-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 20 Jun 2025 14:46:37 +0200
Source: xorg-server
Binary: xnest xnest-dbgsym xserver-xephyr xserver-xephyr-dbgsym xserver-xorg-core xserver-xorg-core-dbgsym xserver-xorg-core-udeb xserver-xorg-dev xserver-xorg-legacy xserver-xorg-legacy-dbgsym xvfb xvfb-dbgsym
Architecture: mipsel
Version: 2:21.1.7-3+deb12u10
Distribution: bookworm-security
Urgency: high
Maintainer: mipsel Build Daemon (mipsel-osuosl-03) <buildd_mips64el-mipsel-osuosl-03@buildd.debian.org>
Changed-By: Salvatore Bonaccorso <carnil@debian.org>
Description:
 xnest      - Nested X server
 xserver-xephyr - nested X server
 xserver-xorg-core - Xorg X server - core server
 xserver-xorg-core-udeb - Xorg X server - core server (udeb)
 xserver-xorg-dev - Xorg X server - development files
 xserver-xorg-legacy - setuid root Xorg server wrapper
 xvfb       - Virtual Framebuffer 'fake' X server
Changes:
 xorg-server (2:21.1.7-3+deb12u10) bookworm-security; urgency=high
 .
   * Non-maintainer upload by the Security Team.
   * render: Avoid 0 or less animated cursors (CVE-2025-49175)
   * os: Do not overflow the integer size with BigRequest (CVE-2025-49176)
   * xfixes: Check request length for SetClientDisconnectMode (CVE-2025-49177)
   * os: Account for bytes to ignore when sharing input buffer (CVE-2025-49178)
   * record: Check for overflow in RecordSanityCheckRegisterClients()
     (CVE-2025-49179)
   * randr: Check for overflow in RRChangeProviderProperty() (CVE-2025-49180)
   * xfree86: Check for RandR provider functions (CVE-2025-49180)
   * os: Check for integer overflow on BigRequest length (CVE-2025-49176)
Checksums-Sha1:
 2334918a900c69000fa7df36a60e5e322eb16dbb 2684436 xnest-dbgsym_21.1.7-3+deb12u10_mipsel.deb
 7d0f1b1340d136c2bc9d18fb3ecf9097d88fb430 2934952 xnest_21.1.7-3+deb12u10_mipsel.deb
 2ee7faecb4baa107d8de722b4111fab613205358 14673 xorg-server_21.1.7-3+deb12u10_mipsel-buildd.buildinfo
 e7d8c6c808bdaa79e66ba6c7ba69fd09d2c45c41 3957680 xserver-xephyr-dbgsym_21.1.7-3+deb12u10_mipsel.deb
 0840f36ea0e413ceca81e9c90152791fecd97a36 3178660 xserver-xephyr_21.1.7-3+deb12u10_mipsel.deb
 ffd0dbfbd17419e434cf941827bb7f479d1b139b 5774128 xserver-xorg-core-dbgsym_21.1.7-3+deb12u10_mipsel.deb
 7e9e298ba70a7661b4a4b4f6e8192dbb2f8557e2 839904 xserver-xorg-core-udeb_21.1.7-3+deb12u10_mipsel.udeb
 d8a5f5a1773cb32053b171bdd62ab10d25197ff8 3545720 xserver-xorg-core_21.1.7-3+deb12u10_mipsel.deb
 ea8838c61121d754af7f336ef38a2f1a47e93bff 2554668 xserver-xorg-dev_21.1.7-3+deb12u10_mipsel.deb
 c2839ee585001dd54901059856e92d5e794d4353 9532 xserver-xorg-legacy-dbgsym_21.1.7-3+deb12u10_mipsel.deb
 24c8d5688eeff634fc9bf315e79654b147841f65 2388792 xserver-xorg-legacy_21.1.7-3+deb12u10_mipsel.deb
 9ca51dd4cadd5a7d6adf789707d67dd0d3803b3d 3273248 xvfb-dbgsym_21.1.7-3+deb12u10_mipsel.deb
 10a0d285ce55c23e544bc4b5e705054b7e156a9b 3057600 xvfb_21.1.7-3+deb12u10_mipsel.deb
Checksums-Sha256:
