{"id":"RHSA-2026:26709","summary":"Red Hat Security Advisory: xorg-x11-server security, bug fix, and enhancement update","modified":"2026-06-19T10:06:53Z","published":"2026-06-18T10:10:02Z","upstream":["CVE-2026-50256","CVE-2026-50257","CVE-2026-50258","CVE-2026-50259","CVE-2026-50260","CVE-2026-50261","CVE-2026-50262","CVE-2026-50263","CVE-2026-50264"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2026:26709"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#important"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485380"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485382"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485383"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485384"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485385"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485386"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485387"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485388"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2485389"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_26709.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-50256"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-50256"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-50256"},{"type":"ARTICLE","url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/bb5158f962dc935e58ef8b4b5fcb31be201a6e07"},{"type":"ARTICLE","url":"https://lists.x.org/archives/xorg-announce/2026-June/003702.html"},{"type":"ARTICLE","url":"https://redhat.atlassian.net/browse/PSIRTSUPT-16950"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-50257"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-50257"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-50257"},{"type":"ARTICLE","url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/f5abfb61994471023d8c6470428c8e30c411cc0b"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-50258"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-50258"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-50258"},{"type":"ARTICLE","url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/543e108516428fc8c3bea91d6563ad266f9a801e"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-50259"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-50259"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-50259"},{"type":"ARTICLE","url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/867b59b33bee669cb412f1314e47c52eacf6e00b"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-50260"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-50260"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-50260"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-50261"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-50261"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-50261"},{"type":"ARTICLE","url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/bdd7bf57af208b1ddf57d4683d67104443b44812"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-50262"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-50262"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-50262"},{"type":"ARTICLE","url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/6d459e4daf715bea8abdafa8fb130be2f8a1d145"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-50263"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-50263"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-50263"},{"type":"ARTICLE","url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/ecc634f1b2f7aa473d3a267eada98c4918bf9e05"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-50264"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-50264"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-50264"},{"type":"ARTICLE","url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/339c279514326134b0878fc23ce6e9520440ce7f"}],"affected":[{"package":{"name":"xorg-x11-server","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/xorg-x11-server"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.11-28.el8_10.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:26709.json"}},{"package":{"name":"xorg-x11-server-Xdmx","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/xorg-x11-server-Xdmx"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.11-28.el8_10.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:26709.json"}},{"package":{"name":"xorg-x11-server-Xdmx-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/xorg-x11-server-Xdmx-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.11-28.el8_10.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:26709.json"}},{"package":{"name":"xorg-x11-server-Xephyr","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/xorg-x11-server-Xephyr"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.11-28.el8_10.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:26709.json"}},{"package":{"name":"xorg-x11-server-Xephyr-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/xorg-x11-server-Xephyr-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.11-28.el8_10.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:26709.json"}},{"package":{"name":"xorg-x11-server-Xnest","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/xorg-x11-server-Xnest"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.11-28.el8_10.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:26709.json"}},{"package":{"name":"xorg-x11-server-Xnest-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/xorg-x11-server-Xnest-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.11-28.el8_10.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:26709.json"}},{"package":{"name":"xorg-x11-server-Xorg","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/xorg-x11-server-Xorg"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.11-28.el8_10.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:26709.json"}},{"package":{"name":"xorg-x11-server-Xorg-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/xorg-x11-server-Xorg-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.11-28.el8_10.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:26709.json"}},{"package":{"name":"xorg-x11-server-Xvfb","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/xorg-x11-server-Xvfb"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.11-28.el8_10.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:26709.json"}},{"package":{"name":"xorg-x11-server-Xvfb-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/xorg-x11-server-Xvfb-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.11-28.el8_10.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:26709.json"}},{"package":{"name":"xorg-x11-server-common","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/xorg-x11-server-common"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.11-28.el8_10.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:26709.json"}},{"package":{"name":"xorg-x11-server-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/xorg-x11-server-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.11-28.el8_10.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:26709.json"}},{"package":{"name":"xorg-x11-server-debugsource","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/xorg-x11-server-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.11-28.el8_10.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:26709.json"}},{"package":{"name":"xorg-x11-server-devel","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/xorg-x11-server-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.11-28.el8_10.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:26709.json"}},{"package":{"name":"xorg-x11-server-source","ecosystem":"Red Hat:enterprise_linux:8::appstream","purl":"pkg:rpm/redhat/xorg-x11-server-source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.11-28.el8_10.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:26709.json"}},{"package":{"name":"xorg-x11-server","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/xorg-x11-server"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.11-28.el8_10.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:26709.json"}},{"package":{"name":"xorg-x11-server-Xdmx","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/xorg-x11-server-Xdmx"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.11-28.el8_10.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:26709.json"}},{"package":{"name":"xorg-x11-server-Xdmx-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/xorg-x11-server-Xdmx-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.11-28.el8_10.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:26709.json"}},{"package":{"name":"xorg-x11-server-Xephyr","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/xorg-x11-server-Xephyr"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.11-28.el8_10.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:26709.json"}},{"package":{"name":"xorg-x11-server-Xephyr-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/xorg-x11-server-Xephyr-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.11-28.el8_10.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:26709.json"}},{"package":{"name":"xorg-x11-server-Xnest","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/xorg-x11-server-Xnest"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.11-28.el8_10.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:26709.json"}},{"package":{"name":"xorg-x11-server-Xnest-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/xorg-x11-server-Xnest-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.11-28.el8_10.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:26709.json"}},{"package":{"name":"xorg-x11-server-Xorg","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/xorg-x11-server-Xorg"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.11-28.el8_10.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:26709.json"}},{"package":{"name":"xorg-x11-server-Xorg-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/xorg-x11-server-Xorg-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.11-28.el8_10.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:26709.json"}},{"package":{"name":"xorg-x11-server-Xvfb","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/xorg-x11-server-Xvfb"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.11-28.el8_10.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:26709.json"}},{"package":{"name":"xorg-x11-server-Xvfb-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/xorg-x11-server-Xvfb-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.11-28.el8_10.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:26709.json"}},{"package":{"name":"xorg-x11-server-common","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/xorg-x11-server-common"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.11-28.el8_10.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:26709.json"}},{"package":{"name":"xorg-x11-server-debuginfo","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/xorg-x11-server-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.11-28.el8_10.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:26709.json"}},{"package":{"name":"xorg-x11-server-debugsource","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/xorg-x11-server-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.11-28.el8_10.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:26709.json"}},{"package":{"name":"xorg-x11-server-devel","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/xorg-x11-server-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.11-28.el8_10.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:26709.json"}},{"package":{"name":"xorg-x11-server-source","ecosystem":"Red Hat:enterprise_linux:8::crb","purl":"pkg:rpm/redhat/xorg-x11-server-source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.20.11-28.el8_10.2"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:26709.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}