Important: Red Hat Security Advisory: xorg-x11-server security update

An update for xorg-x11-server is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions, Red Hat Enterprise Linux 8.8 Extended Update Support EXTENSION, and Red Hat Enterprise Linux 8.8 Telecommunications Update Service. Red Hat Product Security has rated this update as...

RHEL 8 : tigervnc (RHSA-2025:10355)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:10355 advisory. Virtual Network Computing VNC is a remote display system which allows users to view a computing desktop environment not only on the machine...

AlmaLinux 9 : xorg-x11-server and xorg-x11-server-Xwayland (ALSA-2025:9303)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:9303 advisory. xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Out-of-Bounds Read in X Rendering Extension Animated Cursors CVE-2025-49175 xorg-x11-server-Xwayland:...

Updated x11-server, x11-server-xwayland & tigervnc packages fix security vulnerabilities

Out-of-bounds access in X Rendering extension Animated cursors. CVE-2025-49175 Integer overflow in Big Requests Extension. CVE-2025-49176 Data leak in XFIXES Extension 6 XFixesSetClientDisconnectMode. CVE-2025-49177 Unprocessed client request via bytes to ignore. CVE-2025-49178 Integer overflow i...

Fedora 41 : xorg-x11-server (2025-3fa66ac98b)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-3fa66ac98b advisory. Update to xserver 21.1.18, contains an additional fix for CVE-2025-49176 ---- Update to xserver 21.1.17, CVE fix for CVE-2025-49175, CVE-2025-49176,...

ALSA-2025:9306 Important: tigervnc security update

Virtual Network Computing VNC is a remote display system which allows users to view a computing desktop environment not only on the machine where it is running, but from anywhere on the Internet and from a wide variety of machine architectures. TigerVNC is a suite of VNC servers and clients...

SUSE-SU-2025:01980-1 Security update for xorg-x11-server

This update for xorg-x11-server fixes the following issues: - CVE-2025-49175: Out-of-bounds access in X Rendering extension Animated cursors bsc1244082. - CVE-2025-49176: Integer overflow in Big Requests Extension bsc1244084. - CVE-2025-49177: Data leak in XFIXES Extension 6...

SUSE-SU-2025:01978-1 Security update for xorg-x11-server

This update for xorg-x11-server fixes the following issues: - CVE-2025-49175: Out-of-bounds access in X Rendering extension Animated cursors bsc1244082. - CVE-2025-49176: Integer overflow in Big Requests Extension bsc1244084. - CVE-2025-49178: Unprocessed client request via bytes to ignore...

SUSE-SU-2025:01977-1 Security update for xorg-x11-server

This update for xorg-x11-server fixes the following issues: - CVE-2025-49175: Out-of-bounds access in X Rendering extension Animated cursors bsc1244082. - CVE-2025-49176: Integer overflow in Big Requests Extension bsc1244084. - CVE-2025-49178: Unprocessed client request via bytes to ignore...

TencentOS Server 3: xorg-x11-server-Xwayland (TSSA-2022:0228)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2022:0228 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

TencentOS Server 2: xorg-x11-server (TSSA-2024:0003)

The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0003 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities...

Alibaba Cloud Linux 3 : 0219: xorg-x11-server and xorg-x11-server-Xwayland (ALINUX3-SA-2022:0219)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2022:0219 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2021-4008: A flaw was found in...

tigervnc security update

1.13.1-15 - Fix CVE-2025-26594 xorg-x11-server Use-after-free of the root cursor Resolves: RHEL-79397 - Fix CVE-2025-26595 xorg-x11-server Buffer overflow in XkbVModMaskText Resolves: RHEL-79401 - Fix CVE-2025-26596 xorg-x11-server Heap overflow in XkbWriteKeySyms Resolves: RHEL-79386 - Fix...

tigervnc security update

1.14.1-1.1 - Fix CVE-2025-26594 xorg-x11-server Use-after-free of the root cursor Resolves: RHEL-79406 - Fix CVE-2025-26595 xorg-x11-server Buffer overflow in XkbVModMaskText Resolves: RHEL-80018 - Fix CVE-2025-26596 xorg-x11-server Heap overflow in XkbWriteKeySyms Resolves: RHEL-79391 - Fix...

Important: xorg-x11-server

Issue Overview: A flaw was found in the Xorg-x11-server. An out-of-bounds access issue can occur in the SProcRenderCompositeGlyphs function due to improper validation of the request length. CVE-2021-4008 A flaw was found in xorg-x11-server. An out-of-bounds access can occur in the...

SUSE-SU-2022:4483-1 Security update for xorg-x11-server

This update for xorg-x11-server fixes the following issues: - CVE-2022-46340: Server XTestSwapFakeInput stack overflow bsc1205874 - CVE-2022-46341: Server XIPassiveUngrabDevice out-of-bounds access bsc1205877 - CVE-2022-46342: Server XvdiSelectVideoNotify use-after-free bsc1205879 - CVE-2022-4634...

SUSE-SU-2022:4482-1 Security update for xorg-x11-server

This update for xorg-x11-server fixes the following issues: - CVE-2022-46340: Server XTestSwapFakeInput stack overflow bsc1205874 - CVE-2022-46341: Server XIPassiveUngrabDevice out-of-bounds access bsc1205877 - CVE-2022-46342: Server XvdiSelectVideoNotify use-after-free bsc1205879 - CVE-2022-4634...

SUSE-SU-2021:4124-1 Security update for xorg-x11-server

This update for xorg-x11-server fixes the following issues: - CVE-2021-4009: The handler for the CreatePointerBarrier request of the XFixes extension does not properly validate the request length leading to out of bounds memory write. bsc1190487 - CVE-2021-4011: The handlers for the...