ELSA-2017-2000

ELSA-2017-2000 - tigervnc and fltk security, bug fix, and enhancement update

Type:SECURITY
Severity:MODERATE
Release Date:2017-08-07

Description


fltk
[1.3.4-1]
- Re-base to 1.3.4 (+ sync with Fedora)

tigervnc
[1.8.0-1]
- Update to 1.8.0
Resolves: bz#1388620

[1.7.90-2]
- Make RandR callbacks optional
Resolves: bz#1444948

[1.7.90-1]
- Update to 1.7.90
Resolves: bz#1388620

[1.7.1-3]
- Delete underlying ssecurity in SSecurityVeNCrypt [CCVE-2017-7392]
Resolves: bz#1439127
Prevent double free by crafted fences [CVE-2017-7393]
Resolves: bz#1439134

[1.7.1-2]
- Be more restrictive with shared memory mode bits
Resolves: bz#1152552
Limit max username/password size in SSecurityPlain [CVE-2017-7394]
Resolves: bz#1438737
Fix crash from integer overflow in SMsgReader::readClientCutText [CVE-2017-7395]
Resolves: bz#1438742

[1.7.1-1]
- Update to 1.7.1
Resolves: bz#1388620
Resolves: bz#1343899
Resolves: bz#1410164
Resolves: bz#1415547
Resolves: bz#1418945
Resolves: bz#1416290
Resolves: bz#1342956
- Fix shared memory leakage
Resolves: bz#1358090
- Added systemd unit file for xvnc
Resolves: bz#1393971


Related CVEs


CVE-2016-10207
CVE-2017-5581
CVE-2017-7393
CVE-2017-7394
CVE-2017-7395
CVE-2017-7392
CVE-2017-7396

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 7 (aarch64) fltk-1.3.4-1.el7.src.rpmff7472c17252a73b36bb09a265949d1eELBA-2020-3872
tigervnc-1.8.0-1.el7.src.rpm4b013673b7d0f8540771779427bb5a73ELBA-2020-5005
fltk-1.3.4-1.el7.aarch64.rpmbfa387567dcfa496ea6926be3a519d4cELBA-2020-3872
fltk-devel-1.3.4-1.el7.aarch64.rpm691f5cb9dea7b804f25e5702d409ce9dELBA-2020-3872
fltk-fluid-1.3.4-1.el7.aarch64.rpm59a209cbc560c1590d955342d2c472a9ELBA-2020-3872
fltk-static-1.3.4-1.el7.aarch64.rpm9e21064fcac835c564df3cd2dce2e235ELBA-2020-3872
tigervnc-1.8.0-1.el7.aarch64.rpmfa4a6c9a2a282fe88bd5871c4c98a778ELBA-2020-5005
tigervnc-icons-1.8.0-1.el7.noarch.rpm196fff1c12916d5c6d976a606ffd75d2ELBA-2020-5005
tigervnc-license-1.8.0-1.el7.noarch.rpm6e87cc2accd496f02c29bec313570bb6ELBA-2020-5005
tigervnc-server-1.8.0-1.el7.aarch64.rpm5722bb358d6c401593c3486d53dc292fELBA-2020-5005
tigervnc-server-applet-1.8.0-1.el7.noarch.rpmdc39a15acc45e81c5da53620f8d964f4ELBA-2020-5005
tigervnc-server-minimal-1.8.0-1.el7.aarch64.rpm6eac87d7f8acc810926ddee0f655436cELBA-2020-5005
tigervnc-server-module-1.8.0-1.el7.aarch64.rpme60f9ece55ec4c7ea57dc1275c5694bcELBA-2020-5005
Oracle Linux 7 (x86_64) fltk-1.3.4-1.el7.src.rpmff7472c17252a73b36bb09a265949d1eELBA-2020-3872
tigervnc-1.8.0-1.el7.src.rpm4b013673b7d0f8540771779427bb5a73ELBA-2020-5005
fltk-1.3.4-1.el7.i686.rpm2b35bafba3d7276a8605decae960088eELBA-2020-3872
fltk-1.3.4-1.el7.x86_64.rpm89cb85793a93419ec834305016fbd3dcELBA-2020-3872
fltk-devel-1.3.4-1.el7.i686.rpm7aaf4f3ffc9e8fcd5d4af6af7e3599ddELBA-2020-3872
fltk-devel-1.3.4-1.el7.x86_64.rpm97d465860f416daab471a388ba554c2dELBA-2020-3872
fltk-fluid-1.3.4-1.el7.x86_64.rpm7d16b27807904dcdc97ae42fc2ea5862ELBA-2020-3872
fltk-static-1.3.4-1.el7.i686.rpmfa80c10c94d39ff5ea54b714b56d4837ELBA-2020-3872
fltk-static-1.3.4-1.el7.x86_64.rpm91e966d70004ed912137d300396583d3ELBA-2020-3872
tigervnc-1.8.0-1.el7.x86_64.rpmed4e3d3a654c5a7d81a2bd7c17c95e51ELBA-2020-5005
tigervnc-icons-1.8.0-1.el7.noarch.rpm196fff1c12916d5c6d976a606ffd75d2ELBA-2020-5005
tigervnc-license-1.8.0-1.el7.noarch.rpm6e87cc2accd496f02c29bec313570bb6ELBA-2020-5005
tigervnc-server-1.8.0-1.el7.x86_64.rpm1165cca5c554e1c634a58478ed8259c9ELBA-2020-5005
tigervnc-server-applet-1.8.0-1.el7.noarch.rpmdc39a15acc45e81c5da53620f8d964f4ELBA-2020-5005
tigervnc-server-minimal-1.8.0-1.el7.x86_64.rpm86734e1f4141c0dd0dd0f66b3c43f3d8ELBA-2020-5005
tigervnc-server-module-1.8.0-1.el7.x86_64.rpm70749e4f585446eb9a392ce767feedd5ELBA-2020-5005



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete