An Important update for xorg-x11-server-Xwayland addresses three vulnerabilities (CVE-2026-33999, CVE-2026-34001, CVE-2026-34003) with CVSS scores of 7.8 (HIGH), which can lead to denial of service, memory corruption, and information exposure via integer underflow, use-after-free, and out-of-bounds memory access. The vulnerabilities affect Red Hat Enterprise Linux 10, and the fix is provided in package version xorg-x11-server-Xwayland-24.1.5-6.el10_1.
Red Hat Product Errata RHSA-2026:11352 - Security Advisory Issued: 2026-04-28 Updated: 2026-04-28 RHSA-2026:11352 - Security Advisory Overview Updated Packages Synopsis Important: xorg-x11-server-Xwayland security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for xorg-x11-server-Xwayland is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description Xwayland is an X server for running X clients under Wayland. Security Fix(es): xorg: xwayland: X.Org X server: Denial of Service via integer underflow in XKB compatibility map handling (CVE-2026-33999) xorg: xwayland: X.Org X server: Use-after-free vulnerability leads to server crash and potential memory corruption (CVE-2026-34001) xorg: xwayland: X.Org X server: Information exposure and denial of service via out-of-bounds memory access (CVE-2026-34003) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 10 x86_64 Red Hat Enterprise Linux for IBM z Systems 10 s390x Red Hat Enterprise Linux for Power, little endian 10 ppc64le Red Hat Enterprise Linux for ARM 64 10 aarch64 Red Hat CodeReady Linux Builder for x86_64 10 x86_64 Red Hat CodeReady Linux Builder for Power, little endian 10 ppc64le Red Hat CodeReady Linux Builder for ARM 64 10 aarch64 Red Hat CodeReady Linux Builder for IBM z Systems 10 s390x Fixes BZ - 2451106 - CVE-2026-33999 xorg: xwayland: X.Org X server: Denial of Service via integer underflow in XKB compatibility map handling BZ - 2451109 - CVE-2026-34001 xorg: xwayland: X.Org X server: Use-after-free vulnerability leads to server crash and potential memory corruption BZ - 2451113 - CVE-2026-34003 xorg: xwayland: X.Org X server: Information exposure and denial of service via out-of-bounds memory access CVEs CVE-2026-33999 CVE-2026-34001 CVE-2026-34003 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 10 SRPM xorg-x11-server-Xwayland-24.1.5-6.el10_1.src.rpm SHA-256: 2cd528bf28a5cab3ab4846ca84da0d9a0e5fd1b5c6bb9e2fd34bcde592347187 x86_64 xorg-x11-server-Xwayland-24.1.5-6.el10_1.x86_64.rpm SHA-256: fd14c4ee7183f170db33db2b2e1670ea414f1ad1d0df5ffbf4d6612b0bba0394 xorg-x11-server-Xwayland-debuginfo-24.1.5-6.el10_1.x86_64.rpm SHA-256: 18ecf7130538cc0b6bc1af526685cdd54d0ea663d1252c122e26308045c2c39e xorg-x11-server-Xwayland-debugsource-24.1.5-6.el10_1.x86_64.rpm SHA-256: e3a98611f91cd2e104febba21073afb1e39ee6d326841cdb789857e5f1bef2ea Red Hat Enterprise Linux for IBM z Systems 10 SRPM xorg-x11-server-Xwayland-24.1.5-6.el10_1.src.rpm SHA-256: 2cd528bf28a5cab3ab4846ca84da0d9a0e5fd1b5c6bb9e2fd34bcde592347187 s390x xorg-x11-server-Xwayland-24.1.5-6.el10_1.s390x.rpm SHA-256: 16d1ea57f3c84266ad5ff624c50f21a49f57c570c4960b6833bf3f175e042299 xorg-x11-server-Xwayland-debuginfo-24.1.5-6.el10_1.s390x.rpm SHA-256: 1aa515412880a8ff67f545a1e5e9e40a6c1acd12fa7a4ff1fb3635899485983c xorg-x11-server-Xwayland-debugsource-24.1.5-6.el10_1.s390x.rpm