CLSA-2025-1757499161 xorg-x11-server: Fix of CVE-2025-49180

CVE-2025-49180: fix integer overflow in the RandR extension affecting the RRChangeProviderProperty function...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: xorg-x11-server (UTSA-2026-006172)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006172 advisory. A flaw was found in the RandR extension, where the RRChangeProviderProperty function does not properly validate input. This issue leads to an integer overflow when...

MiracleLinux 3 : xorg-x11-server-1.1.1-48.101.3.0.1.AXS3 (AXSA:2014-286:01)

The remote MiracleLinux 3 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2014-286:01 advisory. X.Org X11 X server Security issues fixed with this release: CVE-2013-6424 Integer underflow in the xTrapezoidValid macro in render/picture.h in X.Org allows...

MiracleLinux 9 : tigervnc-1.14.1-8.el9_6 (AXSA:2025-10563:07)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10563:07 advisory. xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Out-of-Bounds Read in X Rendering Extension Animated Cursors CVE-2025-49175...

MiracleLinux 7 : xorg-x11-server-1.20.4-99.0.4.el7.AXS7 (AXSA:2025-10892:04)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10892:04 advisory. CVE-2025-49180: fix integer overflow in the RandR extension affecting the RRChangeProviderProperty function CVEs: CVE-2025-49180 A flaw was found i...

MiracleLinux 8 : tigervnc-1.15.0-7.el8_10 (AXSA:2025-10034:05)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10034:05 advisory. xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Out-of-Bounds Read in X Rendering Extension Animated Cursors CVE-2025-49175...

TencentOS Server 2: xorg-x11-server (TSSA-2025:0558)

The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0558 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : libqt5-qtbase (SUSE-SU-2025:3723-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:3723-1 advisory. Security issues fixed: - CVE-2025-5455: processing of malformed data in qDecodeDataUrl can trigg...

Security update for libqt5-qtbase

This update for libqt5-qtbase fixes the following issues: Security issues fixed: CVE-2025-5455: processing of malformed data in qDecodeDataUrl can trigger assertion and cause a crash bsc1243958. CVE-2025-30348: complex algorithm used in encodeText in QDom when processing XML data can cause low...

TencentOS Server 4: xorg-x11-server-Xwayland (TSSA-2025:0757)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0757 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

TencentOS Server 4: xorg-x11-server (TSSA-2025:0760)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0760 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

Unity Linux 20.1060a / 20.1070a Security Update: tigervnc (UTSA-2025-986113)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986113 advisory. A flaw was found in the RandR extension, where the RRChangeProviderProperty function does not properly validate input. This issue leads to an integer overflow when...

RLSA-2025:9306 Important: tigervnc security update

Virtual Network Computing VNC is a remote display system which allows users to view a computing desktop environment not only on the machine where it is running, but from anywhere on the Internet and from a wide variety of machine architectures. TigerVNC is a suite of VNC servers and clients...

EUVD-2025-18511

Malicious code in bioql PyPI...

RLSA-2025:9304 Important: xorg-x11-server-Xwayland security update

Xwayland is an X server for running X clients under Wayland. Security Fixes: xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Out-of-Bounds Read in X Rendering Extension Animated Cursors CVE-2025-49175 xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Integer Overflow in Big Requests...

CLSA-2025-1757501564 xorg-x11-server: Fix of CVE-2025-49180

CVE-2025-49180: fix integer overflow in the RandR extension affecting the RRChangeProviderProperty function...

Linux Distros Unpatched Vulnerability : CVE-2025-49180

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the RandR extension, where the RRChangeProviderProperty function does not properly validate input. This issue leads to an integer overflow...

Malicious code in @zalastax/nolb-randr (npm)

The package @zalastax/nolb-randr was found to contain malicious code...

MAL-2025-13638 Malicious code in @zalastax/nolb-randr (npm)

The package @zalastax/nolb-randr was found to contain malicious code...

CBL Mariner 2.0 Security Update: xorg-x11-server / xorg-x11-server-Xwayland (CVE-2025-49180)

The version of xorg-x11-server / xorg-x11-server-Xwayland installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-49180 advisory. - A flaw was found in the RandR extension, where the...