<div class="container">
<h1>Security update for xorg-x11-server</h1>
<table class="table table-striped table-bordered">
<tbody>
<tr>
<th>Announcement ID:</th>
<td>SUSE-SU-2026:2225-1</td>
</tr>
<tr>
<th>Release Date:</th>
<td>2026-06-02T08:42:21Z</td>
</tr>
<tr>
<th>Rating:</th>
<td>important</td>
</tr>
<tr>
<th>References:</th>
<td>
<ul>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1266294">bsc#1266294</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1266295">bsc#1266295</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1266296">bsc#1266296</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1266297">bsc#1266297</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1266298">bsc#1266298</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1266299">bsc#1266299</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1266300">bsc#1266300</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1266301">bsc#1266301</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1266302">bsc#1266302</a>
</li>
</ul>
</td>
</tr>
<tr>
<th>Affected Products:</th>
<td>
<ul class="list-group">
<li class="list-group-item">Basesystem Module 15-SP7</li>
<li class="list-group-item">Development Tools Module 15-SP7</li>
<li class="list-group-item">SUSE Linux Enterprise Desktop 15 SP7</li>
<li class="list-group-item">SUSE Linux Enterprise Real Time 15 SP7</li>
<li class="list-group-item">SUSE Linux Enterprise Server 15 SP7</li>
<li class="list-group-item">SUSE Linux Enterprise Server for SAP Applications 15 SP7</li>
</ul>
</td>
</tr>
</tbody>
</table>
<p>An update that has nine security fixes can now be installed.</p>
<h2>Description:</h2>
<p>This update for xorg-x11-server fixes the following issues</p>
<ul>
<li>CreateSaverWindow Use-After-Free Information Disclosure. (bsc#1266301)</li>
<li>DRI2 DRIGetBuffers/DRIGetBuffersWithFormat Out-Of-Bounds Write. (bsc#1266302)</li>
<li>Font Alias Stack-based Buffer Overflow. (bsc#1266294)</li>
<li>GLX ChangeDrawableAttributes Out-Of-Bounds Read/Write. (bsc#1266300)</li>
<li>XKB Key Types Stack-based Buffer Overflow. (bsc#1266296)</li>
<li>XKB SetMap Request Stack-based Buffer Overflow. (bsc#1266297)</li>
<li>XSYNC Use-After-Free in FreeCounter(). (bsc#1266298)</li>
<li>XSYNC Use-After-Free in miSyncDestroyFence(). (bsc#1266295)</li>
<li>XSYNC Use-After-Free in SyncChangeCounter(). (bsc#1266299)</li>
</ul>
<h2>Patch Instructions:</h2>
<p>
To install this SUSE update use the SUSE recommended
installation methods like YaST online_update or "zypper patch".<br/>
Alternatively you can run the command listed for your product:
</p>
<ul class="list-group">
<li class="list-group-item">
Basesystem Module 15-SP7
<br/>
<code>zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-2225=1</code>
</li>
<li class="list-group-item">
Development Tools Module 15-SP7
<br/>
<code>zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP7-2026-2225=1</code>
</li>
</ul>
<h2>Package List:</h2>
<ul>
<li>
Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64)
<ul>
<li>xorg-x11-server-Xvfb-debuginfo-21.1.15-150700.5.19.1</li>
<li>xorg-x11-server-debuginfo-21.1.15-150700.5.19.1</li>
<li>xorg-x11-server-21.1.15-150700.5.19.1</li>
<li>xorg-x11-server-debugsource-21.1.15-150700.5.19.1</li>
<li>xorg-x11-server-extra-21.1.15-150700.5.19.1</li>
<li>xorg-x11-server-extra-debuginfo-21.1.15-150700.5.19.1</li>
<li>xorg-x11-server-Xvfb-21.1.15-150700.5.19.1</li>
</ul>
</li>
<li>
Development Tools Module 15-SP7 (aarch64 ppc64le s390x x86_64)
<ul>
<li>xorg-x11-server-debugsource-21.1.15-150700.5.19.1</li>
<li>xorg-x11-server-debuginfo-21.1.15-150700.5.19.1</li>
<li>xorg-x11-server-sdk-21.1.15-150700.5.19.1</li>
</ul>
</li>
</ul>
<h2>References:</h2>
<ul>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1266294">https://bugzilla.suse.com/show_bug.cgi?id=1266294</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1266295">https://bugzilla.suse.com/show_bug.cgi?id=1266295</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1266296">https://bugzilla.suse.com/show_bug.cgi?id=1266296</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1266297">https://bugzilla.suse.com/show_bug.cgi?id=1266297</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1266298">https://bugzilla.suse.com/show_bug.cgi?id=1266298</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1266299">https://bugzilla.suse.com/show_bug.cgi?id=1266299</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1266300">https://bugzilla.suse.com/show_bug.cgi?id=1266300</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1266301">https://bugzilla.suse.com/show_bug.cgi?id=1266301</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1266302">https://bugzilla.suse.com/show_bug.cgi?id=1266302</a>
</li>
</ul>
</div>