Описание
ELSA-2024-3067: tigervnc security update (MODERATE)
[1.13.1-8]
- Fix copy/paste error in the DeviceStateNotify Resolves: RHEL-20530
[1.13.1-7]
- Fix CVE-2024-21886 tigervnc: xorg-x11-server: heap buffer overflow in DisableDevice Resolves: RHEL-20388
- Fix CVE-2024-21885 tigervnc: xorg-x11-server: heap buffer overflow in XISendDeviceHierarchyEvent Resolves: RHEL-20382
- Fix CVE-2024-0229 tigervnc: xorg-x11-server: reattaching to different master device may lead to out-of-bounds memory access Resolves: RHEL-20530
- Fix CVE-2023-6816 tigervnc: xorg-x11-server: Heap buffer overflow in DeviceFocusEvent and ProcXIQueryPointer Resolves: RHEL-21214
[1.13.1-6]
- Use dup() to get available file descriptor when using -inetd option Resolves: RHEL-21000
[1.13.1-5]
- Fix CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions Resolves: RHEL-18410
- Fix CVE-2023-6478 tigervnc: xorg-x11-server: out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty Resolves: RHEL-18422
[1.13.1-4]
-
Fix CVE-2023-5380 tigervnc: xorg-x11-server: Use-after-free bug in DestroyWindow Resolves: RHEL-15236
-
Fix CVE-2023-5367 tigervnc: xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty Resolves: RHEL-15230
[1.13.1-3]
- Support username alias in PlainUsers Resolves: RHEL-4258
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
tigervnc
1.13.1-8.el8
tigervnc-icons
1.13.1-8.el8
tigervnc-license
1.13.1-8.el8
tigervnc-selinux
1.13.1-8.el8
tigervnc-server
1.13.1-8.el8
tigervnc-server-minimal
1.13.1-8.el8
tigervnc-server-module
1.13.1-8.el8
Oracle Linux x86_64
tigervnc
1.13.1-8.el8
tigervnc-icons
1.13.1-8.el8
tigervnc-license
1.13.1-8.el8
tigervnc-selinux
1.13.1-8.el8
tigervnc-server
1.13.1-8.el8
tigervnc-server-minimal
1.13.1-8.el8
tigervnc-server-module
1.13.1-8.el8
Связанные CVE
Связанные уязвимости
A use-after-free flaw was found in the xorg-x11-server. An X server crash may occur in a very specific and legacy configuration (a multi-screen setup with multiple protocol screens, also known as Zaphod mode) if the pointer is warped from within a window on one screen to the root window of the other screen and if the original window is destroyed followed by another window being destroyed.
A use-after-free flaw was found in the xorg-x11-server. An X server crash may occur in a very specific and legacy configuration (a multi-screen setup with multiple protocol screens, also known as Zaphod mode) if the pointer is warped from within a window on one screen to the root window of the other screen and if the original window is destroyed followed by another window being destroyed.
A use-after-free flaw was found in the xorg-x11-server. An X server crash may occur in a very specific and legacy configuration (a multi-screen setup with multiple protocol screens, also known as Zaphod mode) if the pointer is warped from within a window on one screen to the root window of the other screen and if the original window is destroyed followed by another window being destroyed.
A use-after-free flaw was found in the xorg-x11-server. An X server cr ...