<div class="container">
<h1>Security update for xorg-x11-server</h1>
<table class="table table-striped table-bordered">
<tbody>
<tr>
<th>Announcement ID:</th>
<td>SUSE-SU-2026:2224-1</td>
</tr>
<tr>
<th>Release Date:</th>
<td>2026-06-02T08:41:58Z</td>
</tr>
<tr>
<th>Rating:</th>
<td>important</td>
</tr>
<tr>
<th>References:</th>
<td>
<ul>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1266294">bsc#1266294</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1266295">bsc#1266295</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1266296">bsc#1266296</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1266297">bsc#1266297</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1266298">bsc#1266298</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1266299">bsc#1266299</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1266300">bsc#1266300</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1266301">bsc#1266301</a>
</li>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1266302">bsc#1266302</a>
</li>
</ul>
</td>
</tr>
<tr>
<th>Affected Products:</th>
<td>
<ul class="list-group">
<li class="list-group-item">openSUSE Leap 15.5</li>
<li class="list-group-item">SUSE Linux Enterprise High Performance Computing 15 SP5</li>
<li class="list-group-item">SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5</li>
<li class="list-group-item">SUSE Linux Enterprise High Performance Computing LTSS 15 SP5</li>
<li class="list-group-item">SUSE Linux Enterprise Server 15 SP5</li>
<li class="list-group-item">SUSE Linux Enterprise Server 15 SP5 LTSS</li>
<li class="list-group-item">SUSE Linux Enterprise Server for SAP Applications 15 SP5</li>
</ul>
</td>
</tr>
</tbody>
</table>
<p>An update that has nine security fixes can now be installed.</p>
<h2>Description:</h2>
<p>This update for xorg-x11-server fixes the following issues</p>
<ul>
<li>CreateSaverWindow Use-After-Free Information Disclosure. (bsc#1266301)</li>
<li>DRI2 DRIGetBuffers/DRIGetBuffersWithFormat Out-Of-Bounds Write. (bsc#1266302)</li>
<li>Font Alias Stack-based Buffer Overflow. (bsc#1266294)</li>
<li>GLX ChangeDrawableAttributes Out-Of-Bounds Read/Write. (bsc#1266300)</li>
<li>XKB Key Types Stack-based Buffer Overflow. (bsc#1266296)</li>
<li>XKB SetMap Request Stack-based Buffer Overflow. (bsc#1266297)</li>
<li>XSYNC Use-After-Free in FreeCounter(). (bsc#1266298)</li>
<li>XSYNC Use-After-Free in miSyncDestroyFence(). (bsc#1266295)</li>
<li>XSYNC Use-After-Free in SyncChangeCounter(). (bsc#1266299)</li>
</ul>
<h2>Patch Instructions:</h2>
<p>
To install this SUSE update use the SUSE recommended
installation methods like YaST online_update or "zypper patch".<br/>
Alternatively you can run the command listed for your product:
</p>
<ul class="list-group">
<li class="list-group-item">
SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
<br/>
<code>zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2224=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise High Performance Computing LTSS 15 SP5
<br/>
<code>zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2224=1</code>
</li>
<li class="list-group-item">
openSUSE Leap 15.5
<br/>
<code>zypper in -t patch SUSE-2026-2224=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise Server 15 SP5 LTSS
<br/>
<code>zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2224=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise Server for SAP Applications 15 SP5
<br/>
<code>zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2224=1</code>
</li>
</ul>
<h2>Package List:</h2>
<ul>
<li>
SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64)
