ELSA-2017-2000

ULN >
Oracle Linux Errata repository >
ELSA-2017-2000

ELSA-2017-2000 - tigervnc and fltk security, bug fix, and enhancement update

Type:	SECURITY
Severity:	MODERATE
Release Date:	2017-08-07

Description

fltk
[1.3.4-1]
- Re-base to 1.3.4 (+ sync with Fedora)

tigervnc
[1.8.0-1]
- Update to 1.8.0
Resolves: bz#1388620

[1.7.90-2]
- Make RandR callbacks optional
Resolves: bz#1444948

[1.7.90-1]
- Update to 1.7.90
Resolves: bz#1388620

[1.7.1-3]
- Delete underlying ssecurity in SSecurityVeNCrypt [CCVE-2017-7392]
Resolves: bz#1439127
Prevent double free by crafted fences [CVE-2017-7393]
Resolves: bz#1439134

[1.7.1-2]
- Be more restrictive with shared memory mode bits
Resolves: bz#1152552
Limit max username/password size in SSecurityPlain [CVE-2017-7394]
Resolves: bz#1438737
Fix crash from integer overflow in SMsgReader::readClientCutText [CVE-2017-7395]
Resolves: bz#1438742

[1.7.1-1]
- Update to 1.7.1
Resolves: bz#1388620
Resolves: bz#1343899
Resolves: bz#1410164
Resolves: bz#1415547
Resolves: bz#1418945
Resolves: bz#1416290
Resolves: bz#1342956
- Fix shared memory leakage
Resolves: bz#1358090
- Added systemd unit file for xvnc
Resolves: bz#1393971

Related CVEs

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory

Oracle Linux 7 (aarch64)	fltk-1.3.4-1.el7.src.rpm	ff7472c17252a73b36bb09a265949d1e	ELBA-2020-3872
	tigervnc-1.8.0-1.el7.src.rpm	4b013673b7d0f8540771779427bb5a73	ELBA-2020-5005
	fltk-1.3.4-1.el7.aarch64.rpm	bfa387567dcfa496ea6926be3a519d4c	ELBA-2020-3872
	fltk-devel-1.3.4-1.el7.aarch64.rpm	691f5cb9dea7b804f25e5702d409ce9d	ELBA-2020-3872
	fltk-fluid-1.3.4-1.el7.aarch64.rpm	59a209cbc560c1590d955342d2c472a9	ELBA-2020-3872
	fltk-static-1.3.4-1.el7.aarch64.rpm	9e21064fcac835c564df3cd2dce2e235	ELBA-2020-3872
	tigervnc-1.8.0-1.el7.aarch64.rpm	fa4a6c9a2a282fe88bd5871c4c98a778	ELBA-2020-5005
	tigervnc-icons-1.8.0-1.el7.noarch.rpm	196fff1c12916d5c6d976a606ffd75d2	ELBA-2020-5005
	tigervnc-license-1.8.0-1.el7.noarch.rpm	6e87cc2accd496f02c29bec313570bb6	ELBA-2020-5005
	tigervnc-server-1.8.0-1.el7.aarch64.rpm	5722bb358d6c401593c3486d53dc292f	ELBA-2020-5005
	tigervnc-server-applet-1.8.0-1.el7.noarch.rpm	dc39a15acc45e81c5da53620f8d964f4	ELBA-2020-5005
	tigervnc-server-minimal-1.8.0-1.el7.aarch64.rpm	6eac87d7f8acc810926ddee0f655436c	ELBA-2020-5005
	tigervnc-server-module-1.8.0-1.el7.aarch64.rpm	e60f9ece55ec4c7ea57dc1275c5694bc	ELBA-2020-5005

Oracle Linux 7 (x86_64)	fltk-1.3.4-1.el7.src.rpm	ff7472c17252a73b36bb09a265949d1e	ELBA-2020-3872
	tigervnc-1.8.0-1.el7.src.rpm	4b013673b7d0f8540771779427bb5a73	ELBA-2020-5005
	fltk-1.3.4-1.el7.i686.rpm	2b35bafba3d7276a8605decae960088e	ELBA-2020-3872
	fltk-1.3.4-1.el7.x86_64.rpm	89cb85793a93419ec834305016fbd3dc	ELBA-2020-3872
	fltk-devel-1.3.4-1.el7.i686.rpm	7aaf4f3ffc9e8fcd5d4af6af7e3599dd	ELBA-2020-3872
	fltk-devel-1.3.4-1.el7.x86_64.rpm	97d465860f416daab471a388ba554c2d	ELBA-2020-3872
	fltk-fluid-1.3.4-1.el7.x86_64.rpm	7d16b27807904dcdc97ae42fc2ea5862	ELBA-2020-3872
	fltk-static-1.3.4-1.el7.i686.rpm	fa80c10c94d39ff5ea54b714b56d4837	ELBA-2020-3872
	fltk-static-1.3.4-1.el7.x86_64.rpm	91e966d70004ed912137d300396583d3	ELBA-2020-3872
	tigervnc-1.8.0-1.el7.x86_64.rpm	ed4e3d3a654c5a7d81a2bd7c17c95e51	ELBA-2020-5005
	tigervnc-icons-1.8.0-1.el7.noarch.rpm	196fff1c12916d5c6d976a606ffd75d2	ELBA-2020-5005
	tigervnc-license-1.8.0-1.el7.noarch.rpm	6e87cc2accd496f02c29bec313570bb6	ELBA-2020-5005
	tigervnc-server-1.8.0-1.el7.x86_64.rpm	1165cca5c554e1c634a58478ed8259c9	ELBA-2020-5005
	tigervnc-server-applet-1.8.0-1.el7.noarch.rpm	dc39a15acc45e81c5da53620f8d964f4	ELBA-2020-5005
	tigervnc-server-minimal-1.8.0-1.el7.x86_64.rpm	86734e1f4141c0dd0dd0f66b3c43f3d8	ELBA-2020-5005
	tigervnc-server-module-1.8.0-1.el7.x86_64.rpm	70749e4f585446eb9a392ce767feedd5	ELBA-2020-5005

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691