PT-2026-33103 · Xwayland+2 · Xwayland+2

Jan-Niklas Sohn

·

Published

2026-03-25

·

Updated

2026-06-05

·

CVE-2026-34000

CVSS v3.1

9.1

Critical

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
Name of the Vulnerable Software and Affected Versions xwayland versions prior to 24.1.9-2.1 xorg-x11-server versions prior to 21.1.21-5.1
Description Security issues were identified in xwayland and xorg-x11-server.
Recommendations Update xwayland to version 24.1.9-2.1. Update xorg-x11-server to version 21.1.21-5.1.

Fix

DoS

Out of bounds Read

Weakness Enumeration

CWE-125

Related Identifiers

BDU:2026-05827
CVE-2026-34000
ECHO-3DD8-08D4-1C16
OESA-2026-2139
OPENSUSE-SU-2026:10556-1
OPENSUSE-SU-2026:10557-1
OPENSUSE-SU-2026:20544-1
OPENSUSE-SU-2026:20560-1
RHSA-2026:19342
SUSE-SU-2026:1328-1
SUSE-SU-2026:1329-1
SUSE-SU-2026:1330-1
SUSE-SU-2026:1331-1
SUSE-SU-2026:1332-1
SUSE-SU-2026:1333-1
SUSE-SU-2026:1335-1
SUSE-SU-2026:21211-1

Affected Products

Rocky Linux
Xorg-X11-Server
Xwayland