VulnerableCode Package Details - pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u1

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u1

Essentials
History (8)

purl	pkg:deb/debian/xorg-server@2:21.1.16-1.3%2Bdeb13u1

Next non-vulnerable version	2:21.1.22-1
Latest non-vulnerable version	2:21.1.22-1
Risk	1.8

Vulnerabilities affecting this package (5)

Vulnerability	Summary	Fixed by
VCID-3f4a-m4rt-qqej Aliases: CVE-2026-34002		2:21.1.22-1 Affected by 0 other vulnerabilities.
VCID-hxab-xyu1-xkgc Aliases: CVE-2026-34000		2:21.1.22-1 Affected by 0 other vulnerabilities.
VCID-pa9n-ntq3-jqaz Aliases: CVE-2026-34003		2:21.1.22-1 Affected by 0 other vulnerabilities.
VCID-wzer-jnm3-rqa8 Aliases: CVE-2026-33999		2:21.1.22-1 Affected by 0 other vulnerabilities.
VCID-x3dk-fny6-fqa5 Aliases: CVE-2026-34001		2:21.1.22-1 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-b14x-4mtq-5fc7	In X.Org X server 20.11 through 21.1.16, when a client application uses easystroke for mouse gestures, the main thread modifies various data structures used by the input thread without acquiring a lock, aka a race condition. In particular, AttachDevice in dix/devices.c does not acquire an input lock.	CVE-2022-49737

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-19T05:18:03.719645+00:00	Debian Importer	Affected by	VCID-wzer-jnm3-rqa8	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-19T04:56:24.901082+00:00	Debian Importer	Affected by	VCID-hxab-xyu1-xkgc	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-19T03:41:39.291523+00:00	Debian Importer	Affected by	VCID-x3dk-fny6-fqa5	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-19T02:32:25.045563+00:00	Debian Importer	Affected by	VCID-3f4a-m4rt-qqej	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-19T01:24:58.311583+00:00	Debian Importer	Affected by	VCID-pa9n-ntq3-jqaz	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:39:05.241945+00:00	Debian Importer	Fixing	VCID-b14x-4mtq-5fc7	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-11T18:25:24.075550+00:00	Debian Importer	Fixing	VCID-b14x-4mtq-5fc7	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-04T18:09:12.811063+00:00	Debian Importer	Fixing	VCID-b14x-4mtq-5fc7	https://security-tracker.debian.org/tracker/data/json	38.1.0