Regarding the recent security advisory from X.Org

Forum / General Discussions / Regarding the recent security advisory from X.Org

Viewing 1 post (of 1 total)
  • Author
    Posts
  • #45555
    Britgirl
    Keymaster

    Hi everyone,

    multiple users have written to us about the recent security advisory from X.Org “Issues in libX11 prior to 1.8.7 & libXpm prior to 3.5.17”  (https://lists.x.org/archives/xorg-announce/2023-October/003424.html) and when we will deliver a fix for the problem. We’d like to reassure all NoMachine users and why it is does not affect the NoMachine software.

    The flaws are basically in the libX11 libraries. The same for libXpm. NoMachine applications connecting to the “agent”, the virtual X server implementing the NoMachine session, use the X11 libraries shipped with the OS. So, to fix these libX11 vulnerabilities, you should upgrade your OS distribution. There is nothing we can release that can fix that. Also, our X11 agent uses the X11 libraries, but not in a way it can fall into these vulnerabilities (and, for the record, we don’t use libXpm).

Viewing 1 post (of 1 total)

This topic was marked as closed, you can't post.