- What: Security update for Xwayland component
- Impact: Red Hat Enterprise Linux 10.0 users need to apply the update
Red Hat Product Errata RHSA-2026:20563 - Security Advisory Issued: 2026-05-26 Updated: 2026-05-26 RHSA-2026:20563 - Security Advisory Overview Updated Packages Synopsis Important: xorg-x11-server-Xwayland security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for xorg-x11-server-Xwayland is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description Xwayland is an X server for running X clients under Wayland. Security Fix(es): xorg: xwayland: X.Org X server: Denial of Service via integer underflow in XKB compatibility map handling (CVE-2026-33999) xwayland: xorg: X.Org X server: Information disclosure and denial of service via out-of-bounds read in XKB geometry processing. (CVE-2026-34000) xorg: xwayland: X.Org X server: Use-after-free vulnerability leads to server crash and potential memory corruption (CVE-2026-34001) xorg: xwayland: X.Org X server: Information disclosure or Denial of Service via out-of-bounds read in XKB modifier map handling (CVE-2026-34002) xorg: xwayland: X.Org X server: Information exposure and denial of service via out-of-bounds memory access (CVE-2026-34003) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.0 x86_64 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.0 s390x Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.0 ppc64le Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.0 aarch64 Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 10.0 x86_64 Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 10.0 ppc64le Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 10.0 s390x Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 10.0 aarch64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 10.0 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 10.0 s390x Red Hat Enterprise Linux for Power, little endian - 4 years of support 10.0 ppc64le Red Hat Enterprise Linux for x86_64 - 4 years of updates 10.0 x86_64 Fixes BZ - 2451106 - CVE-2026-33999 xorg: xwayland: X.Org X server: Denial of Service via integer underflow in XKB compatibility map handling BZ - 2451107 - CVE-2026-34000 xwayland: xorg: X.Org X server: Information disclosure and denial of service via out-of-bounds read in XKB geometry processing. BZ - 2451109 - CVE-2026-34001 xorg: xwayland: X.Org X server: Use-after-free vulnerability leads to server crash and potential memory corruption BZ - 2451112 - CVE-2026-34002 xorg: xwayland: X.Org X server: Information disclosure or Denial of Service via out-of-bounds read in XKB modifier map handling BZ - 2451113 - CVE-2026-34003 xorg: xwayland: X.Org X server: Information exposure and denial of service via out-of-bounds memory access CVEs CVE-2026-33999 CVE-2026-34000 CVE-2026-34001 CVE-2026-34002 CVE-2026-34003 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.0 SRPM xorg-x11-server-Xwayland-24.1.5-6.el10_0.src.rpm SHA-256: 7cfed83725002c386966ce73375918e7683f544be25a7e28efc6e2e5dda0aaeb x86_64 xorg-x11-server-Xwayland-24.1.5-6.el10_0.x86_64.rpm SHA-256: c3841c35ba48833497a92b8e30409c3740042da4a4908d02c95058957c041ad5 xorg-x11-server-Xwayland-debuginfo-24.1.5-6.el10_0.x86_64.rpm SHA-256: 69d6c7fa3a688afc8c283dd722b9fa3980d2847947b5614c82a6e8b736dcccc9 xorg-x11-server-Xwayland-debugsource-24.1.5-6.el10_0.x86_64.rpm SHA-256: 2146d71fb43b23dfaec525f230f756f22208ce8d4fdd9a8d4f2da6fb85629086 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.0 SRPM xorg-x11-server-Xwayland-24.1.5-6.el10_0.src.rpm SHA-256: 7cfed83725002c386966ce73375918e7683f544be25a7e28efc6e2e5dda0aaeb s390x xorg-x11-server-Xwayland-24.1.5-6.el10_0.s390x.rpm SHA-256: 70bf6c5f9ff6dfa03e8588c17fafaed95bdd28ee69a21bff5d088362661cf9ca xorg-x11-server-Xwayland-debuginfo-24.1.5-6.el10_0.s390x.rpm SHA-256: aa4d4236874df75b7c0627b603cfac4d09f46ee3e9c64b4e01f05aace928f12b xorg-x11-server-Xwayland-debugsource-24.1.5-6.el10_0.s390x.rpm SHA-256: b4fec024ec4810fb313f141a57a674030935d358c7c29c231337a5ebc164dd90 Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.0 SRPM xorg-x11-server-Xwayland-24.1.5-6.el10_0.src.rpm SHA-256: 7cfed83725002c386966ce73375918e7683f544be25a7e28efc6e2e5dda0aaeb ppc64le xorg-x11-server-Xwayland-24.1.5-6.el10_0.ppc64le.rpm SHA-256: 2ff4255ebe645ce6bb4ce5415fc81ad1db3875bd64028aad7a45153730e28b86 xorg-x11-server-Xwayland-debuginfo-24.1.5-6.el10_0.ppc64le.rpm SHA-256: 