ELSA-2025-22096
- ULN >
- Oracle Linux Errata repository >
- ELSA-2025-22096
ELSA-2025-22096 - tigervnc security update
| Type: | SECURITY |
| Impact: | IMPORTANT |
| Release Date: | 2025-12-10 |
Description
[1.8.0-33.0.9]
- Fix CVE-2025-62229: xorg-x11-server: Use-after-free in XPresentNotify structures creation [Orabug: 38694278]
- Fix CVE-2025-62230: xorg-x11-server: Use-after-free in Xkb client resource removal
- Fix CVE-2025-62231: xorg-x11-server: Value overflow in Xkb extension XkbSetCompatMap()
[1.8.0-33.0.7]
- Fix CVE-2025-49175, CVE-2025-49176, CVE-2025-49178, CVE-2025-49179, CVE-2025-49180 [Orabug: 38157695]
[1.8.0-33.0.5]
- Fix CVE-2025-26594 xorg-x11-server Use-after-free of the root cursor [Orabug: 37712725]
- Fix CVE-2025-26595 xorg-x11-server Buffer overflow in XkbVModMaskText()
- Fix CVE-2025-26596 xorg-x11-server Heap overflow in XkbWriteKeySyms()
- Fix CVE-2025-26597 xorg-x11-server Buffer overflow in XkbChangeTypesOfKey()
- Fix CVE-2025-26598 xorg-x11-server Out-of-bounds write in CreatePointerBarrierClient()
- Fix CVE-2025-26599 xorg-x11-server Use of uninitialized pointer in compRedirectWindow()
- Fix CVE-2025-26600 xorg-x11-server Use-after-free in PlayReleasedEvents()
- Fix CVE-2025-26601 xorg-x11-server Use-after-free in SyncInitTrigger()
Related CVEs
| CVE-2025-62229 |
| CVE-2025-62230 |
| CVE-2025-62231 |
Updated Packages
| Release/Architecture | Filename | sha256 | Superseded By Advisory | Channel Label |
| Oracle Linux 7 (x86_64) | tigervnc-1.8.0-33.0.9.el7_9.src.rpm | 3fb50d450cb17ab00ff65604284d29b0e31e8caa373e02b2ed7e28e143b348ba | - | ol7_x86_64_latest_ELS |
| tigervnc-1.8.0-33.0.9.el7_9.x86_64.rpm | 5c11bf9c986a9011a04d1a6308e8f951d3b9a15de1099b7c84d8126641885fda | - | ol7_x86_64_latest_ELS | |
| tigervnc-icons-1.8.0-33.0.9.el7_9.noarch.rpm | 6c8764ad382c2e2179361619183f27a48e18c891abba5273d822751984db9975 | - | ol7_x86_64_latest_ELS | |
| tigervnc-license-1.8.0-33.0.9.el7_9.noarch.rpm | 2101cbe6b47bbe5a043cb8541b149aa2a98f9169093472d4a566f64202e313f9 | - | ol7_x86_64_latest_ELS | |
| tigervnc-server-1.8.0-33.0.9.el7_9.x86_64.rpm | 241667b787da9f494aafaa2ccba376bf45441a1e567bec648d340fef7ebc59b8 | - | ol7_x86_64_latest_ELS | |
| tigervnc-server-applet-1.8.0-33.0.9.el7_9.noarch.rpm | 100571871d0cab4becdd2895cb9ee1f6e6b03d0909f17d4a8182cc45546627ba | - | ol7_x86_64_latest_ELS | |
| tigervnc-server-minimal-1.8.0-33.0.9.el7_9.x86_64.rpm | 215a898028b10d5e47bea97f5aab05b08bd0bd0f974ba2c1becee6751fb2ae81 | - | ol7_x86_64_latest_ELS | |
| tigervnc-server-module-1.8.0-33.0.9.el7_9.x86_64.rpm | 7e4ab46b0c33a099e6b4c474c433aaa09188860d16ca51ef913e8ba8b8693e5e | - | ol7_x86_64_latest_ELS | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