<ul>
<li>xorg-x11-server-extra-21.1.4-150500.7.49.1</li>
<li>xorg-x11-server-Xvfb-debuginfo-21.1.4-150500.7.49.1</li>
<li>xorg-x11-server-21.1.4-150500.7.49.1</li>
<li>xorg-x11-server-extra-debuginfo-21.1.4-150500.7.49.1</li>
<li>xorg-x11-server-debuginfo-21.1.4-150500.7.49.1</li>
<li>xorg-x11-server-sdk-21.1.4-150500.7.49.1</li>
<li>xorg-x11-server-debugsource-21.1.4-150500.7.49.1</li>
<li>xorg-x11-server-Xvfb-21.1.4-150500.7.49.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64)
<ul>
<li>xorg-x11-server-extra-21.1.4-150500.7.49.1</li>
<li>xorg-x11-server-Xvfb-debuginfo-21.1.4-150500.7.49.1</li>
<li>xorg-x11-server-21.1.4-150500.7.49.1</li>
<li>xorg-x11-server-debuginfo-21.1.4-150500.7.49.1</li>
<li>xorg-x11-server-extra-debuginfo-21.1.4-150500.7.49.1</li>
<li>xorg-x11-server-sdk-21.1.4-150500.7.49.1</li>
<li>xorg-x11-server-debugsource-21.1.4-150500.7.49.1</li>
<li>xorg-x11-server-Xvfb-21.1.4-150500.7.49.1</li>
</ul>
</li>
<li>
openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586)
<ul>
<li>xorg-x11-server-extra-21.1.4-150500.7.49.1</li>
<li>xorg-x11-server-Xvfb-debuginfo-21.1.4-150500.7.49.1</li>
<li>xorg-x11-server-source-21.1.4-150500.7.49.1</li>
<li>xorg-x11-server-21.1.4-150500.7.49.1</li>
<li>xorg-x11-server-debuginfo-21.1.4-150500.7.49.1</li>
<li>xorg-x11-server-extra-debuginfo-21.1.4-150500.7.49.1</li>
<li>xorg-x11-server-sdk-21.1.4-150500.7.49.1</li>
<li>xorg-x11-server-debugsource-21.1.4-150500.7.49.1</li>
<li>xorg-x11-server-Xvfb-21.1.4-150500.7.49.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64)
<ul>
<li>xorg-x11-server-extra-21.1.4-150500.7.49.1</li>
<li>xorg-x11-server-Xvfb-debuginfo-21.1.4-150500.7.49.1</li>
<li>xorg-x11-server-21.1.4-150500.7.49.1</li>
<li>xorg-x11-server-debuginfo-21.1.4-150500.7.49.1</li>
<li>xorg-x11-server-extra-debuginfo-21.1.4-150500.7.49.1</li>
<li>xorg-x11-server-sdk-21.1.4-150500.7.49.1</li>
<li>xorg-x11-server-debugsource-21.1.4-150500.7.49.1</li>
<li>xorg-x11-server-Xvfb-21.1.4-150500.7.49.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64)
<ul>
<li>xorg-x11-server-extra-21.1.4-150500.7.49.1</li>
<li>xorg-x11-server-Xvfb-debuginfo-21.1.4-150500.7.49.1</li>
<li>xorg-x11-server-21.1.4-150500.7.49.1</li>
<li>xorg-x11-server-debuginfo-21.1.4-150500.7.49.1</li>
<li>xorg-x11-server-extra-debuginfo-21.1.4-150500.7.49.1</li>
<li>xorg-x11-server-sdk-21.1.4-150500.7.49.1</li>
<li>xorg-x11-server-debugsource-21.1.4-150500.7.49.1</li>
<li>xorg-x11-server-Xvfb-21.1.4-150500.7.49.1</li>
</ul>
</li>
</ul>
<h2>References:</h2>
<ul>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1266294">https://bugzilla.suse.com/show_bug.cgi?id=1266294</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1266295">https://bugzilla.suse.com/show_bug.cgi?id=1266295</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1266296">https://bugzilla.suse.com/show_bug.cgi?id=1266296</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1266297">https://bugzilla.suse.com/show_bug.cgi?id=1266297</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1266298">https://bugzilla.suse.com/show_bug.cgi?id=1266298</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1266299">https://bugzilla.suse.com/show_bug.cgi?id=1266299</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1266300">https://bugzilla.suse.com/show_bug.cgi?id=1266300</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1266301">https://bugzilla.suse.com/show_bug.cgi?id=1266301</a>
</li>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1266302">https://bugzilla.suse.com/show_bug.cgi?id=1266302</a>
</li>
</ul>
</div>