ELSA-2020-1497

ULN >
Oracle Linux Errata repository >
ELSA-2020-1497

ELSA-2020-1497 - tigervnc security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2020-04-18

Description

[1.9.0-14]
- Bump build version
Resolves: bz#1819877
Resolves: bz#1819879
Resolves: bz#1819882
Resolves: bz#1819886
Resolves: bz#1819884

[1.9.0-13]
- Fix stack buffer overflow in CMsgReader::readSetCursor
Resolves: bz#1819877

- Fix heap buffer overflow in DecodeManager::decodeRect
Resolves: bz#1819879

- Fix heap buffer overflow in TightDecoder::FilterGradient
Resolves: bz#1819882

- Fix heap-based buffer overflow triggered from CopyRectDecoder
Resolves: bz#1819886

- Fix stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder
Resolves: bz#1819884

Related CVEs

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	tigervnc-1.9.0-14.el8_1.src.rpm	ab19fe976dfe590c796d3bee898d709eab066887efcff84f12c5bf077e25544e	-	ol8_aarch64_appstream
	tigervnc-1.9.0-14.el8_1.aarch64.rpm	8350e4cb0865237361c13eaa76c5c70f6ab16df6c79b1bb924de2dfc48b71105	-	ol8_aarch64_appstream
	tigervnc-icons-1.9.0-14.el8_1.noarch.rpm	aa2659ff06e163ea168ec49a24cd51ca5b61c7a97580ea442aabdeeda5959c0b	-	ol8_aarch64_appstream
	tigervnc-license-1.9.0-14.el8_1.noarch.rpm	db2039764419a39657c931e199a3e53ed664d37656988f409cd441cbaa55270c	-	ol8_aarch64_appstream
	tigervnc-server-1.9.0-14.el8_1.aarch64.rpm	8403468d8b9eb1b6b53f6032c7bc275c4047ac7f1f443a9752ffcf9922778775	-	ol8_aarch64_appstream
	tigervnc-server-applet-1.9.0-14.el8_1.noarch.rpm	2c4d0ba92f12fd6268fc96d5b8cce87aa8c516a4a0042ea5f706a3e92d05a2b9	-	ol8_aarch64_appstream
	tigervnc-server-minimal-1.9.0-14.el8_1.aarch64.rpm	a418e15b499b84136272a216e3a9c3559d7e4131ebccd74b02bd0535f5d72604	-	ol8_aarch64_appstream
	tigervnc-server-module-1.9.0-14.el8_1.aarch64.rpm	80d809b28b35b2ae05fa4b399971376ddee72f44ef0d64604dc277bab34d5926	-	ol8_aarch64_appstream

Oracle Linux 8 (x86_64)	tigervnc-1.9.0-14.el8_1.src.rpm	ab19fe976dfe590c796d3bee898d709eab066887efcff84f12c5bf077e25544e	-	ol8_x86_64_appstream
	tigervnc-1.9.0-14.el8_1.x86_64.rpm	f9882c6256e4ad486f8b7f1224ae5445e132834f7c793837a5bafd35a6f5f929	-	ol8_x86_64_appstream
	tigervnc-icons-1.9.0-14.el8_1.noarch.rpm	aa2659ff06e163ea168ec49a24cd51ca5b61c7a97580ea442aabdeeda5959c0b	-	ol8_x86_64_appstream
	tigervnc-license-1.9.0-14.el8_1.noarch.rpm	db2039764419a39657c931e199a3e53ed664d37656988f409cd441cbaa55270c	-	ol8_x86_64_appstream
	tigervnc-server-1.9.0-14.el8_1.x86_64.rpm	fa3415cc71aa316ae0705ca6763dcd0b8375f690ac04cc234b1bbdb159ecc85e	-	ol8_x86_64_appstream
	tigervnc-server-applet-1.9.0-14.el8_1.noarch.rpm	2c4d0ba92f12fd6268fc96d5b8cce87aa8c516a4a0042ea5f706a3e92d05a2b9	-	ol8_x86_64_appstream
	tigervnc-server-minimal-1.9.0-14.el8_1.x86_64.rpm	dc11360393499b9305104ac406eeaef55c16c94ab04209ff062402ced54be70a	-	ol8_x86_64_appstream
	tigervnc-server-module-1.9.0-14.el8_1.x86_64.rpm	3364b36f7ebdf9950757f0ea651111f2583a1f6cf304174b91f5e93f1756b74b	-	ol8_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691