Suggested advisory:
========================

The updated packages fix security vulnerabilities:

Use-after-free in XPresentNotify structures creation. (CVE-2025-62229)

Use-after-free in Xkb client resource removal. (CVE-2025-62230)

Value overflow in Xkb extension XkbSetCompatMap(). (CVE-2025-62231)

References:
https://www.openwall.com/lists/oss-security/2025/10/28/7
========================

Updated packages in core/updates_testing:
========================
x11-server-21.1.8-7.9.mga9
x11-server-common-21.1.8-7.9.mga9
x11-server-devel-21.1.8-7.9.mga9
x11-server-source-21.1.8-7.9.mga9
x11-server-xephyr-21.1.8-7.9.mga9
x11-server-xnest-21.1.8-7.9.mga9
x11-server-xorg-21.1.8-7.9.mga9
x11-server-xvfb-21.1.8-7.9.mga9

x11-server-xwayland-22.1.9-1.9.mga9
x11-server-xwayland-devel-22.1.9-1.9.mga9

tigervnc-1.13.1-2.9.mga9
tigervnc-java-1.13.1-2.9.mga9
tigervnc-server-1.13.1-2.9.mga9
tigervnc-server-module-1.13.1-2.9.mga9

from SRPMS:
x11-server-21.1.8-7.9.mga9.src.rpm
x11-server-xwayland-22.1.9-1.9.mga9.src.rpm
tigervnc-1.13.1-2.9.mga9.src.rpm

Version: Cauldron => 9
Source RPM: x11-server, x11-server-xwayland, tigervnc => x11-server-21.1.8-7.8.mga9.src.rpm, x11-server-xwayland-22.1.9-1.8.mga9.src.rpm, tigervnc-1.13.1-2.8.mga9.src.rpm
Assignee: bugsquad => qa-bugs
Whiteboard: MGA9TOO => (none)
Status: NEW => ASSIGNED

MGA9-64 server on Compaq H000SB
No installation issues.
Rebooted after installation and logged in at Plasma(X11).
Had a quick look around, couldn't see any obvious problems.
Logged out and in again at Plasma(Wayland) - which I normally use - and found no problems either (using it now).
As far s tigervnc is concerned:
Opened ports 5900:5902 on both this laptop and my desktop, last one to act as client.
# systemctl start vncserver
#  systemctl -l status vncserver
● vncserver.service - LSB: Start TigerVNC server at boot time
     Loaded: loaded (/etc/rc.d/init.d/vncserver; generated)
     Active: active (exited) since Wed 2025-10-29 15:58:36 CET; 13s ago
       Docs: man:systemd-sysv-generator(8)
    Process: 6545 ExecStart=/etc/rc.d/init.d/vncserver start (code=exited, status=0/SUCCESS)
        CPU: 161ms

Oct 29 15:58:35 mach3.hviaene.thuis systemd[1]: Starting vncserver.service...
Oct 29 15:58:35 mach3.hviaene.thuis su[6555]: (to tester9) root on none
Oct 29 15:58:35 mach3.hviaene.thuis su[6555]: pam_unix(su-l:session): session opened for user tester9(uid=1000) by (uid=0)
Oct 29 15:58:36 mach3.hviaene.thuis su[6555]: pam_unix(su-l:session): session closed for user tester9
Oct 29 15:58:36 mach3.hviaene.thuis su[6592]: (to tester9) root on none
Oct 29 15:58:36 mach3.hviaene.thuis su[6592]: pam_unix(su-l:session): session opened for user tester9(uid=1000) by (uid=0)
Oct 29 15:58:36 mach3.hviaene.thuis su[6592]: pam_unix(su-l:session): session closed for user tester9
Oct 29 15:58:36 mach3.hviaene.thuis vncserver[6545]: Starting vncserver: [  OK  ]
Oct 29 15:58:36 mach3.hviaene.thuis systemd[1]: Started vncserver.service.

But as usual I don't get any further than "unable to connect to socket" at the client, as usual.
On the previous update 34381 Comment 12 I now notice:
"vncserver started with systemd socket activation"
I cann't figure out what this means. I find googling references to a file /etc/systemd/system/vncserver@.service but that file isn't present here.
I feel so stupid.

CC: (none) => herman.viaene

Installed and tested without issues.