SHA-256: 02abc7ee557c5d6a34dc814217be129c1778f3fd154633ebb5e7e1cce0fef4e8 Red Hat Enterprise Linux for Power, little endian 10 SRPM xorg-x11-server-Xwayland-24.1.5-6.el10_1.src.rpm SHA-256: 2cd528bf28a5cab3ab4846ca84da0d9a0e5fd1b5c6bb9e2fd34bcde592347187 ppc64le xorg-x11-server-Xwayland-24.1.5-6.el10_1.ppc64le.rpm SHA-256: 41550ec6849a5af2dc231577c62177893e08934cbfe7b5936162c524e9019012 xorg-x11-server-Xwayland-debuginfo-24.1.5-6.el10_1.ppc64le.rpm SHA-256: 9344077ee3e80f4b4c39be0b0d6efa278a7ec843dea6941ae48f4ba9289e413f xorg-x11-server-Xwayland-debugsource-24.1.5-6.el10_1.ppc64le.rpm SHA-256: 16125d781f40ad33cc900d3572650de974d3fb184be0d578ade109e62f52eb50 Red Hat Enterprise Linux for ARM 64 10 SRPM xorg-x11-server-Xwayland-24.1.5-6.el10_1.src.rpm SHA-256: 2cd528bf28a5cab3ab4846ca84da0d9a0e5fd1b5c6bb9e2fd34bcde592347187 aarch64 xorg-x11-server-Xwayland-24.1.5-6.el10_1.aarch64.rpm SHA-256: 3228052030e21a506dbc4cf6e2940060429dff3d4ac1b85a80acf9be9c258add xorg-x11-server-Xwayland-debuginfo-24.1.5-6.el10_1.aarch64.rpm SHA-256: 0e4c010c6c672d0b8d7a4ae3473e185c99f0de8e06ce97d7454b8830de934761 xorg-x11-server-Xwayland-debugsource-24.1.5-6.el10_1.aarch64.rpm SHA-256: f5b1fdd4d370d0b557899446f05ce6301475f9965267ae66b99a70d564a3cc05 Red Hat CodeReady Linux Builder for x86_64 10 SRPM x86_64 xorg-x11-server-Xwayland-debuginfo-24.1.5-6.el10_1.x86_64.rpm SHA-256: 18ecf7130538cc0b6bc1af526685cdd54d0ea663d1252c122e26308045c2c39e xorg-x11-server-Xwayland-debugsource-24.1.5-6.el10_1.x86_64.rpm SHA-256: e3a98611f91cd2e104febba21073afb1e39ee6d326841cdb789857e5f1bef2ea xorg-x11-server-Xwayland-devel-24.1.5-6.el10_1.x86_64.rpm SHA-256: 3fa3d7e6a3be1fc010d5b894b8ed817d998baa32d98b5fb9cf5c4faebc9f2470 Red Hat CodeReady Linux Builder for Power, little endian 10 SRPM ppc64le xorg-x11-server-Xwayland-debuginfo-24.1.5-6.el10_1.ppc64le.rpm SHA-256: 9344077ee3e80f4b4c39be0b0d6efa278a7ec843dea6941ae48f4ba9289e413f xorg-x11-server-Xwayland-debugsource-24.1.5-6.el10_1.ppc64le.rpm SHA-256: 16125d781f40ad33cc900d3572650de974d3fb184be0d578ade109e62f52eb50 xorg-x11-server-Xwayland-devel-24.1.5-6.el10_1.ppc64le.rpm SHA-256: ad539dd4823499513a55ba028639f6c43723cbde2cd8d99f9cfe50ad0d552bf6 Red Hat CodeReady Linux Builder for ARM 64 10 SRPM aarch64 xorg-x11-server-Xwayland-debuginfo-24.1.5-6.el10_1.aarch64.rpm SHA-256: 0e4c010c6c672d0b8d7a4ae3473e185c99f0de8e06ce97d7454b8830de934761 xorg-x11-server-Xwayland-debugsource-24.1.5-6.el10_1.aarch64.rpm SHA-256: f5b1fdd4d370d0b557899446f05ce6301475f9965267ae66b99a70d564a3cc05 xorg-x11-server-Xwayland-devel-24.1.5-6.el10_1.aarch64.rpm SHA-256: 1202ea1fba8dbf106828cd76b2f8aedc622ea19d28789ea6cb31cf3ca958229d Red Hat CodeReady Linux Builder for IBM z Systems 10 SRPM s390x xorg-x11-server-Xwayland-debuginfo-24.1.5-6.el10_1.s390x.rpm SHA-256: 1aa515412880a8ff67f545a1e5e9e40a6c1acd12fa7a4ff1fb3635899485983c xorg-x11-server-Xwayland-debugsource-24.1.5-6.el10_1.s390x.rpm SHA-256: 02abc7ee557c5d6a34dc814217be129c1778f3fd154633ebb5e7e1cce0fef4e8 xorg-x11-server-Xwayland-devel-24.1.5-6.el10_1.s390x.rpm SHA-256: 563ec85538a3b314bdf53071caa4aab1261c8d49317a55504bff8ffe8f32636e The Red Hat security contact is secalert@redhat.com . More contact details at https://access.redhat.com/security/team/contact/ .