 d743417db0deadbd3786f66d5e0258956cdff5a14650c9fba29a3d910f2131fd 2684436 xnest-dbgsym_21.1.7-3+deb12u10_mipsel.deb
 17dca7805f398ef62baba87b6702389be5a02f4d50275048dbd99dd55d773940 2934952 xnest_21.1.7-3+deb12u10_mipsel.deb
 4b3d4a7fc53b633022b16ae6cc1a1fdaca2e3777518d3dbaba4a21b8d249a4ab 14673 xorg-server_21.1.7-3+deb12u10_mipsel-buildd.buildinfo
 cb5d451025026dd48df4ffe85d036711ec2f371de285cadeb8a85402bf164b7a 3957680 xserver-xephyr-dbgsym_21.1.7-3+deb12u10_mipsel.deb
 9a38794ef9a6d9b3fe6836d240aaf5bc0ca673d028a6294dc185ddf21b1ced88 3178660 xserver-xephyr_21.1.7-3+deb12u10_mipsel.deb
 e7b73a0feb7ff2a96be604414c7483697522af0574d7ef1d45bce3f548dd7f55 5774128 xserver-xorg-core-dbgsym_21.1.7-3+deb12u10_mipsel.deb
 0ecceb91a53debaac89d34168846ae0239f2567a4883d7909478cbea63077948 839904 xserver-xorg-core-udeb_21.1.7-3+deb12u10_mipsel.udeb
 1db6cd53a36220e6e1874d4585cf62ed86ac1a0a790d260ccd4ea7ad7fd0cc56 3545720 xserver-xorg-core_21.1.7-3+deb12u10_mipsel.deb
 20b8e4ad49bcbb5fc7c60762fd0b3b808905fe4a05041c94dbc5f33db73d5456 2554668 xserver-xorg-dev_21.1.7-3+deb12u10_mipsel.deb
 d713d7a4a27c205d15252d7622022f2c7445914872d4cc61d7c9742da56798da 9532 xserver-xorg-legacy-dbgsym_21.1.7-3+deb12u10_mipsel.deb
 f128ee43bd32cc5d362452fbef0159c5c772496f5fef96d4f2126983f800cc4a 2388792 xserver-xorg-legacy_21.1.7-3+deb12u10_mipsel.deb
 7d61a37602fce96164f0b6ae7083fff764ee97738e06ff341d5f054fdbb4b33a 3273248 xvfb-dbgsym_21.1.7-3+deb12u10_mipsel.deb
 ee4f532a1b64adbe7c9c3899bedbe9ae93ab8e6979b332bad5060af7613e47cc 3057600 xvfb_21.1.7-3+deb12u10_mipsel.deb
Files:
 64cb613af702158a31a973ad271b947e 2684436 debug optional xnest-dbgsym_21.1.7-3+deb12u10_mipsel.deb
 16d40a5f22ff9d51fa0535d607b0446a 2934952 x11 optional xnest_21.1.7-3+deb12u10_mipsel.deb
 c7fe2611ed5250a2ba8898b5c3cb12b1 14673 x11 optional xorg-server_21.1.7-3+deb12u10_mipsel-buildd.buildinfo
 2fecee4b01db50b87cacebf42662c8fe 3957680 debug optional xserver-xephyr-dbgsym_21.1.7-3+deb12u10_mipsel.deb
 7479654585419d9935977775ef58faf9 3178660 x11 optional xserver-xephyr_21.1.7-3+deb12u10_mipsel.deb
 f1a1f71809585c8b48b7961eec0e6a84 5774128 debug optional xserver-xorg-core-dbgsym_21.1.7-3+deb12u10_mipsel.deb
 3c51007693331bbec845b590a8f5ce79 839904 debian-installer optional xserver-xorg-core-udeb_21.1.7-3+deb12u10_mipsel.udeb
 3326057f8c67243c9492d6ef27a192c2 3545720 x11 optional xserver-xorg-core_21.1.7-3+deb12u10_mipsel.deb
 4f0d859ff259cb5b93b9140c3c242281 2554668 x11 optional xserver-xorg-dev_21.1.7-3+deb12u10_mipsel.deb
 9597a48d718beff05613252fc5e950ef 9532 debug optional xserver-xorg-legacy-dbgsym_21.1.7-3+deb12u10_mipsel.deb
 5e6ef137a4d9188c79bbc5c2dc9bd48e 2388792 x11 optional xserver-xorg-legacy_21.1.7-3+deb12u10_mipsel.deb
 55b4117184ca0c13246e3d69ce5bfdf8 3273248 debug optional xvfb-dbgsym_21.1.7-3+deb12u10_mipsel.deb
 440393b1cdeccddf3202a979a8addef7 3057600 x11 optional xvfb_21.1.7-3+deb12u10_mipsel.deb

-----BEGIN PGP SIGNATURE-----
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=JL6k
-----END PGP SIGNATURE-----