Tested:
- a day of workstation usage
- local session, using sddm session manager;
- Plasma DE, LXQt DE;
- OpenGL, Vulkan;
- video acceleration playback (VA-API);
All OK.



System: Mageia 9, x86_64, Plasma DE, AMD Ryzen 5 5600G with Radeon Graphics using amdgpu driver.



$ uname -a
Linux jupiter 6.6.105-desktop-1.mga9 #1 SMP PREEMPT_DYNAMIC Wed Sep 10 13:53:34 UTC 2025 x86_64 GNU/Linux
$ rpm -qa | grep x11-server | sort
x11-server-common-21.1.8-7.9.mga9
x11-server-xorg-21.1.8-7.9.mga9
x11-server-xwayland-22.1.9-1.9.mga9
$ inxi -SMCGN
System:
  Host: jupiter Kernel: 6.6.105-desktop-1.mga9 arch: x86_64 bits: 64
  Desktop: KDE Plasma v: 5.27.10 Distro: Mageia 9
Machine:
  Type: Desktop System: ASUS product: N/A v: N/A serial: <superuser required>
  Mobo: ASUSTeK model: TUF GAMING B450-PLUS II v: Rev X.0x
    serial: <superuser required> UEFI: American Megatrends v: 3802
    date: 04/28/2022
CPU:
  Info: 6-core model: AMD Ryzen 5 5600G with Radeon Graphics bits: 64
    type: MT MCP cache: L2: 3 MiB
  Speed (MHz): avg: 2994 min/max: 400/4464 cores: 1: 2994 2: 2994 3: 2994
    4: 2994 5: 2994 6: 2994 7: 2994 8: 2994 9: 2994 10: 2994 11: 2994 12: 2994
Graphics:
  Device-1: Advanced Micro Devices [AMD/ATI] Navi 24 [Radeon RX 6400/6500
    XT/6500M] driver: vfio-pci v: N/A
  Device-2: Advanced Micro Devices [AMD/ATI] Cezanne [Radeon Vega Series /
    Radeon Mobile Series] driver: amdgpu v: kernel
  Device-3: Microdia CameraA driver: snd-usb-audio,uvcvideo type: USB
  Display: x11 server: X.org v: 1.21.1.8 with: Xwayland v: 22.1.9 driver: X:
    loaded: amdgpu,v4l dri: radeonsi gpu: amdgpu resolution: 1920x1080~60Hz
  API: EGL v: 1.5 drivers: kms_swrast,radeonsi,swrast
    platforms: gbm,x11,surfaceless,device
  API: OpenGL v: 4.6 compat-v: 4.5 vendor: amd mesa v: 25.0.7 renderer: AMD
    Radeon Graphics (radeonsi renoir ACO DRM 3.54 6.6.105-desktop-1.mga9)
  API: Vulkan v: 1.3.231 drivers: radv,llvmpipe surfaces: xcb,xlib
Network:
  Device-1: Realtek RTL8111/8168/8411 PCI Express Gigabit Ethernet
    driver: r8169

CC: (none) => mageia

Installed and tested without issues.

Tested:
- local session, using sddm session manager;
- VirtIO plus SPICE;
- OpenGL, Vulkan;
- Plasma X11 session;
- Plasma Wayland session with Xwayland;
- QEMU/KVM guests integration: clipboard sharing, screen resizing to match viewer window.



Host System: see comment 3
Guest System: Mageia 9, x86_64, Plasma DE, QEMU/KVM guest, AMD Ryzen 5 5600G with Radeon Graphics, virtio plus SPICE.



