ELSA-2024-0018

ULN >
Oracle Linux Errata repository >
ELSA-2024-0018

ELSA-2024-0018 - tigervnc security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2024-01-04

Description

[1.13.1-2.4]
- xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty (CVE-2023-5367)
- xorg-x11-server: Use-after-free bug in DestroyWindow (CVE-2023-5380)
- xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions (CVE-2023-6377)
- xorg-x11-server: out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty (CVE-2023-6478)

Related CVEs

CVE-2023-6377

CVE-2023-6478

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	tigervnc-1.13.1-2.el8_9.4.src.rpm	3944d310ed08201c5e0cd5a533e6c875	-	ol8_aarch64_appstream
	tigervnc-1.13.1-2.el8_9.4.aarch64.rpm	b9e33bb9ad02f1546115b4c489e4d408	-	ol8_aarch64_appstream
	tigervnc-icons-1.13.1-2.el8_9.4.noarch.rpm	66bc3340a889dd30f6689ffda37e3785	-	ol8_aarch64_appstream
	tigervnc-license-1.13.1-2.el8_9.4.noarch.rpm	c9fa3fd6704c7f161f1c19a06bc94fdc	-	ol8_aarch64_appstream
	tigervnc-selinux-1.13.1-2.el8_9.4.noarch.rpm	a038c96e122815f7374ca20ff9ca6a0c	-	ol8_aarch64_appstream
	tigervnc-server-1.13.1-2.el8_9.4.aarch64.rpm	290ea5edf7ddced97bb451f530e52ab6	-	ol8_aarch64_appstream
	tigervnc-server-minimal-1.13.1-2.el8_9.4.aarch64.rpm	8d66953d75d08e8fae31f75a48b65453	-	ol8_aarch64_appstream
	tigervnc-server-module-1.13.1-2.el8_9.4.aarch64.rpm	61c791057ded81fe71584078def60bcd	-	ol8_aarch64_appstream

Oracle Linux 8 (x86_64)	tigervnc-1.13.1-2.el8_9.4.src.rpm	3944d310ed08201c5e0cd5a533e6c875	-	ol8_x86_64_appstream
	tigervnc-1.13.1-2.el8_9.4.x86_64.rpm	752cd3c9059575bdbdfad6b1b620eff5	-	ol8_x86_64_appstream
	tigervnc-icons-1.13.1-2.el8_9.4.noarch.rpm	66bc3340a889dd30f6689ffda37e3785	-	ol8_x86_64_appstream
	tigervnc-license-1.13.1-2.el8_9.4.noarch.rpm	c9fa3fd6704c7f161f1c19a06bc94fdc	-	ol8_x86_64_appstream
	tigervnc-selinux-1.13.1-2.el8_9.4.noarch.rpm	a038c96e122815f7374ca20ff9ca6a0c	-	ol8_x86_64_appstream
	tigervnc-server-1.13.1-2.el8_9.4.x86_64.rpm	c9d98847a1b0f0c7912b27cb50b13a7d	-	ol8_x86_64_appstream
	tigervnc-server-minimal-1.13.1-2.el8_9.4.x86_64.rpm	25b2ed2cabde64af0f8d6492d8f7c15a	-	ol8_x86_64_appstream
	tigervnc-server-module-1.13.1-2.el8_9.4.x86_64.rpm	c06bbe8e70efb52092dbd1f136846c0f	-	ol8_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691