Stay Connected:

ELSA-2024-0629

ELSA-2024-0629 - tigervnc security update

Type:SECURITY
Impact:IMPORTANT
Release Date:2024-02-01

Description


[1.8.0-31.0.1]
- Dropped xorg-CVE-2023-5367.patch, xorg-CVE-2023-6816.patch, xorg-CVE-2023-6377.patch, xorg-CVE-2023-6478.patch,
xorg-CVE-2024-0229-1.patch, xorg-CVE-2024-0229-2.patch, xorg-CVE-2024-0229-3.patch, xorg-CVE-2024-21885.patch,
xorg-CVE-2024-21886-1.patch, xorg-CVE-2024-21886-2.patch, xorg-dix-fix-use-after-free-in-input-device-shutdown.patch

[1.8.0-31]
- Fix use after free related to CVE-2024-21886
Resolves: RHEL-20436
- Fix copy/paste error in the DeviceStateNotify
Resolves: RHEL-20587

[1.8.0-30]
- Don't try to get pointer position when the pointer becomes a floating device
Resolves: RHEL-20436

[1.8.0-29]
- Fix CVE-2024-21886 tigervnc: xorg-x11-server: heap buffer overflow in DisableDevice
Resolves: RHEL-20436
- Fix CVE-2024-21885 tigervnc: xorg-x11-server: heap buffer overflow in XISendDeviceHierarchyEvent
Resolves: RHEL-20427
- Fix CVE-2024-0229 tigervnc: xorg-x11-server: reattaching to different master device may lead to out-of-bounds memory access
Resolves: RHEL-20587
- Fix CVE-2023-6816 tigervnc: xorg-x11-server: Heap buffer overflow in DeviceFocusEvent and ProcXIQueryPointer
Resolves: RHEL-21212


