The authentication setup in XWayland 1.16.x and 1.17.x before 1.17.2 starts the server in non-authenticating mode, which allows local users to read from or send information to arbitrary X11 clients via vectors involving a UNIX socket.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "xvfb": "2:1.18.4-0ubuntu0.2", "xserver-xorg-legacy": "2:1.18.4-0ubuntu0.2", "xdmx": "2:1.18.4-0ubuntu0.2", "xserver-xorg-core-dbg": "2:1.18.4-0ubuntu0.2", "xserver-xorg-core-udeb-dbgsym": "2:1.18.4-0ubuntu0.2", "xdmx-tools-dbgsym": "2:1.18.4-0ubuntu0.2", "xserver-xorg-dev": "2:1.18.4-0ubuntu0.2", "xnest-dbgsym": "2:1.18.4-0ubuntu0.2", "xserver-xorg-core": "2:1.18.4-0ubuntu0.2", "xserver-common": "2:1.18.4-0ubuntu0.2", "xwayland-dbgsym": "2:1.18.4-0ubuntu0.2", "xnest": "2:1.18.4-0ubuntu0.2", "xserver-xephyr": "2:1.18.4-0ubuntu0.2", "xserver-xorg-xmir": "2:1.18.4-0ubuntu0.2", "xdmx-tools": "2:1.18.4-0ubuntu0.2", "xmir-dbgsym": "2:1.18.4-0ubuntu0.2", "xwayland": "2:1.18.4-0ubuntu0.2", "xorg-server-source": "2:1.18.4-0ubuntu0.2", "xserver-xorg-core-dbgsym": "2:1.18.4-0ubuntu0.2", "xmir": "2:1.18.4-0ubuntu0.2", "xserver-xephyr-dbgsym": "2:1.18.4-0ubuntu0.2", "xdmx-dbgsym": "2:1.18.4-0ubuntu0.2", "xvfb-dbgsym": "2:1.18.4-0ubuntu0.2", "xserver-xorg-legacy-dbgsym": "2:1.18.4-0ubuntu0.2", "xserver-xorg-core-udeb": "2:1.18.4-0ubuntu0.2" } ] }