ELSA-2024-0607

ULN >
Oracle Linux Errata repository >
ELSA-2024-0607

ELSA-2024-0607 - tigervnc security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2024-01-31

Description

[1.13.1-2.7]
- Fix CVE-2024-21886 tigervnc: xorg-x11-server: heap buffer overflow in DisableDevice
Resolves: RHEL-20388
- Fix CVE-2024-21885 tigervnc: xorg-x11-server: heap buffer overflow in XISendDeviceHierarchyEvent
Resolves: RHEL-20382
- Fix CVE-2024-0229 tigervnc: xorg-x11-server: reattaching to different master device may lead to out-of-bounds memory access
Resolves: RHEL-20530
- Fix CVE-2023-6816 tigervnc: xorg-x11-server: Heap buffer overflow in DeviceFocusEvent and ProcXIQueryPointer
Resolves: RHEL-21214

Related CVEs

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	tigervnc-1.13.1-2.el8_9.7.src.rpm	4e5337829c94875485a64f5b0328297b8eaed07529c231de9d181cd2c77751f1	-	ol8_aarch64_appstream
	tigervnc-1.13.1-2.el8_9.7.aarch64.rpm	00b009fbb11d9a6d5961db598e4c9d3e4b92f474cbe40fd702ccf1674649e535	-	ol8_aarch64_appstream
	tigervnc-icons-1.13.1-2.el8_9.7.noarch.rpm	a0161303141472cde3fd589d8f8f055dc5bbce1fc0ffd634eaa0e45037107bc2	-	ol8_aarch64_appstream
	tigervnc-license-1.13.1-2.el8_9.7.noarch.rpm	3c63f631fa445cdd64f46413d6be9b1a1686999d4e2e65f9da965b77ba298e0b	-	ol8_aarch64_appstream
	tigervnc-selinux-1.13.1-2.el8_9.7.noarch.rpm	8d35139bc50416241a14263127cfb50bbf186a5006921ad5675467808f0e1820	-	ol8_aarch64_appstream
	tigervnc-server-1.13.1-2.el8_9.7.aarch64.rpm	6086a8c8de539d46095bd9d1bdb2a68b0dc94fb3f47e71ee96942af776b55d90	-	ol8_aarch64_appstream
	tigervnc-server-minimal-1.13.1-2.el8_9.7.aarch64.rpm	08bf66b6c133dbe5f44becd3e3937e8eba07ea6734264aa002ceb2aa649dea5c	-	ol8_aarch64_appstream
	tigervnc-server-module-1.13.1-2.el8_9.7.aarch64.rpm	9bbaeabe3272e776f53a4dac57a3e2787ffbf3a3082174b249b56ce4a1ccee98	-	ol8_aarch64_appstream

Oracle Linux 8 (x86_64)	tigervnc-1.13.1-2.el8_9.7.src.rpm	4e5337829c94875485a64f5b0328297b8eaed07529c231de9d181cd2c77751f1	-	ol8_x86_64_appstream
	tigervnc-1.13.1-2.el8_9.7.x86_64.rpm	23dfefaf7ac79f3e401401240891e8145874f405911bea2e4cd624a37c33eadd	-	ol8_x86_64_appstream
	tigervnc-icons-1.13.1-2.el8_9.7.noarch.rpm	a0161303141472cde3fd589d8f8f055dc5bbce1fc0ffd634eaa0e45037107bc2	-	ol8_x86_64_appstream
	tigervnc-license-1.13.1-2.el8_9.7.noarch.rpm	3c63f631fa445cdd64f46413d6be9b1a1686999d4e2e65f9da965b77ba298e0b	-	ol8_x86_64_appstream
	tigervnc-selinux-1.13.1-2.el8_9.7.noarch.rpm	8d35139bc50416241a14263127cfb50bbf186a5006921ad5675467808f0e1820	-	ol8_x86_64_appstream
	tigervnc-server-1.13.1-2.el8_9.7.x86_64.rpm	b2fed29ede0ae5a83185d93a965e64eeb8cfd44a51dea12dc72fb59a2b602311	-	ol8_x86_64_appstream
	tigervnc-server-minimal-1.13.1-2.el8_9.7.x86_64.rpm	5b4fa1d3d805f232825a94edffcdac6e0a22a9c77e6ad7f497ac66a1f98be52f	-	ol8_x86_64_appstream
	tigervnc-server-module-1.13.1-2.el8_9.7.x86_64.rpm	974eddfa5a3d32972d53833061488b88cf34950f7bf2d1ef084da5b468780746	-	ol8_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691