Back

SUSE Releases Multiple Security Updates for xorg-x11 with Critical Vulnerabilities

Severity: High (Score: 72.0)

Sources: Linuxsecurity

Published: 2026-06-02 · Updated: 2026-06-03

Keywords: update, suse, important, security, xorg-x11, xorg-x11-server, fixes

Summary

On June 2, 2026, SUSE announced three important security updates for the xorg-x11-server, identified as SUSE-SU-2026:2224-1, SUSE-SU-2026:2225-1, and SUSE-SU-2026:2226-1. Each update addresses nine critical vulnerabilities, including a Use-After-Free Information Disclosure and multiple stack-based buffer overflows. The vulnerabilities affect various SUSE Linux Enterprise products, including High Performance Computing and Server editions. Specific issues include Out-Of-Bounds Writes and Reads, which could lead to unauthorized access or system crashes. Users are advised to apply the patches using recommended installation methods like YaST or zypper. The updates were released simultaneously, indicating a coordinated response to these security threats. No active exploitation has been reported yet, but the vulnerabilities are significant enough to warrant immediate attention. Key Points: • SUSE released three critical updates for xorg-x11-server on June 2, 2026. • Nine vulnerabilities were fixed, including Use-After-Free and buffer overflow issues. • Affected systems include various SUSE Linux Enterprise products; users should apply patches immediately.

Detailed Analysis

**Impact** SUSE Linux Enterprise users across multiple versions and modules are affected, including High Performance Computing 15 SP5, Server 15 SP5 and SP6, Desktop 15 SP7, Real Time 15 SP7, and SAP Applications variants. The vulnerabilities impact systems globally where these distributions are deployed, potentially exposing critical infrastructure and enterprise environments to exploitation. Data at risk includes sensitive system information due to use-after-free and buffer overflow vulnerabilities that could lead to information disclosure or system compromise. **Technical Details** The vulnerabilities involve nine security issues in the xorg-x11-server component, including use-after-free (bsc#1266301, bsc#1266295, bsc#1266298, bsc#1266299) and stack-based buffer overflows (bsc#1266294, bsc#1266296, bsc#1266297), as well as out-of-bounds read/write errors (bsc#1266300, bsc#1266302). These flaws affect functions such as CreateSaverWindow, DRI2 buffer handling, GLX ChangeDrawableAttributes, XKB key types and set map requests, and XSYNC counters. No specific CVE identifiers or attack tools are provided, nor are indicators of compromise (IOCs) or exploitation details. **Recommended Response** Apply the SUSE security updates immediately using recommended methods such as YaST online_update or the "zypper patch" command, targeting the relevant SUSE Linux Enterprise versions and modules. Monitor for unusual activity related to X server processes and potential memory corruption indicators. No specific detection signatures or IOCs are provided; therefore, focus on patch deployment and system integrity verification.

Source articles (3)

  • SUSE: 2026:2226-1: important: Security update for xorg-x11 — Linuxsecurity · 2026-06-02
    ## This update for xorg-x11-server fixes the following issues * CreateSaverWindow Use-After-Free Information Disclosure. (bsc#1266301) * DRI2 DRIGetBuffers/DRIGetBuffersWithFormat Out-Of-Bounds Write.…
  • SUSE: 2026:2225-1: important: Security update for xorg-x11 — Linuxsecurity · 2026-06-02
    ## This update for xorg-x11-server fixes the following issues * CreateSaverWindow Use-After-Free Information Disclosure. (bsc#1266301) * DRI2 DRIGetBuffers/DRIGetBuffersWithFormat Out-Of-Bounds Write.…
  • SUSE: 2026:2224-1: important: Security update for xorg-x11 — Linuxsecurity · 2026-06-02
    ## This update for xorg-x11-server fixes the following issues * CreateSaverWindow Use-After-Free Information Disclosure. (bsc#1266301) * DRI2 DRIGetBuffers/DRIGetBuffersWithFormat Out-Of-Bounds Write.…

Timeline

  • 2026-06-02 — SUSE releases security updates: Three updates for xorg-x11-server were released, addressing nine critical vulnerabilities across multiple SUSE products.
  • 2026-06-02 — Vulnerabilities detailed: The updates include fixes for Use-After-Free and stack-based buffer overflow vulnerabilities, impacting system security.
  • 2026-06-02 — Patch installation recommended: SUSE advises users to apply the patches using YaST or zypper to mitigate the vulnerabilities.

Related entities

  • CWE-120 - Classic Buffer Overflow (Cwe)
  • Cwe-125 - Out-of-bounds Read (Cwe)
  • CWE-200 - Exposure of Sensitive Information (Cwe)
  • Cwe-416 - Use After Free (Cwe)
  • Cwe-787 - Out-of-bounds Write (Cwe)
  • SUSE Linux Enterprise Server (Platform)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed