Upstream has issued an advisory on February 28: http://openwall.com/lists/oss-security/2017/02/28/3 https://www.x41-dsec.de/lab/advisories/x41-2017-001-xorg/ I assume the affected version of 1.19.0 and below means they're fixed in 1.19.1 that we have in Cauldron.
More info available here: http://openwall.com/lists/oss-security/2017/03/01/1
patches applied for Cauldron: http://svnweb.mageia.org/packages?view=revision&revision=1088376
openSUSE has issued an advisory for this on June 19: https://lists.opensuse.org/opensuse-updates/2017-06/msg00070.html
Blocks: (none) => 21191
Ubuntu has issued an advisory for this on July 24: https://usn.ubuntu.com/usn/usn-3362-1/
Blocks: 21191 => (none)Depends on: (none) => 21191
Fixed in: http://advisories.mageia.org/MGASA-2017-0269.html
Status: NEW => RESOLVEDResolution: (none) => FIXED