ALSA-2024:0010
- Source
- https://errata.almalinux.org/9/ALSA-2024-0010.html
- Import Source
- https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux9/ALSA-2024:0010.json
- JSON Data
- https://api.osv.dev/v1/vulns/ALSA-2024:0010
- Related
- Published
- 2024-01-02T00:00:00Z
- Modified
- 2024-01-03T17:17:24Z
- Summary
- Important: tigervnc security update
- Details
-
Virtual Network Computing (VNC) is a remote display system which allows users to view a computing desktop environment not only on the machine where it is running, but from anywhere on the Internet and from a wide variety of machine architectures. TigerVNC is a suite of VNC servers and clients.
Security Fix(es):
- xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty (CVE-2023-5367)
- xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions (CVE-2023-6377)
- xorg-x11-server: out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty (CVE-2023-6478)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
- References
-
- https://access.redhat.com/errata/RHSA-2024:0010
- https://access.redhat.com/security/cve/CVE-2023-5367
- https://access.redhat.com/security/cve/CVE-2023-6377
- https://access.redhat.com/security/cve/CVE-2023-6478
- https://bugzilla.redhat.com/2243091
- https://bugzilla.redhat.com/2253291
- https://bugzilla.redhat.com/2253298
- https://errata.almalinux.org/9/ALSA-2024-0010.html
Affected packages
AlmaLinux:9 / tigervnc
Package
- Name
- tigervnc
AlmaLinux:9 / tigervnc-icons
Package
- Name
- tigervnc-icons
AlmaLinux:9 / tigervnc-license
Package
- Name
- tigervnc-license
AlmaLinux:9 / tigervnc-selinux
Package
- Name
- tigervnc-selinux
AlmaLinux:9 / tigervnc-server
Package
- Name
- tigervnc-server
AlmaLinux:9 / tigervnc-server-minimal
Package
- Name
- tigervnc-server-minimal