31.Lock DigitalRoom

Several significant out-of-bounds access vulnerabilities have been found in the X.Org X Server (CVE-2021-4008, CVE-2021-4009, and CVE-2021-4011). These flaws threaten data confidentiality and integrity, as well as system availability, and have received a National Vulnerability Database severity rating of “High”.

An attacker could exploit these bugs to cause the server to crash, resulting in a denial of service (DoS), or possibly execute arbitrary code and escalate privileges. 

An update is available for X.Org that fixes these issues. We urge all impacted users to apply the updates issued by their distro(s) as soon as possible to protect their sensitive data and ensure their crucial systems remain accessible.

To stay on top of essential updates released by the open-source programs and applications you use, register as a LinuxSecurity user, subscribe to our Linux Advisory Watch newsletter, and customize your advisories for your distro(s). This will enable you to stay up-to-date on the latest, most significant issues impacting the security of your systems.

Follow @LS_Advisories on Twitter for real-time updates on advisories for your distro(s).