ELSA-2025-2502

ULN >
Oracle Linux Errata repository >
ELSA-2025-2502

ELSA-2025-2502 - tigervnc security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2025-03-10

Description

[1.13.1-15]
- Fix CVE-2025-26594 xorg-x11-server Use-after-free of the root cursor
Resolves: RHEL-79397
- Fix CVE-2025-26595 xorg-x11-server Buffer overflow in XkbVModMaskText()
Resolves: RHEL-79401
- Fix CVE-2025-26596 xorg-x11-server Heap overflow in XkbWriteKeySyms()
Resolves: RHEL-79386
- Fix CVE-2025-26597 xorg-x11-server Buffer overflow in XkbChangeTypesOfKey()
Resolves: RHEL-79380
- Fix CVE-2025-26598 xorg-x11-server Out-of-bounds write in CreatePointerBarrierClient()
Resolves: RHEL-79369
- Fix CVE-2025-26599 xorg-x11-server Use of uninitialized pointer in compRedirectWindow()
Resolves: RHEL-79364
- Fix CVE-2025-26600 xorg-x11-server Use-after-free in PlayReleasedEvents()
Resolves: RHEL-79360
- Fix CVE-2025-26601 xorg-x11-server Use-after-free in SyncInitTrigger()
Resolves: RHEL-79348

Related CVEs

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	tigervnc-1.13.1-15.el8_10.src.rpm	ec57626226a9bf42121bb5a37bf752e07a1f81e1359e8a25aa4b1a811008c347	-	ol8_aarch64_appstream
	tigervnc-1.13.1-15.el8_10.aarch64.rpm	f3cec3810703590b60657e3ef6f94b5b2cce3806647f62f1cf2af00782dc11bb	-	ol8_aarch64_appstream
	tigervnc-icons-1.13.1-15.el8_10.noarch.rpm	8a7065cb7366b7ea09d6cf2fb939502d9c52e63b4cea8a784ebc0ee46183412f	-	ol8_aarch64_appstream
	tigervnc-license-1.13.1-15.el8_10.noarch.rpm	d80018c4019bb0a94ae0b00a4f542a094ae71617748bafac7ca71dd57e3fbab4	-	ol8_aarch64_appstream
	tigervnc-selinux-1.13.1-15.el8_10.noarch.rpm	41dbd29dc0c0c6c10fb9d7acb83b39fb506499a20d37b70e917f1dc7f601640e	-	ol8_aarch64_appstream
	tigervnc-server-1.13.1-15.el8_10.aarch64.rpm	fb1a610ad4f35e22f3677d6276a53998dc511397a26e4659ee583379a1eb073c	-	ol8_aarch64_appstream
	tigervnc-server-minimal-1.13.1-15.el8_10.aarch64.rpm	97d55b824f3ca678b5a7c57407f11513296e7df55782413af2ac2c5ce21d4d5e	-	ol8_aarch64_appstream
	tigervnc-server-module-1.13.1-15.el8_10.aarch64.rpm	7ed5bc105cefd2c3ed40c433dbd6ad22970c9a684d6763de4fd24a687ec49a93	-	ol8_aarch64_appstream

Oracle Linux 8 (x86_64)	tigervnc-1.13.1-15.el8_10.src.rpm	ec57626226a9bf42121bb5a37bf752e07a1f81e1359e8a25aa4b1a811008c347	-	ol8_x86_64_appstream
	tigervnc-1.13.1-15.el8_10.x86_64.rpm	ccb2b7b809dcfae2c70be992b2d317db8fcd927a79cfda7345cb69431234025e	-	ol8_x86_64_appstream
	tigervnc-icons-1.13.1-15.el8_10.noarch.rpm	8a7065cb7366b7ea09d6cf2fb939502d9c52e63b4cea8a784ebc0ee46183412f	-	ol8_x86_64_appstream
	tigervnc-license-1.13.1-15.el8_10.noarch.rpm	d80018c4019bb0a94ae0b00a4f542a094ae71617748bafac7ca71dd57e3fbab4	-	ol8_x86_64_appstream
	tigervnc-selinux-1.13.1-15.el8_10.noarch.rpm	41dbd29dc0c0c6c10fb9d7acb83b39fb506499a20d37b70e917f1dc7f601640e	-	ol8_x86_64_appstream
	tigervnc-server-1.13.1-15.el8_10.x86_64.rpm	55ed7820115df8322020717f5e4ded030e03d3d10eed4c6af92e7064eddf5bc1	-	ol8_x86_64_appstream
	tigervnc-server-minimal-1.13.1-15.el8_10.x86_64.rpm	74e085a0a9ebe7bf2880e35589017654e0de34356f84c0ba9bb277b8697c91e0	-	ol8_x86_64_appstream
	tigervnc-server-module-1.13.1-15.el8_10.x86_64.rpm	f41e53aa502739b47bb2c8d69e4c37d1875b2f4cc46a4be72eefe3b5571e88f9	-	ol8_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691