ELSA-2023-2257

ULN >
Oracle Linux Errata repository >
ELSA-2023-2257

ELSA-2023-2257 - tigervnc security and bug fix update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2023-05-15

Description

[1.12.0-13]
- xorg-x11-server: X.Org Server Overlay Window Use-After-Free Local Privilege Escalation Vulnerability
Resolves: bz#2180309

[1.12.0-12]
- SELinux: allow vncsession create .vnc directory
Resolves: bz#2164703

[1.12.0-11]
- Add sanity check when cleaning up keymap changes
Resolves: bz#2169965

[1.12.0-10]
- xorg-x11-server: DeepCopyPointerClasses use-after-free leads to privilege elevation
Resolves: bz#2167061

[1.12.0-9]
- Rebuild for xorg-x11-server CVE-2022-46340 follow up fix

[1.12.0-8]
- Rebuild for xorg-x11-server CVEs
Resolves: CVE-2022-4283 (bz#2154234)
Resolves: CVE-2022-46340 (bz#2154221)
Resolves: CVE-2022-46341 (bz#2154224)
Resolves: CVE-2022-46342 (bz#2154226)
Resolves: CVE-2022-46343 (bz#2154228)
Resolves: CVE-2022-46344 (bz#2154230)

[1.12.0-7]
- x0vncserver: add new keysym in case we don't find matching keycode
+ actually apply the patch
Resolves: bz#2119017

[1.12.0-6]
- x0vncserver: add new keysym in case we don't find matching keycode
Resolves: bz#2119017

Related CVEs

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 9 (aarch64)	tigervnc-1.12.0-13.el9_2.src.rpm	37f874a8c6c5cde6a17829c203e2bd649fa8514137cc8e7e6d1b2ddda66bc9d2	-	ol9_aarch64_appstream
	tigervnc-1.12.0-13.el9_2.aarch64.rpm	b4480d04122110243553fe30d9d2ebfabe5e001c9fba92c5dad55b3f1f2a86f7	-	ol9_aarch64_appstream
	tigervnc-icons-1.12.0-13.el9_2.noarch.rpm	517525409270a404fdd25601160442fad8535bca05ba20412124a5a4bda0f829	-	ol9_aarch64_appstream
	tigervnc-license-1.12.0-13.el9_2.noarch.rpm	72fa109134136fe19beb942b76e70f09829b61d95251ef14df3e6b8a854fb332	-	ol9_aarch64_appstream
	tigervnc-selinux-1.12.0-13.el9_2.noarch.rpm	75e24c571323143b7edd19e80baf59c88e19faa1154a7a32d68ab7604a04fc9f	-	ol9_aarch64_appstream
	tigervnc-server-1.12.0-13.el9_2.aarch64.rpm	8f5688a3875fe851b71af885a667191a8504a3d8c95d4aae5db0eda9c2b77d91	-	ol9_aarch64_appstream
	tigervnc-server-minimal-1.12.0-13.el9_2.aarch64.rpm	0503820c5e11af83f7b822dac05a997a97b947efc6511ff6507587fb4650df8e	-	ol9_aarch64_appstream
	tigervnc-server-module-1.12.0-13.el9_2.aarch64.rpm	4461ebd4c33ba07fb2c2c1f1bfc3b45c9d0188d712b386761f86a2bdb8555380	-	ol9_aarch64_appstream

Oracle Linux 9 (x86_64)	tigervnc-1.12.0-13.el9_2.src.rpm	37f874a8c6c5cde6a17829c203e2bd649fa8514137cc8e7e6d1b2ddda66bc9d2	-	ol9_x86_64_appstream
	tigervnc-1.12.0-13.el9_2.x86_64.rpm	fa7024f81a6e3c0af23a769e19ebcf5d42dab7012fa08283c18a0ba9467bee09	-	ol9_x86_64_appstream
	tigervnc-icons-1.12.0-13.el9_2.noarch.rpm	517525409270a404fdd25601160442fad8535bca05ba20412124a5a4bda0f829	-	ol9_x86_64_appstream
	tigervnc-license-1.12.0-13.el9_2.noarch.rpm	72fa109134136fe19beb942b76e70f09829b61d95251ef14df3e6b8a854fb332	-	ol9_x86_64_appstream
	tigervnc-selinux-1.12.0-13.el9_2.noarch.rpm	75e24c571323143b7edd19e80baf59c88e19faa1154a7a32d68ab7604a04fc9f	-	ol9_x86_64_appstream
	tigervnc-server-1.12.0-13.el9_2.x86_64.rpm	8aa65353faf3a66ff4736fbf067bcd9dd1e080bfa7aa205945ddd64830c4da63	-	ol9_x86_64_appstream
	tigervnc-server-minimal-1.12.0-13.el9_2.x86_64.rpm	444cd79240aaad6a5d1f24b7c79ac65b4684744f385a76734442b6b5f03fa1b3	-	ol9_x86_64_appstream
	tigervnc-server-module-1.12.0-13.el9_2.x86_64.rpm	7b343603201fdc47df39d352c570342dfc3ba6736fd9bcd32c0623423564b52e	-	ol9_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691