Back

Critical CVEs Affect Fedora Xwayland and X.Org X11 Server

Severity: Medium (Score: 57.9)

Sources: Linuxsecurity

Summary

On April 14, 2026, critical updates were released for Fedora 43's Xwayland and Fedora 42's X.Org X11 server, addressing multiple vulnerabilities. The updates include fixes for CVE-2026-33999, CVE-2026-34000, CVE-2026-34001, CVE-2026-34002, and CVE-2026-34003, all published on April 23, 2026. These vulnerabilities could potentially allow attackers to exploit the X server environments, affecting users running Fedora distributions. The updates can be installed using the 'dnf' package manager. Security professionals are advised to apply these updates promptly to mitigate risks associated with these vulnerabilities. The affected software versions include Xwayland 24.1.10 and xserver 21.1.22. The scope of impact includes all users of the affected Fedora versions. Current status indicates that the vulnerabilities are patched, but users must ensure they update their systems. Key Points: • Critical CVEs fixed in Fedora 43 Xwayland and Fedora 42 X.Org X11 server. • Vulnerabilities include CVE-2026-33999, CVE-2026-34000, CVE-2026-34001, CVE-2026-34002, CVE-2026-34003. • Users are urged to update their systems using the 'dnf' package manager.

Key Entities

  • CVE-2026-33999 (cve)
  • CVE-2026-34000 (cve)
  • CVE-2026-34001 (cve)
  • CVE-2026-34002 (cve)
  • CVE-2026-34003 (cve)
  • Fedora (company)
  • Wayland (platform)
  • X.Org X11 X server (platform)
  • Xwayland (platform)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed