Lucene search
Rockylinux Product ErrataRLSA-2024:2037HistoryMay 06, 2024 - 1:04 p.m.
tigervnc security update
2024-05-0613:04:21
Rockylinux Product Errata
errata.rockylinux.org
5
tigervnc
security update
rocky linux 8
heap buffer overread
user-after-free
vulnerabilities
cvss
xorg-x11-server
remote display system
vnc
An update is available for tigervnc.
This update affects Rocky Linux 8.
A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list
Virtual Network Computing (VNC) is a remote display system which allows users to view a computing desktop environment not only on the machine where it is running, but from anywhere on the Internet and from a wide variety of machine architectures. TigerVNC is a suite of VNC servers and clients.
Security Fix(es):
-
xorg-x11-server: Heap buffer overread/data leakage in ProcXIGetSelectedEvents (CVE-2024-31080)
-
xorg-x11-server: Heap buffer overread/data leakage in ProcXIPassiveGrabDevice (CVE-2024-31081)
-
xorg-x11-server: User-after-free in ProcRenderAddGlyphs (CVE-2024-31083)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| rocky | 8 | aarch64 | tigervnc | <Â 1.13.1-2.el8_9.10 | tigervnc-0:1.13.1-2.el8_9.10.aarch64.rpm |
| rocky | 8 | x86_64 | tigervnc | <Â 1.13.1-2.el8_9.10 | tigervnc-0:1.13.1-2.el8_9.10.x86_64.rpm |
| rocky | 8 | aarch64 | tigervnc-debuginfo | <Â 1.13.1-2.el8_9.10 | tigervnc-debuginfo-0:1.13.1-2.el8_9.10.aarch64.rpm |
| rocky | 8 | x86_64 | tigervnc-debuginfo | <Â 1.13.1-2.el8_9.10 | tigervnc-debuginfo-0:1.13.1-2.el8_9.10.x86_64.rpm |
| rocky | 8 | aarch64 | tigervnc-debugsource | <Â 1.13.1-2.el8_9.10 | tigervnc-debugsource-0:1.13.1-2.el8_9.10.aarch64.rpm |
| rocky | 8 | x86_64 | tigervnc-debugsource | <Â 1.13.1-2.el8_9.10 | tigervnc-debugsource-0:1.13.1-2.el8_9.10.x86_64.rpm |
| rocky | 8 | noarch | tigervnc-icons | <Â 1.13.1-2.el8_9.10 | tigervnc-icons-0:1.13.1-2.el8_9.10.noarch.rpm |
| rocky | 8 | noarch | tigervnc-license | <Â 1.13.1-2.el8_9.10 | tigervnc-license-0:1.13.1-2.el8_9.10.noarch.rpm |
| rocky | 8 | noarch | tigervnc-selinux | <Â 1.13.1-2.el8_9.10 | tigervnc-selinux-0:1.13.1-2.el8_9.10.noarch.rpm |
| rocky | 8 | aarch64 | tigervnc-server | <Â 1.13.1-2.el8_9.10 | tigervnc-server-0:1.13.1-2.el8_9.10.aarch64.rpm |
Related
nessus
nessus
FreeBSD : xorg server -- Multiple vulnerabilities (57561cfc-f24b-11ee-9730-001fc69cd6dc)
2024-04-04 00:00:00
RHEL 7 : tigervnc (RHSA-2024:2080)
2024-04-29 00:00:00
RHEL 8 : tigervnc (RHSA-2024:2037)
2024-04-24 00:00:00
rocky
rocky
tigervnc security update
2024-05-10 14:32:42
redhat
redhat
(RHSA-2024:1785) Important: X.Org server security update
2024-04-11 15:27:06
(RHSA-2024:2036) Important: tigervnc security update
2024-04-24 14:54:26
(RHSA-2024:2038) Important: tigervnc security update
2024-04-24 14:54:40
debian
debian
[SECURITY] [DSA 5657-1] xorg-server security update
2024-04-12 20:32:08
[SECURITY] [DLA 3787-1] xorg-server security update
2024-04-15 13:23:10
openvas
openvas
Mageia: Security Advisory (MGASA-2024-0121)
2024-04-12 00:00:00
Debian: Security Advisory (DSA-5657-1)
2024-04-15 00:00:00
Debian: Security Advisory (DLA-3787-1)
2024-04-15 00:00:00
osv
osv
Important: tigervnc security update
2024-04-30 00:00:00
Important: tigervnc security update
2024-05-06 13:04:21
Important: tigervnc security update
2024-05-10 14:32:42
fedora
fedora
[SECURITY] Fedora 38 Update: xorg-x11-server-Xwayland-22.1.9-7.fc38
2024-04-24 01:36:56
[SECURITY] Fedora 39 Update: xorg-x11-server-Xwayland-23.2.6-1.fc39
2024-04-24 01:18:17
[SECURITY] Fedora 40 Update: xorg-x11-server-Xwayland-23.2.6-1.fc40
2024-04-19 21:43:34
oraclelinux
oraclelinux
tigervnc security update
2024-05-07 00:00:00
X.Org server security update
2024-04-11 00:00:00
tigervnc security update
2024-04-24 00:00:00
almalinux
almalinux
Important: tigervnc security update
2024-04-30 00:00:00
Important: tigervnc security update
2024-04-24 00:00:00
freebsd
freebsd
xorg server -- Multiple vulnerabilities
2024-04-03 00:00:00
amazon
amazon
Important: xorg-x11-server
2024-04-11 01:07:00
Important: tigervnc
2024-04-11 01:07:00
Important: tigervnc
2024-04-11 01:43:00
mageia
mageia
redos
redos
ROS-20240507-07
2024-05-07 00:00:00
ubuntu
ubuntu
X.Org X Server regression
2024-04-09 00:00:00
X.Org X Server vulnerabilities
2024-04-04 00:00:00
slackware
slackware
[slackware-security] tigervnc
2024-04-05 20:14:40
[slackware-security] xorg-server
2024-04-03 22:25:44
redhatcve
redhatcve
veracode
veracode
Buffer Over-read
2024-04-11 02:44:05
Buffer Over-Read
2024-04-11 02:44:06
Use After Free
2024-04-11 02:44:08
wolfi
wolfi
CVE-2024-31081 vulnerabilities
2024-05-19 09:07:15
CVE-2024-31080 vulnerabilities
2024-05-19 09:07:15
CVE-2024-31083 vulnerabilities
2024-05-19 09:07:15
cvelist
cvelist
CVE-2024-31080 Xorg-x11-server: heap buffer overread/data leakage in procxigetselectedevents
2024-04-04 13:47:33
CVE-2024-31081 Xorg-x11-server: heap buffer overread/data leakage in procxipassivegrabdevice
2024-04-04 13:48:12
CVE-2024-31083 Xorg-x11-server: use-after-free in procrenderaddglyphs
2024-04-05 12:04:49
debiancve
debiancve
cve
cve
ubuntucve
ubuntucve
cgr
cgr
CVE-2024-31080 vulnerabilities
2024-05-19 03:07:16
CVE-2024-31081 vulnerabilities
2024-05-19 03:07:16
CVE-2024-31083 vulnerabilities
2024-05-19 03:07:16
alpinelinux
alpinelinux
zdi
zdi