Critical DoS Vulnerabilities in openSUSE xorg-x11-server Addressed

Critical DoS Vulnerabilities in openSUSE xorg-x11-server Addressed

First seen 15 Apr 2026, 16:18 UTC Linuxsecurity 98% similarity 75.0

Article Content

Browse articles
ThreatCluster

On April 15, 2026, SUSE released important updates for the xorg-x11-server to address multiple denial-of-service (DoS) vulnerabilities. The vulnerabilities include CVE-2026-33999, CVE-2026-34000, CVE-2026-34001, CVE-2026-34002, and CVE-2026-34003, which involve issues such as integer underflow, out-of-bounds reads, use-after-free, and buffer overflow. These vulnerabilities could potentially allow attackers to crash the xorg-x11-server, affecting systems running openSUSE Leap 15.6 and SUSE Linux Enterprise Server 15 SP6 LTSS. Users are advised to apply the patches using the recommended installation methods, including YaST online_update or zypper patch. The updates are critical for maintaining system stability and security. The vulnerabilities were reported under bug tracking numbers bsc#1260922 to bsc#1260926. The patches are available for various architectures, including x86_64 and aarch64. Current status indicates that users should prioritize applying these updates immediately.

Key Points: • Multiple critical DoS vulnerabilities in xorg-x11-server identified and patched. • Affected systems include openSUSE Leap 15.6 and SUSE Linux Enterprise Server 15 SP6 LTSS. • Users are urged to apply patches using YaST or zypper to mitigate risks.

ThreatCluster AI

Timeline

2026-04-15
SUSE releases patches for xorg-x11-server vulnerabilities
2026-04-15
CVE-2026-33999 published
2026-04-15
CVE-2026-34000 published
2026-04-15
CVE-2026-34001 published
2026-04-15
CVE-2026-34002 published
2026-04-15
CVE-2026-34003 published

Community

Browse all →