Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2015-2233

Опубликовано: 24 нояб. 2015
Источник: oracle-oval
Платформа: Oracle Linux 7

Описание

ELSA-2015-2233: tigervnc security, bug fix, and enhancement update (MODERATE)

[1.3.1-3]

  • Do not mention that display number is required in the file name Resolves: bz#1195266

[1.3.1-2]

  • Resolves: bz#1248422 CVE-2014-8240 CVE-2014-8241 tigervnc: various flaws

[1.3.1-1]

  • Drop unecessary patches
  • Re-base to 1.3.1 (bug #1199453)
  • Re-build against re-based xserver (bug #1194898)
  • Check the return value from XShmAttach (bug #1072733)
  • Add missing part of xserver114.patch (bug #1140603)
  • Keep pointer in sync (bug #1100661)
  • Make input device class global (bug #1119640)
  • Add IPv6 support (bug #1162722)
  • Set initial mode as prefered (bug #1181287)
  • Do not mention that display number is required in the file name (bug #1195266)
  • Enable Xinerama extension (bug #1199437)
  • Specify full path for runuser command (bug #1208817)

[1.2.80-0.31.20130314svn5065]

  • Rebuilt against xorg-x11-server to pick up ppc64le fix (bug #1140424).

Обновленные пакеты

Oracle Linux 7

Oracle Linux x86_64

tigervnc

1.3.1-3.el7

tigervnc-icons

1.3.1-3.el7

tigervnc-license

1.3.1-3.el7

tigervnc-server

1.3.1-3.el7

tigervnc-server-applet

1.3.1-3.el7

tigervnc-server-minimal

1.3.1-3.el7

tigervnc-server-module

1.3.1-3.el7

Связанные CVE

CVE-2014-8240
CVE-2014-8241

Ссылки на источники

Связанные уязвимости

redhat логотип

CVE-2014-8241

redhat
почти 11 лет назад

XRegion in TigerVNC allows remote VNC servers to cause a denial of service (NULL pointer dereference) by leveraging failure to check a malloc return value, a similar issue to CVE-2014-6052.

nvd логотип

CVE-2014-8241

CVSS3: 9.8
nvd
больше 8 лет назад

XRegion in TigerVNC allows remote VNC servers to cause a denial of service (NULL pointer dereference) by leveraging failure to check a malloc return value, a similar issue to CVE-2014-6052.

debian логотип

CVE-2014-8241

CVSS3: 9.8
debian
больше 8 лет назад

XRegion in TigerVNC allows remote VNC servers to cause a denial of ser ...

redhat логотип

CVE-2014-8240

redhat
почти 11 лет назад

Integer overflow in TigerVNC allows remote VNC servers to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to screen size handling, which triggers a heap-based buffer overflow, a similar issue to CVE-2014-6051.

nvd логотип

CVE-2014-8240

nvd
почти 11 лет назад

Integer overflow in TigerVNC allows remote VNC servers to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to screen size handling, which triggers a heap-based buffer overflow, a similar issue to CVE-2014-6051.