8e70845442f1ea201224c8c7014caa16f8cb74982fc42e5dcc6ca27b0da60cee xorg-x11-server-Xwayland-debugsource-24.1.5-6.el10_0.ppc64le.rpm SHA-256: 00d2a44c434d9c0806b980544a808f566e41819f8696200d148cfc929eda88ee Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.0 SRPM xorg-x11-server-Xwayland-24.1.5-6.el10_0.src.rpm SHA-256: 7cfed83725002c386966ce73375918e7683f544be25a7e28efc6e2e5dda0aaeb aarch64 xorg-x11-server-Xwayland-24.1.5-6.el10_0.aarch64.rpm SHA-256: 569e918f72756efda120e56430e125a331e569f13cf9cc6360cecbf9782f11df xorg-x11-server-Xwayland-debuginfo-24.1.5-6.el10_0.aarch64.rpm SHA-256: 413fc9e2339376bcda27cf309f976e3397b1cf9d1d62359529b47d015d855283 xorg-x11-server-Xwayland-debugsource-24.1.5-6.el10_0.aarch64.rpm SHA-256: fde5d372f589641d09e13be6f195c5d768b09dc370c040b59589dcd01ffb897e Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 10.0 SRPM x86_64 xorg-x11-server-Xwayland-debuginfo-24.1.5-6.el10_0.x86_64.rpm SHA-256: 69d6c7fa3a688afc8c283dd722b9fa3980d2847947b5614c82a6e8b736dcccc9 xorg-x11-server-Xwayland-debugsource-24.1.5-6.el10_0.x86_64.rpm SHA-256: 2146d71fb43b23dfaec525f230f756f22208ce8d4fdd9a8d4f2da6fb85629086 xorg-x11-server-Xwayland-devel-24.1.5-6.el10_0.x86_64.rpm SHA-256: 07777ad8006ac53043493f0bb1736f4256312b9b2a3838ce7ff1d4bd96d11f35 Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 10.0 SRPM ppc64le xorg-x11-server-Xwayland-debuginfo-24.1.5-6.el10_0.ppc64le.rpm SHA-256: 8e70845442f1ea201224c8c7014caa16f8cb74982fc42e5dcc6ca27b0da60cee xorg-x11-server-Xwayland-debugsource-24.1.5-6.el10_0.ppc64le.rpm SHA-256: 00d2a44c434d9c0806b980544a808f566e41819f8696200d148cfc929eda88ee xorg-x11-server-Xwayland-devel-24.1.5-6.el10_0.ppc64le.rpm SHA-256: fbe15c1e8e52263e33ece223ff527f280394f5ba1f0e325ace7804c26c947d5a Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 10.0 SRPM s390x xorg-x11-server-Xwayland-debuginfo-24.1.5-6.el10_0.s390x.rpm SHA-256: aa4d4236874df75b7c0627b603cfac4d09f46ee3e9c64b4e01f05aace928f12b xorg-x11-server-Xwayland-debugsource-24.1.5-6.el10_0.s390x.rpm SHA-256: b4fec024ec4810fb313f141a57a674030935d358c7c29c231337a5ebc164dd90 xorg-x11-server-Xwayland-devel-24.1.5-6.el10_0.s390x.rpm SHA-256: 4b55ea510a10f435b6dd88012dfa0704a80d0ce97bde71639d85fbc51c4d46db Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 10.0 SRPM aarch64 xorg-x11-server-Xwayland-debuginfo-24.1.5-6.el10_0.aarch64.rpm SHA-256: 413fc9e2339376bcda27cf309f976e3397b1cf9d1d62359529b47d015d855283 xorg-x11-server-Xwayland-debugsource-24.1.5-6.el10_0.aarch64.rpm SHA-256: fde5d372f589641d09e13be6f195c5d768b09dc370c040b59589dcd01ffb897e xorg-x11-server-Xwayland-devel-24.1.5-6.el10_0.aarch64.rpm SHA-256: 851768d49dd134c697e7264586fe7eb1c4e967a474877225edb6a9a863a361fe Red Hat Enterprise Linux for ARM 64 - 4 years of updates 10.0 SRPM xorg-x11-server-Xwayland-24.1.5-6.el10_0.src.rpm SHA-256: 7cfed83725002c386966ce73375918e7683f544be25a7e28efc6e2e5dda0aaeb aarch64 xorg-x11-server-Xwayland-24.1.5-6.el10_0.aarch64.rpm SHA-256: 569e918f72756efda120e56430e125a331e569f13cf9cc6360cecbf9782f11df xorg-x11-server-Xwayland-debuginfo-24.1.5-6.el10_0.aarch64.rpm SHA-256: 413fc9e2339376bcda27cf309f976e3397b1cf9d1d62359529b47d015d855283 xorg-x11-server-Xwayland-debugsource-24.1.5-6.el10_0.aarch64.rpm SHA-256: fde5d372f589641d09e13be6f195c5d768b09dc370c040b59589dcd01ffb897e Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 10.0 SRPM xorg-x11-server-Xwayland-24.1.5-6.el10_0.src.rpm SHA-256: 7cfed83725002c386966ce73375918e7683f544be25a7e28efc6e2e5dda0aaeb s390x xorg-x11-server-Xwayland-24.1.5-6.el10_0.s390x.rpm SHA-256: 70bf6c5f9ff6dfa03e8588c17fafaed95bdd28ee69a21bff5d088362661cf9ca xorg-x11-server-Xwayland-debuginfo-24.1.5-6.el10_0.s390x.rpm SHA-256: aa4d4236874df75b7c0627b603cfac4d09f46ee3e9c64b4e01f05aace928f12b xorg-x11-server-Xwayland-debugsource-24.1.5-6.el10_0.s390x.rpm SHA-256: b4fec024ec4810fb313f141a57a674030935d358c7c29c231337a5ebc164dd90 Red Hat Enterprise Linux for Power, little endian - 4 years of support 10.0 SRPM xorg-x11-server-Xwayland-24.1.5-6.el10_0.src.rpm SHA-256: 7cfed83725002c386966ce73375918e7683f544be25a7e28efc6e2e5dda0aaeb ppc64le xorg-x11-server-Xwayland-24.1.5-6.el10_0.ppc64le.rpm SHA-256: 2ff4255ebe645ce6bb4ce5415fc81ad1db3875bd64028aad7a45153730e28b86 xorg-x11-server-Xwayland-debuginfo-24.1.5-6.el10_0.ppc64le.rpm SHA-256: 8e70845442f1ea201224c8c7014caa16f8cb74982fc42e5dcc6ca27b0da60cee xorg-x11-server-Xwayland-debugsource-24.1