$ uname -a
Linux jupiter-vm-mageia-9 6.6.105-desktop-1.mga9 #1 SMP PREEMPT_DYNAMIC Wed Sep 10 13:53:34 UTC 2025 x86_64 GNU/Linux
$ rpm -qa | grep x11-server | sort
x11-server-common-21.1.8-7.9.mga9
x11-server-xorg-21.1.8-7.9.mga9
x11-server-xwayland-22.1.9-1.9.mga9
$ inxi -SMCGN
System:
  Host: jupiter-vm-mageia-9 Kernel: 6.6.105-desktop-1.mga9 arch: x86_64
    bits: 64
  Desktop: KDE Plasma v: 5.27.10 Distro: Mageia 9
Machine:
  Type: Kvm System: QEMU product: Standard PC (Q35 + ICH9, 2009) v: pc-q35-5.2
    serial: <superuser required>
  Mobo: N/A model: N/A serial: N/A UEFI: EDK II
    v: edk2-20221117gitfff6d81270b5-7.mga9 date: 11/17/2022
CPU:
  Info: 12x 1-core model: AMD Ryzen 5 5600G with Radeon Graphics bits: 64
    type: SMP cache: L2: 12x 512 KiB (6 MiB)
  Speed (MHz): avg: 3893 min/max: N/A cores: 1: 3893 2: 3893 3: 3893 4: 3893
    5: 3893 6: 3893 7: 3893 8: 3893 9: 3893 10: 3893 11: 3893 12: 3893
Graphics:
  Device-1: Red Hat Virtio 1.0 GPU driver: virtio-pci v: 1
  Display: x11 server: X.org v: 1.21.1.8 with: Xwayland v: 22.1.9 driver: X:
    loaded: modesetting,v4l dri: virtio_gpu gpu: virtio-pci
    resolution: 1920x933~75Hz
  API: EGL v: 1.5 drivers: swrast,virtio_gpu
    platforms: gbm,x11,surfaceless,device
  API: OpenGL v: 4.5 compat-v: 4.3 vendor: mesa v: 25.0.7 renderer: virgl
    (AMD Radeon Graphics (radeonsi renoir ACO DRM 3.54...)
  API: Vulkan v: 1.3.231 drivers: llvmpipe surfaces: xcb,xlib
Network:
  Device-1: Red Hat Virtio 1.0 network driver: virtio-pci

Installed and tested without issues.

Tested:
- local session, using sddm session manager;
- PCI pass through to QEMU/KVM virtual machines;
- LXQt DE;
- OpenGL, Vulkan;
- video decoding acceleration (VA-API);
- Steam and games;
All OK.


Host System: See comment 3
Guest System: Mageia 9, x86_64, LXQt DE, QEMU/KVM guest, AMD Ryzen 5 5600G with Radeon Graphics, PCI pass through of AMD Radeon RX 6500 XT using amdgpu driver.



$ uname -a
Linux jupiter-vm-mageia-9-jogos 6.6.105-desktop-1.mga9 #1 SMP PREEMPT_DYNAMIC Wed Sep 10 13:53:34 UTC 2025 x86_64 GNU/Linux
$ rpm -qa | grep x11-server | sort
x11-server-common-21.1.8-7.9.mga9
x11-server-xorg-21.1.8-7.9.mga9
x11-server-xwayland-22.1.9-1.9.mga9
$ inxi -SMCGN
System:
  Host: jupiter-vm-mageia-9-jogos Kernel: 6.6.105-desktop-1.mga9 arch: x86_64
    bits: 64
  Desktop: LXQt v: 1.4.0 Distro: Mageia 9
Machine:
  Type: Kvm System: QEMU product: Standard PC (Q35 + ICH9, 2009) v: pc-q35-5.2
    serial: <superuser required>
  Mobo: N/A model: N/A serial: N/A UEFI: EDK II
    v: edk2-20221117gitfff6d81270b5-7.mga9 date: 11/17/2022
CPU:
  Info: 12x 1-core model: AMD Ryzen 5 5600G with Radeon Graphics bits: 64
    type: SMP cache: L2: 12x 512 KiB (6 MiB)
  Speed (MHz): avg: 3893 min/max: N/A cores: 1: 3893 2: 3893 3: 3893 4: 3893
    5: 3893 6: 3893 7: 3893 8: 3893 9: 3893 10: 3893 11: 3893 12: 3893
Graphics:
  Device-1: Advanced Micro Devices [AMD/ATI] Navi 24 [Radeon RX 6400/6500
    XT/6500M] driver: amdgpu v: kernel
  Display: x11 server: X.org v: 1.21.1.8 with: Xwayland v: 22.1.9 driver: X:
    loaded: amdgpu,v4l dri: radeonsi gpu: amdgpu resolution: 1920x1080~60Hz
  API: OpenGL v: 4.6 vendor: amd mesa v: 25.0.7 renderer: AMD Radeon RX
    6500 XT (radeonsi navi24 LLVM 15.0.6 DRM 3.54 6.6.105-desktop-1.mga9)
  API: Vulkan v: 1.3.231 drivers: radv,llvmpipe surfaces: xcb,xlib
  API: EGL Message: EGL data requires eglinfo. Check --recommends.
Network:
  Device-1: Red Hat Virtio 1.0 network driver: virtio-pci

Installed and tested without issues.