Related CVEs


CVE-2024-0229
CVE-2023-6816
CVE-2024-21886
CVE-2024-21885

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 7 (aarch64) tigervnc-1.8.0-31.0.1.el7_9.src.rpm78479f7af43c4e9f89b4a8b0271fd2851cc7fd48f8293000701ce73cf300f90bELSA-2024-9901ol7_aarch64_latest
tigervnc-1.8.0-31.0.1.el7_9.src.rpm78479f7af43c4e9f89b4a8b0271fd2851cc7fd48f8293000701ce73cf300f90bELSA-2024-9901ol7_aarch64_optional_latest
tigervnc-1.8.0-31.0.1.el7_9.src.rpm78479f7af43c4e9f89b4a8b0271fd2851cc7fd48f8293000701ce73cf300f90bELSA-2024-9901ol7_aarch64_u9_patch
tigervnc-1.8.0-31.0.1.el7_9.aarch64.rpm7e71b5d4c08470c25d289b5676fde0b3eeb374e4d789f453084574b00469d2d6ELSA-2024-9901ol7_aarch64_latest
tigervnc-1.8.0-31.0.1.el7_9.aarch64.rpm7e71b5d4c08470c25d289b5676fde0b3eeb374e4d789f453084574b00469d2d6ELSA-2024-9901ol7_aarch64_u9_patch
tigervnc-icons-1.8.0-31.0.1.el7_9.noarch.rpm26f8cdfd17f17f7758bd54576f6bcd8b4cb86b3bd6a452d2e0848b28e9ef74bdELSA-2024-9901ol7_aarch64_latest
tigervnc-icons-1.8.0-31.0.1.el7_9.noarch.rpm26f8cdfd17f17f7758bd54576f6bcd8b4cb86b3bd6a452d2e0848b28e9ef74bdELSA-2024-9901ol7_aarch64_u9_patch
tigervnc-license-1.8.0-31.0.1.el7_9.noarch.rpm89024bf8f457ccec1e739a9a46dbd51efd3a67612ec1c1c69eb4e908124a087cELSA-2024-9901ol7_aarch64_latest
tigervnc-license-1.8.0-31.0.1.el7_9.noarch.rpm89024bf8f457ccec1e739a9a46dbd51efd3a67612ec1c1c69eb4e908124a087cELSA-2024-9901ol7_aarch64_u9_patch
tigervnc-server-1.8.0-31.0.1.el7_9.aarch64.rpm8d373470cd2b39fd9d09957926bd9e1d76c2cdb4f841786eb8551758ddc6ae73ELSA-2024-9901ol7_aarch64_latest
tigervnc-server-1.8.0-31.0.1.el7_9.aarch64.rpm8d373470cd2b39fd9d09957926bd9e1d76c2cdb4f841786eb8551758ddc6ae73ELSA-2024-9901ol7_aarch64_u9_patch
tigervnc-server-applet-1.8.0-31.0.1.el7_9.noarch.rpmbfa106f2822e86fdae94f5554199ce5cc3a21ebc4c93dff85bb4ee726fb41b2fELSA-2024-9901ol7_aarch64_optional_latest
tigervnc-server-minimal-1.8.0-31.0.1.el7_9.aarch64.rpmaf5238c52517be0272aa67b3f70eda600a69d04608de1ea8c35ad32e1552ed68ELSA-2024-9901ol7_aarch64_latest
tigervnc-server-minimal-1.8.0-31.0.1.el7_9.aarch64.rpmaf5238c52517be0272aa67b3f70eda600a69d04608de1ea8c35ad32e1552ed68ELSA-2024-9901ol7_aarch64_u9_patch
tigervnc-server-module-1.8.0-31.0.1.el7_9.aarch64.rpmb96253f2d6962d322a948aa1088840d113b163b5fd7125ea9e1d7c07590287d9ELSA-2024-9901ol7_aarch64_optional_latest
Oracle Linux 7 (x86_64) tigervnc-1.8.0-31.0.1.el7_9.src.rpm78479f7af43c4e9f89b4a8b0271fd2851cc7fd48f8293000701ce73cf300f90bELSA-2024-9901ol7_x86_64_latest
tigervnc-1.8.0-31.0.1.el7_9.src.rpm78479f7af43c4e9f89b4a8b0271fd2851cc7fd48f8293000701ce73cf300f90bELSA-2024-9901ol7_x86_64_optional_latest
tigervnc-1.8.0-31.0.1.el7_9.src.rpm78479f7af43c4e9f89b4a8b0271fd2851cc7fd48f8293000701ce73cf300f90bELSA-2024-9901ol7_x86_64_u9_patch
tigervnc-1.8.0-31.0.1.el7_9.x86_64.rpm0009068c64701e1ee9913b44f6bcd0e145839f4be94b318c12cc4694e84a2e7bELSA-2024-9901ol7_x86_64_latest
tigervnc-1.8.0-31.0.1.el7_9.x86_64.rpm0009068c64701e1ee9913b44f6bcd0e145839f4be94b318c12cc4694e84a2e7bELSA-2024-9901ol7_x86_64_u9_patch
tigervnc-icons-1.8.0-31.0.1.el7_9.noarch.rpm26f8cdfd17f17f7758bd54576f6bcd8b4cb86b3bd6a452d2e0848b28e9ef74bdELSA-2024-9901ol7_x86_64_latest
tigervnc-icons-1.8.0-31.0.1.el7_9.noarch.rpm26f8cdfd17f17f7758bd54576f6bcd8b4cb86b3bd6a452d2e0848b28e9ef74bdELSA-2024-9901ol7_x86_64_u9_patch
tigervnc-license-1.8.0-31.0.1.el7_9.noarch.rpm89024bf8f457ccec1e739a9a46dbd51efd3a67612ec1c1c69eb4e908124a087cELSA-2024-9901ol7_x86_64_latest
tigervnc-license-1.8.0-31.0.1.el7_9.noarch.rpm89024bf8f457ccec1e739a9a46dbd51efd3a67612ec1c1c69eb4e908124a087cELSA-2024-9901ol7_x86_64_u9_patch
tigervnc-server-1.8.0-31.0.1.el7_9.x86_64.rpmd9a53ba7cd614fdcd534746b301869f342515c9f0a9592b0b3edbf47bf776b03ELSA-2024-9901ol7_x86_64_latest
tigervnc-server-1.8.0-31.0.1.el7_9.x86_64.rpmd9a53ba7cd614fdcd534746b301869f342515c9f0a9592b0b3edbf47bf776b03ELSA-2024-9901ol7_x86_64_u9_patch
tigervnc-server-applet-1.8.0-31.0.1.el7_9.noarch.rpmbfa106f2822e86fdae94f5554199ce5cc3a21ebc4c93dff85bb4ee726fb41b2fELSA-2024-9901ol7_x86_64_optional_latest
tigervnc-server-minimal-1.8.0-31.0.1.el7_9.x86_64.rpmd1b195842064bc1902400da7a2125810cd41512b940ca6c9101ea485b51b58ccELSA-2024-9901ol7_x86_64_latest
tigervnc-server-minimal-1.8.0-31.0.1.el7_9.x86_64.rpmd1b195842064bc1902400da7a2125810cd41512b940ca6c9101ea485b51b58ccELSA-2024-9901ol7_x86_64_u9_patch
tigervnc-server-module-1.8.0-31.0.1.el7_9.x86_64.rpma5b64db06410e33c95a6e101aeb62d714074c463b5b2ad6dfcb8afbb327805c9ELSA-2024-9901ol7_x86_64_optional_latest



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights