Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u11
purl pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u11
Next non-vulnerable version 2:21.1.16-1.3+deb13u1
Latest non-vulnerable version 2:21.1.16-1.3+deb13u1
Risk 2.7
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-b14x-4mtq-5fc7
Aliases:
CVE-2022-49737
In X.Org X server 20.11 through 21.1.16, when a client application uses easystroke for mouse gestures, the main thread modifies various data structures used by the input thread without acquiring a lock, aka a race condition. In particular, AttachDevice in dix/devices.c does not acquire an input lock.
2:21.1.16-1.3+deb13u1
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (18)
Vulnerability Summary Aliases
VCID-1pcv-f5h3-9fe9 A vulnerability has been discovered in the Xorg Server and XWayland, the worst of which can result in privilege escalation. CVE-2025-26595
VCID-2cp3-p3yx-17be xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Integer Overflow in X Resize, Rotate and Reflect (RandR) Extension CVE-2025-49180
VCID-2vrb-n6cc-c7bc xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Unprocessed Client Request Due to Bytes to Ignore CVE-2025-49178
VCID-37e1-pzxj-2fdt A vulnerability has been discovered in the Xorg Server and XWayland, the worst of which can result in privilege escalation. CVE-2025-26598
VCID-41cd-s77z-6bcc A vulnerability has been discovered in the Xorg Server and XWayland, the worst of which can result in privilege escalation. CVE-2025-26596
VCID-515f-a8yj-4fej A vulnerability has been discovered in the Xorg Server and XWayland, the worst of which can result in privilege escalation. CVE-2025-26600
VCID-6hwh-7tvr-sqgn A vulnerability has been discovered in the Xorg Server and XWayland, the worst of which can result in privilege escalation. CVE-2025-26597
VCID-7nax-5yw9-eye8 A vulnerability has been discovered in the Xorg Server and XWayland, the worst of which can result in privilege escalation. CVE-2025-26599
VCID-cxf3-8znp-rbbz Multiple vulnerabilities have been discovered in the Xorg Server and XWayland, the worst of which can result in privilege escalation or remote code execution. CVE-2022-3553
VCID-e9px-edn1-tufs xorg: xmayland: Use-after-free in XPresentNotify structure creation CVE-2025-62229
VCID-hkrr-v71f-xqdb A vulnerability has been discovered in the Xorg Server and XWayland, the worst of which can result in privilege escalation. CVE-2025-26601
VCID-juet-bb4m-hkhq A vulnerability has been discovered in the Xorg Server and XWayland, the worst of which can result in privilege escalation. CVE-2024-9632
VCID-qwqu-19wq-1ke8 A vulnerability has been discovered in the Xorg Server and XWayland, the worst of which can result in privilege escalation. CVE-2025-26594
VCID-s7xs-zcxk-nyc7 xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Integer overflow in X Record extension CVE-2025-49179
VCID-sfgy-e6d6-f3fd xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Out-of-Bounds Read in X Rendering Extension Animated Cursors CVE-2025-49175
VCID-sx54-5s5r-ckg2 xorg: xwayland: Use-after-free in Xkb client resource removal CVE-2025-62230
VCID-t1cy-srre-nkbp xorg: xmayland: Value overflow in XkbSetCompatMap() CVE-2025-62231
VCID-wyuw-13t9-rbg1 xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Integer Overflow in Big Requests Extension CVE-2025-49176

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T09:39:05.238229+00:00 Debian Importer Affected by VCID-b14x-4mtq-5fc7 https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T08:50:24.436959+00:00 Debian Importer Fixing VCID-cxf3-8znp-rbbz https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T00:48:13.752549+00:00 Debian Oval Importer Fixing VCID-37e1-pzxj-2fdt https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-16T00:46:36.165448+00:00 Debian Oval Importer Fixing VCID-t1cy-srre-nkbp https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T22:28:18.403973+00:00 Debian Oval Importer Fixing VCID-515f-a8yj-4fej https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T21:14:39.607125+00:00 Debian Oval Importer Fixing VCID-sx54-5s5r-ckg2 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T20:46:18.370899+00:00 Debian Oval Importer Fixing VCID-e9px-edn1-tufs https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T20:14:02.030422+00:00 Debian Oval Importer Fixing VCID-2cp3-p3yx-17be https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T19:33:29.237237+00:00 Debian Oval Importer Fixing VCID-41cd-s77z-6bcc https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T19:28:03.858256+00:00 Debian Oval Importer Fixing VCID-hkrr-v71f-xqdb https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T18:54:53.505261+00:00 Debian Oval Importer Fixing VCID-1pcv-f5h3-9fe9 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T18:49:48.061011+00:00 Debian Oval Importer Fixing VCID-qwqu-19wq-1ke8 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T18:29:33.425941+00:00 Debian Oval Importer Fixing VCID-s7xs-zcxk-nyc7 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T18:16:09.339112+00:00 Debian Oval Importer Fixing VCID-2vrb-n6cc-c7bc https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T18:11:34.624717+00:00 Debian Oval Importer Fixing VCID-6hwh-7tvr-sqgn https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T18:11:01.926787+00:00 Debian Oval Importer Fixing VCID-juet-bb4m-hkhq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T16:19:44.088728+00:00 Debian Oval Importer Fixing VCID-7nax-5yw9-eye8 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T16:11:34.173384+00:00 Debian Oval Importer Fixing VCID-wyuw-13t9-rbg1 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-15T15:32:17.580874+00:00 Debian Oval Importer Fixing VCID-sfgy-e6d6-f3fd https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.4.0
2026-04-12T00:20:44.716549+00:00 Debian Oval Importer Fixing VCID-37e1-pzxj-2fdt https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-12T00:19:09.145481+00:00 Debian Oval Importer Fixing VCID-t1cy-srre-nkbp https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T22:05:25.680046+00:00 Debian Oval Importer Fixing VCID-515f-a8yj-4fej https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T20:54:25.221723+00:00 Debian Oval Importer Fixing VCID-sx54-5s5r-ckg2 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T20:27:13.565913+00:00 Debian Oval Importer Fixing VCID-e9px-edn1-tufs https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T19:55:49.884347+00:00 Debian Oval Importer Fixing VCID-2cp3-p3yx-17be https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T19:16:14.231855+00:00 Debian Oval Importer Fixing VCID-41cd-s77z-6bcc https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T19:11:02.458979+00:00 Debian Oval Importer Fixing VCID-hkrr-v71f-xqdb https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T18:39:11.268563+00:00 Debian Oval Importer Fixing VCID-1pcv-f5h3-9fe9 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T18:34:22.879628+00:00 Debian Oval Importer Fixing VCID-qwqu-19wq-1ke8 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T18:25:24.071882+00:00 Debian Importer Affected by VCID-b14x-4mtq-5fc7 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T18:14:30.207361+00:00 Debian Oval Importer Fixing VCID-s7xs-zcxk-nyc7 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T18:01:32.236094+00:00 Debian Oval Importer Fixing VCID-2vrb-n6cc-c7bc https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T17:57:01.997424+00:00 Debian Oval Importer Fixing VCID-6hwh-7tvr-sqgn https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T17:56:29.718107+00:00 Debian Oval Importer Fixing VCID-juet-bb4m-hkhq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T17:56:19.775723+00:00 Debian Importer Fixing VCID-cxf3-8znp-rbbz https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-11T16:07:03.102433+00:00 Debian Oval Importer Fixing VCID-7nax-5yw9-eye8 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T15:59:00.679791+00:00 Debian Oval Importer Fixing VCID-wyuw-13t9-rbg1 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-11T15:20:17.422797+00:00 Debian Oval Importer Fixing VCID-sfgy-e6d6-f3fd https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.3.0
2026-04-08T23:51:29.622393+00:00 Debian Oval Importer Fixing VCID-37e1-pzxj-2fdt https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T23:49:59.827672+00:00 Debian Oval Importer Fixing VCID-t1cy-srre-nkbp https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T21:42:20.587250+00:00 Debian Oval Importer Fixing VCID-515f-a8yj-4fej https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T20:33:52.212535+00:00 Debian Oval Importer Fixing VCID-sx54-5s5r-ckg2 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T20:07:40.196269+00:00 Debian Oval Importer Fixing VCID-e9px-edn1-tufs https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T19:37:47.271705+00:00 Debian Oval Importer Fixing VCID-2cp3-p3yx-17be https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T19:00:08.360059+00:00 Debian Oval Importer Fixing VCID-41cd-s77z-6bcc https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T18:55:06.773877+00:00 Debian Oval Importer Fixing VCID-hkrr-v71f-xqdb https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T18:24:22.326867+00:00 Debian Oval Importer Fixing VCID-1pcv-f5h3-9fe9 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T18:19:33.151959+00:00 Debian Oval Importer Fixing VCID-qwqu-19wq-1ke8 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T18:00:45.734731+00:00 Debian Oval Importer Fixing VCID-s7xs-zcxk-nyc7 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T17:48:06.994892+00:00 Debian Oval Importer Fixing VCID-2vrb-n6cc-c7bc https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T17:43:49.049158+00:00 Debian Oval Importer Fixing VCID-6hwh-7tvr-sqgn https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T17:43:17.447407+00:00 Debian Oval Importer Fixing VCID-juet-bb4m-hkhq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T15:59:43.829432+00:00 Debian Oval Importer Fixing VCID-7nax-5yw9-eye8 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T15:52:06.976822+00:00 Debian Oval Importer Fixing VCID-wyuw-13t9-rbg1 https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-08T15:14:59.509071+00:00 Debian Oval Importer Fixing VCID-sfgy-e6d6-f3fd https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.1.0
2026-04-07T05:58:05.667905+00:00 Debian Importer Fixing VCID-cxf3-8znp-rbbz https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-04T18:09:12.806400+00:00 Debian Importer Affected by VCID-b14x-4mtq-5fc7 https://security-tracker.debian.org/tracker/data/json 38.1.0