Tested:
- Intel iGPU;
- local session, using sddm session manager;
- VNC remote session using vncserver, through ssh tunnel;
- Plasma DE and LXQt DE in both local and VNC remote sessions;
- vncserver started with systemd socket activation;
- VNC clients: KRDC, vncviewer, VncViewer.jar;
- reconnecting to VNC remote session;
- terminating VNC remote session.
- video decoding with VA-API;
- OpenGL using glmark2;
- Vulkan using vkcube;
All OK.



System: Mageia 9, x86_64, Plasma DE, LXQt DE, VNC server, Intel(R) Core(TM) i5-4590 CPU @ 3.30GHz, Intel iGPU Xeon E3-1200 using i915 driver.



$ uname -a
Linux marte 6.6.105-server-1.mga9 #1 SMP PREEMPT_DYNAMIC Wed Sep 10 14:37:29 UTC 2025 x86_64 GNU/Linux
$ rpm -qa | grep -P 'x11-server|tigervnc' | sort
tigervnc-server-1.13.1-2.9.mga9
x11-server-common-21.1.8-7.9.mga9
x11-server-xorg-21.1.8-7.9.mga9
x11-server-xwayland-22.1.9-1.9.mga9
$ inxi -SMCGN
System:
  Host: marte Kernel: 6.6.105-server-1.mga9 arch: x86_64 bits: 64
  Desktop: N/A Distro: Mageia 9
Machine:
  Type: Desktop System: Hewlett-Packard product: HP EliteDesk 800 G1 SFF
    v: N/A serial: <superuser required>
  Mobo: Hewlett-Packard model: 1998 serial: <superuser required>
    UEFI: Hewlett-Packard v: L01 v02.65 date: 07/13/2015
CPU:
  Info: quad core model: Intel Core i5-4590 bits: 64 type: MCP cache:
    L2: 1024 KiB
  Speed (MHz): avg: 1097 min/max: 800/3700 cores: 1: 1097 2: 1097 3: 1097
    4: 1097
Graphics:
  Device-1: Intel Xeon E3-1200 v3/4th Gen Core Processor Integrated Graphics
    driver: i915 v: kernel
  Display: server: X.org v: 1.21.1.8 with: Xwayland v: 22.1.9 driver: X:
    loaded: intel,v4l dri: i965 gpu: i915 resolution: 1920x1080~60Hz
  API: EGL v: 1.5 drivers: crocus,swrast platforms: x11,surfaceless,device
  API: OpenGL v: 4.6 compat-v: 4.5 vendor: mesa v: 25.0.7 renderer: llvmpipe
    (LLVM 15.0.6 256 bits)
  API: Vulkan v: 1.3.231 drivers: intel,llvmpipe surfaces: xcb,xlib
Network:
  Device-1: Intel Ethernet I217-LM driver: e1000e

installing x11-server-xwayland-22.1.9-1.9.mga9.x86_64.rpm x11-server-xorg-21.1.8-7.9.mga9.x86_64.rpm x11-server-common-21.1.8-7.9.mga9.x86_64.rpm from //home/katnatek/qa-testing/x86_64
Preparing...                     ####################################################################################################
      1/3: x11-server-common     ####################################################################################################
      2/3: x11-server-xwayland   ####################################################################################################
      3/3: x11-server-xorg       ####################################################################################################
      1/3: removing x11-server-xorg-21.1.8-7.8.mga9.x86_64
                                 ####################################################################################################
      2/3: removing x11-server-xwayland-22.1.9-1.8.mga9.x86_64
                                 ####################################################################################################
      3/3: removing x11-server-common-21.1.8-7.8.mga9.x86_64
                                 ####################################################################################################

Reboot, used yesterday and using now with lxqt without issues, I not yet install things related with wayland

