Two more security issues were made public today concerning the X.Org Server codebase and in turn XWayland also being affected...

Two more security issues were made public today concerning the X.Org Server codebase and in turn XWayland also being affected.
The Trend Micro Zero Day Initiative continues to be relentless in uncovering new X.Org Server security vulnerabilities in recent years. Assisted by Claude Opus 4.6, these latest security woes are now resolved.
Peter Hutterer of Red Hat just announced CVE-2026-55999 as a buffer overflow in the font code for GLAMOR as well as CVE-2026-56000 as a use-after-free in the GLX code path. More details on these latest X.Org code vulnerabilities can be found via today's disclosure.
In turn XWayland 24.1.13 is now available with these fixes plus a few other fixes too. Not yet tagged but X.Org Server 21.1.24 is also expected soon with these security fixes.
Update: X.Org Server 21.24 is now available with these latest security fixes.
| # | Наименование новости | Тональность | Информативность | Дата публикации |
|---|---|---|---|---|
| 1 | Wine 11.13 Better Supports Input Pointers, Improved Keyboard Scancode Mapping For X11 | 0 | 5 | 11-07-2026 |
| 2 | KDE Plasma Affected By Arbitrary Code Execution To Break Sandboxes With "Open New Window" | -2 | 7 | 02-07-2026 |
| 3 | Wayland 1.26 RC1 Released With New Event To Help Ensure Correct Pointer Coordinates | 0 | 5 | 09-07-2026 |
| 4 | Wayland No Longer Considered Experimental For Linux Mint's Next Cinnamon Release | 2 | 6 | 08-07-2026 |
| 5 | Vibe Coded X11 Server Written In Rust Adds Xinerama, FreeBSD Support & Other Features | 5 | 7 | 02-07-2026 |
| 6 | Linux 7.3 To Make It Easier To Disable Syscall User Dispatch | 0 | 7 | 08-07-2026 |
| 7 | AMD Enabling CACP Feature On Linux For Greater OLED Power Savings | 0 | 5 | 10-07-2026 |
| 8 | openSUSE pacemaker Important Denial Of Service CVE-2026-10649 2026-21196-1 | 0 | 5 | 03-07-2026 |
| 9 | New AMD Linux Patches Expose Gamma 2.4 + Gamma 2.6 Curves | 0 | 7 | 24-06-2026 |