVzWHumAMsLltB
N6YSBsYsIFpQ0U3JbStDI+HA2CEFKRv7otE9kYFxyFIPvM5vrlrbl2GWIwUJNHsV
Fa50tBcT55Dgv6hDr1zyug4UkpCJHWW8GO3wrwomvPNv1O4kfp0KqdvzHquGeP2G
Ei6GP2SP6I9+dFEFvsMMwMi5LnObGYdYpsQazxQJUVEscDg2Kc2qB9Oc0syzxMb5
qkPVJmD++4ApGHA3f17tGrz8mAEHctcM7wEQrJpZMHpdvSP/2qyhjfwsXF4NYanI
kfSJh7TjVSwZITZH2FYvWdfSIcr2ALa8AGQAy5Z6PTEmQq0xH0Y/92xqwUJ6+F98
Mvn0BlsqoyEcd4NkD2jv3z7ZJ0NenU8AMdDCHI9squLZ61kQrqB0ysgV5zTydfnK
2NMAAcyEot0VQIiNhmEArmddt9yUhyiD+V9LGeFjHPsbPndUTlIJUWb+9PbkBU6z
VY4pfIYNDERLIANkOayKdE4OYV9IDJqLgI2xQ2PzP7JBkNTSPGTQG7dZCbsGg3JG
SWndqO0FgNeGG13NYUFIA7+I4jN3YXv0qVPaKBtUn8VaGz5hGWbsU/uJkb1VyB4u
5447luAATwpF54H0AqNCZe9ATUncG4h5XQ4duAkMGFkl64KZU2g=
=zeJM
-----END PGP SIGNATURE-----