ELSA-2023-7428

ULN >
Oracle Linux Errata repository >
ELSA-2023-7428

ELSA-2023-7428 - tigervnc security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2023-11-22

Description

[1.8.0-26.0.1]
- Dropped xorg-CVE-2023-5367.patch

[1.8.0-26]
- Fix CVE-2023-5380 tigervnc: xorg-x11-server: Use-after-free bug in DestroyWindow
Resolves: RHEL-15235
- Fix CVE-2023-5367 tigervnc: xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty
Resolves: RHEL-15223

Related CVEs

CVE-2023-5367

CVE-2023-5380

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory	Channel Label

Oracle Linux 7 (aarch64)	tigervnc-1.8.0-26.0.1.el7_9.src.rpm	0f3d3b3e20ac694437ddb4a65418cb76	-	ol7_aarch64_latest
	tigervnc-1.8.0-26.0.1.el7_9.src.rpm	0f3d3b3e20ac694437ddb4a65418cb76	-	ol7_aarch64_optional_latest
	tigervnc-1.8.0-26.0.1.el7_9.src.rpm	0f3d3b3e20ac694437ddb4a65418cb76	-	ol7_aarch64_u9_patch
	tigervnc-1.8.0-26.0.1.el7_9.aarch64.rpm	72045b9b241470abd71b9947b1eb1cae	-	ol7_aarch64_latest
	tigervnc-1.8.0-26.0.1.el7_9.aarch64.rpm	72045b9b241470abd71b9947b1eb1cae	-	ol7_aarch64_u9_patch
	tigervnc-icons-1.8.0-26.0.1.el7_9.noarch.rpm	e152c7f338011b2146218742c9ef13e2	-	ol7_aarch64_latest
	tigervnc-icons-1.8.0-26.0.1.el7_9.noarch.rpm	e152c7f338011b2146218742c9ef13e2	-	ol7_aarch64_u9_patch
	tigervnc-license-1.8.0-26.0.1.el7_9.noarch.rpm	b77ca015350b20a33ead510ecec9ef65	-	ol7_aarch64_latest
	tigervnc-license-1.8.0-26.0.1.el7_9.noarch.rpm	b77ca015350b20a33ead510ecec9ef65	-	ol7_aarch64_u9_patch
	tigervnc-server-1.8.0-26.0.1.el7_9.aarch64.rpm	7b3fc7ca5c7fb3ea65035c01891d865a	-	ol7_aarch64_latest
	tigervnc-server-1.8.0-26.0.1.el7_9.aarch64.rpm	7b3fc7ca5c7fb3ea65035c01891d865a	-	ol7_aarch64_u9_patch
	tigervnc-server-applet-1.8.0-26.0.1.el7_9.noarch.rpm	68d6457f7611ea26fe4a503764e85897	-	ol7_aarch64_optional_latest
	tigervnc-server-minimal-1.8.0-26.0.1.el7_9.aarch64.rpm	11d9514a3b838646f32a8ca27ed5965d	-	ol7_aarch64_latest
	tigervnc-server-minimal-1.8.0-26.0.1.el7_9.aarch64.rpm	11d9514a3b838646f32a8ca27ed5965d	-	ol7_aarch64_u9_patch
	tigervnc-server-module-1.8.0-26.0.1.el7_9.aarch64.rpm	ad84fb5be8f99001e19b504ad9b64fa0	-	ol7_aarch64_optional_latest

Oracle Linux 7 (x86_64)	tigervnc-1.8.0-26.0.1.el7_9.src.rpm	0f3d3b3e20ac694437ddb4a65418cb76	-	ol7_x86_64_latest
	tigervnc-1.8.0-26.0.1.el7_9.src.rpm	0f3d3b3e20ac694437ddb4a65418cb76	-	ol7_x86_64_optional_latest
	tigervnc-1.8.0-26.0.1.el7_9.src.rpm	0f3d3b3e20ac694437ddb4a65418cb76	-	ol7_x86_64_u9_patch
	tigervnc-1.8.0-26.0.1.el7_9.x86_64.rpm	535575f99ddf2e3566470a065156c3c7	-	ol7_x86_64_latest
	tigervnc-1.8.0-26.0.1.el7_9.x86_64.rpm	535575f99ddf2e3566470a065156c3c7	-	ol7_x86_64_u9_patch
	tigervnc-icons-1.8.0-26.0.1.el7_9.noarch.rpm	e152c7f338011b2146218742c9ef13e2	-	ol7_x86_64_latest
	tigervnc-icons-1.8.0-26.0.1.el7_9.noarch.rpm	e152c7f338011b2146218742c9ef13e2	-	ol7_x86_64_u9_patch
	tigervnc-license-1.8.0-26.0.1.el7_9.noarch.rpm	b77ca015350b20a33ead510ecec9ef65	-	ol7_x86_64_latest
	tigervnc-license-1.8.0-26.0.1.el7_9.noarch.rpm	b77ca015350b20a33ead510ecec9ef65	-	ol7_x86_64_u9_patch
	tigervnc-server-1.8.0-26.0.1.el7_9.x86_64.rpm	57d3a30a65d74dee8a0467c1b39e9aaf	-	ol7_x86_64_latest
	tigervnc-server-1.8.0-26.0.1.el7_9.x86_64.rpm	57d3a30a65d74dee8a0467c1b39e9aaf	-	ol7_x86_64_u9_patch
	tigervnc-server-applet-1.8.0-26.0.1.el7_9.noarch.rpm	68d6457f7611ea26fe4a503764e85897	-	ol7_x86_64_optional_latest
	tigervnc-server-minimal-1.8.0-26.0.1.el7_9.x86_64.rpm	a8df976f203deca643202eada1eaa634	-	ol7_x86_64_latest
	tigervnc-server-minimal-1.8.0-26.0.1.el7_9.x86_64.rpm	a8df976f203deca643202eada1eaa634	-	ol7_x86_64_u9_patch
	tigervnc-server-module-1.8.0-26.0.1.el7_9.x86_64.rpm	5595b257443dfeee6148c0d2351f643f	-	ol7_x86_64_optional_latest

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691