Msrc Cbl2 Xorg-X11-Server 1.20.10-15 On Cbl Mariner 2.0 vulnerabilities

CVE-2025-26600 [HIGH] CWE-416 Xorg: xwayland: use-after-free in playreleasedevents() Xorg: xwayland: use-after-free in playreleasedevents() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the

CVE-2025-26595 [HIGH] CWE-121 Xorg: xwayland: buffer overflow in xkbvmodmasktext() Xorg: xwayland: buffer overflow in xkbvmodmasktext() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the dis

CVE-2025-26598 [HIGH] CWE-787 Xorg: xwayland: out-of-bounds write in createpointerbarrierclient() Xorg: xwayland: out-of-bounds write in createpointerbarrierclient() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open sourc

CVE-2025-26596 [HIGH] CWE-787 Xorg: xwayland: heap overflow in xkbwritekeysyms() Xorg: xwayland: heap overflow in xkbwritekeysyms() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro

CVE-2025-26594 [HIGH] CWE-416 X.org: xwayland: use-after-free of the root cursor X.org: xwayland: use-after-free of the root cursor FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro

CVE-2025-26601 [HIGH] CWE-416 Xorg: xwayland: use-after-free in syncinittrigger() Xorg: xwayland: use-after-free in syncinittrigger() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distr

CVE-2025-26597 [HIGH] CWE-119 Xorg: xwayland: buffer overflow in xkbchangetypesofkey() Xorg: xwayland: buffer overflow in xkbchangetypesofkey() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which

CVE-2025-26599 [HIGH] CWE-824 Xorg: xwayland: use of uninitialized pointer in compredirectwindow() Xorg: xwayland: use of uninitialized pointer in compredirectwindow() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open sou

CVE-2024-9632 [HIGH] CWE-122 Xorg-x11-server: tigervnc: heap-based buffer overflow privilege escalation vulnerability Xorg-x11-server: tigervnc: heap-based buffer overflow privilege escalation vulnerability FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent a

CVE-2024-31082 [HIGH] CWE-126 Xorg-x11-server: heap buffer overread/data leakage in procappledricreatepixmap Xorg-x11-server: heap buffer overread/data leakage in procappledricreatepixmap FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure vers

CVE-2024-31081 [HIGH] CWE-126 Xorg-x11-server: heap buffer overread/data leakage in procxipassivegrabdevice Xorg-x11-server: heap buffer overread/data leakage in procxipassivegrabdevice FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versio

CVE-2024-31083 [HIGH] CWE-416 Xorg-x11-server: use-after-free in procrenderaddglyphs Xorg-x11-server: use-after-free in procrenderaddglyphs FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the

CVE-2024-31080 [HIGH] CWE-126 Xorg-x11-server: heap buffer overread/data leakage in procxigetselectedevents Xorg-x11-server: heap buffer overread/data leakage in procxigetselectedevents FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versio

CVE-2024-21886 [HIGH] CWE-122 Xorg-x11-server: heap buffer overflow in disabledevice Xorg-x11-server: heap buffer overflow in disabledevice FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the

CVE-2024-0229 [HIGH] CWE-787 Xorg-x11-server: reattaching to different master device may lead to out-of-bounds memory access Xorg-x11-server: reattaching to different master device may lead to out-of-bounds memory access FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the

CVE-2024-21885 [HIGH] CWE-122 Xorg-x11-server: heap buffer overflow in xisenddevicehierarchyevent Xorg-x11-server: heap buffer overflow in xisenddevicehierarchyevent FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open sourc

CVE-2023-6816 [CRITICAL] CWE-787 Xorg-x11-server: heap buffer overflow in devicefocusevent and procxiquerypointer Xorg-x11-server: heap buffer overflow in devicefocusevent and procxiquerypointer FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secu

CVE-2024-0409 [HIGH] CWE-787 Xorg-x11-server: selinux context corruption Xorg-x11-server: selinux context corruption FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Mi

CVE-2024-0408 [MEDIUM] CWE-158 Xorg-x11-server: selinux unlabeled glx pbuffer Xorg-x11-server: selinux unlabeled glx pbuffer FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is comp