RH i586

Updated with microcode package

installing microcode-0.20250812-3.mga9.nonfree.noarch.rpm x11-server-xwayland-22.1.9-1.9.mga9.i586.rpm x11-server-xorg-21.1.8-7.9.mga9.i586.rpm x11-server-common-21.1.8-7.9.mga9.i586.rpm from //home/katnatek/qa-testing/i586
Preparing...                     #######################################################################################
      1/4: microcode             #######################################################################################
dracut: dracut module 'systemd-initrd' depends on 'systemd', which can't be installed
dracut: dracut module 'ifcfg' depends on 'network', which can't be installed
dracut: dracut module 'systemd-initrd' depends on 'systemd', which can't be installed
dracut: dracut module 'dracut-systemd' depends on 'systemd-initrd', which can't be installed
dracut: dracut module 'ifcfg' depends on 'network', which can't be installed
      2/4: x11-server-common     #######################################################################################
      3/4: x11-server-xwayland   #######################################################################################
      4/4: x11-server-xorg       #######################################################################################
      1/4: removing x11-server-xorg-21.1.8-7.8.mga9.i586
                                 #######################################################################################
      2/4: removing x11-server-xwayland-22.1.9-1.8.mga9.i586
                                 #######################################################################################
      3/4: removing x11-server-common-21.1.8-7.8.mga9.i586
                                 #######################################################################################
      4/4: removing microcode-0.20250812-1.mga9.nonfree.noarch
                                 #######################################################################################

Reboot start lxqt desktop, looks good

OK here 64 bit in use for a few days on my workstation

Used with kernels desktop 6.6.105, backkport 6.12.44, and briefly with desktop 6.6.116

[morgan@svarten ~]$ inxi -SMCG
System:
  Host: svarten.tribun Kernel: 6.6.105-desktop-1.mga9 arch: x86_64 bits: 64
  Desktop: KDE Plasma v: 5.27.10 Distro: Mageia 9
Machine:
  Type: Desktop Mobo: ASRock model: P55 Pro serial: <superuser required>
    BIOS: American Megatrends v: P2.60 date: 08/20/2010
CPU:
  Info: quad core model: Intel Core i7 870 bits: 64 type: MT MCP cache:
    L2: 1024 KiB
  Speed (MHz): avg: 1205 min/max: 1200/2934 cores: 1: 1205 2: 1205 3: 1205
    4: 1205 5: 1205 6: 1205 7: 1205 8: 1205
Graphics:
  Device-1: Advanced Micro Devices [AMD/ATI] Navi 24 [Radeon RX 6400/6500
    XT/6500M] driver: amdgpu v: kernel
  Display: x11 server: X.org v: 1.21.1.8 with: Xwayland v: 22.1.9 driver: X:
    loaded: amdgpu,v4l dri: radeonsi gpu: amdgpu resolution: 3840x2160~60Hz
  API: EGL v: 1.5 drivers: kms_swrast,radeonsi,swrast
    platforms: gbm,x11,surfaceless,device
  API: OpenGL v: 4.6 compat-v: 4.5 vendor: amd mesa v: 25.0.7 renderer: AMD
    Radeon RX 6400 (radeonsi navi24 LLVM 15.0.6 DRM 3.54
    6.6.105-desktop-1.mga9)

CC: (none) => fri

This update has several days of use without issues and has a good number of tests.
I'm giving it an OK for x86_64.

Whiteboard: (none) => MGA9-64-OK

MGA9-64, Xfce, (VM)

The following 3 packages are going to be installed:

- x11-server-common-21.1.8-7.9.mga9.x86_64
- x11-server-xorg-21.1.8-7.9.mga9.x86_64
- x11-server-xwayland-22.1.9-1.9.mga9.x86_64

24B of disk space will be freed.


- rebooted


no issues

CC: (none) => brtians1

(In reply to Herman Viaene from comment #2)

> I feel so stupid.

You are anything but, Herman. You got a lot farther than I would.

Anyway, the other tests look good to me. Validating.

CC: (none) => andrewsfarm, sysadmin-bugs
Keywords: (none) => validated_update

An update for this issue has been pushed to the Mageia Updates repository.

https://advisories.mageia.org/MGASA-2025-0263.html

Status: ASSIGNED => RESOLVED
Resolution: (none) => FIXED