ELSA-2024-0018

ULN >
Oracle Linux Errata repository >
ELSA-2024-0018

ELSA-2024-0018 - tigervnc security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2024-01-04

Description

[1.13.1-2.4]
- xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty (CVE-2023-5367)
- xorg-x11-server: Use-after-free bug in DestroyWindow (CVE-2023-5380)
- xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions (CVE-2023-6377)
- xorg-x11-server: out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty (CVE-2023-6478)

Related CVEs

CVE-2023-6377

CVE-2023-6478

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	tigervnc-1.13.1-2.el8_9.4.src.rpm	cb3443a6ebba4c0958f07cb9817c6f4012116410177550819729f7cf0d55a957	-	ol8_aarch64_appstream
	tigervnc-1.13.1-2.el8_9.4.aarch64.rpm	1939e52930c57a57aeebb671c1228d07843398d7afcf2ae50b82aee9a321bf8f	-	ol8_aarch64_appstream
	tigervnc-icons-1.13.1-2.el8_9.4.noarch.rpm	b23a77130ea702a16bea414df17464489e2a0a896851e833655c1b3446b3924b	-	ol8_aarch64_appstream
	tigervnc-license-1.13.1-2.el8_9.4.noarch.rpm	1681c41d9dd4cd7b8e2a287fcd1cdd5c6bc492bacf13aa9b14b6c7f1359e90ed	-	ol8_aarch64_appstream
	tigervnc-selinux-1.13.1-2.el8_9.4.noarch.rpm	10dfd569bf76397f890335e9551a23ea6e91e65cf4faa4747adc97e9af1c5f31	-	ol8_aarch64_appstream
	tigervnc-server-1.13.1-2.el8_9.4.aarch64.rpm	28025ab40db2082226b09382c62292309132a72459940f85df6385b3fe20e780	-	ol8_aarch64_appstream
	tigervnc-server-minimal-1.13.1-2.el8_9.4.aarch64.rpm	021b4eeb1753ce7a6c2819970b6484275547d6f314929558ca9fd116663ae926	-	ol8_aarch64_appstream
	tigervnc-server-module-1.13.1-2.el8_9.4.aarch64.rpm	f4238fad442e508394d14950a55341247104157ed8b507bf83cf4195656b2682	-	ol8_aarch64_appstream

Oracle Linux 8 (x86_64)	tigervnc-1.13.1-2.el8_9.4.src.rpm	cb3443a6ebba4c0958f07cb9817c6f4012116410177550819729f7cf0d55a957	-	ol8_x86_64_appstream
	tigervnc-1.13.1-2.el8_9.4.x86_64.rpm	0719a3cf5844b009bc75d67cf94552d5f4e50ecde3ba695fe2fdf27e7c45d02a	-	ol8_x86_64_appstream
	tigervnc-icons-1.13.1-2.el8_9.4.noarch.rpm	b23a77130ea702a16bea414df17464489e2a0a896851e833655c1b3446b3924b	-	ol8_x86_64_appstream
	tigervnc-license-1.13.1-2.el8_9.4.noarch.rpm	1681c41d9dd4cd7b8e2a287fcd1cdd5c6bc492bacf13aa9b14b6c7f1359e90ed	-	ol8_x86_64_appstream
	tigervnc-selinux-1.13.1-2.el8_9.4.noarch.rpm	10dfd569bf76397f890335e9551a23ea6e91e65cf4faa4747adc97e9af1c5f31	-	ol8_x86_64_appstream
	tigervnc-server-1.13.1-2.el8_9.4.x86_64.rpm	089482857d59da2569abc4ca5195be147ded4fae160021cf7b479ef764376742	-	ol8_x86_64_appstream
	tigervnc-server-minimal-1.13.1-2.el8_9.4.x86_64.rpm	d38002feb507ec71fcb1e78299016bef517d841a04fdfe95c376a66b65844418	-	ol8_x86_64_appstream
	tigervnc-server-module-1.13.1-2.el8_9.4.x86_64.rpm	29ce5fa1de5e82b2bae99be2d4d303d0d3179f467fb33006a0d2f2a60516608a	-	ol8_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691