tigervnc-1.13.1-3.el9_3.6.ML.1
エラータID: AXSA:2024-7495:05
Virtual Network Computing (VNC) is a remote display system which allows users to view a computing desktop environment not only on the machine where it is running, but from anywhere on the Internet and from a wide variety of machine architectures. TigerVNC is a suite of VNC servers and clients.
Security Fix(es):
* xorg-x11-server: Heap buffer overflow in DeviceFocusEvent and ProcXIQueryPointer (CVE-2023-6816)
* xorg-x11-server: reattaching to different master device may lead to out-of-bounds memory access (CVE-2024-0229)
* xorg-x11-server: heap buffer overflow in XISendDeviceHierarchyEvent (CVE-2024-21885)
* xorg-x11-server: heap buffer overflow in DisableDevice (CVE-2024-21886)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
CVE-2023-6816
A flaw was found in X.Org server. Both DeviceFocusEvent and the XIQueryPointer reply contain a bit for each logical button currently down. Buttons can be arbitrarily mapped to any value up to 255, but the X.Org Server was only allocating space for the device's particular number of buttons, leading to a heap overflow if a bigger value was used.
CVE-2024-0229
RESERVED
CVE-2024-21885
RESERVED
CVE-2024-21886
RESERVED
Update packages.
A flaw was found in X.Org server. Both DeviceFocusEvent and the XIQueryPointer reply contain a bit for each logical button currently down. Buttons can be arbitrarily mapped to any value up to 255, but the X.Org Server was only allocating space for the device's particular number of buttons, leading to a heap overflow if a bigger value was used.
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
N/A
SRPMS
- tigervnc-1.13.1-3.el9_3.6.ML.1.src.rpm
MD5: 54291bbbd4f6dbca0ba78b4e13ac06cc
SHA-256: 07672e67677ce2497c4dce3c48032366e3b6defff05b8cac8c8aba38dcd3ac1f
Size: 1.95 MB
Asianux Server 9 for x86_64
- tigervnc-1.13.1-3.el9_3.6.ML.1.x86_64.rpm
MD5: ef19011e1080b3fa4c1f4196ed544ab4
SHA-256: 74716e4fc853c24f6376634d3eccca93880c8932ef215b691611096a581a664b
Size: 308.77 kB - tigervnc-icons-1.13.1-3.el9_3.6.ML.1.noarch.rpm
MD5: ada619b425460b82b67485df773b6ee9
SHA-256: 881b727aab6533e66dbf4047f3c2167aa26a97ed84fab24b50ed1e0bb2fec1a0
Size: 35.77 kB - tigervnc-license-1.13.1-3.el9_3.6.ML.1.noarch.rpm
MD5: c8cd46925860cabee5a008765ffc5fe5
SHA-256: 6a18a55c9c22634326d534726fe337dbcc7c8843d05215de3f9f5c608f268869
Size: 15.69 kB - tigervnc-selinux-1.13.1-3.el9_3.6.ML.1.noarch.rpm
MD5: 874db8909549add1e7c390a12e7f0c25
SHA-256: a57e4ee00344b8deac553c17d5be45536783ee564eddca74b01a30d47ea43690
Size: 24.24 kB - tigervnc-server-1.13.1-3.el9_3.6.ML.1.x86_64.rpm
MD5: 13a6db4e5f7db3c210a98a4afc555844
SHA-256: a7f592a51e1a9bf6c85ec68ac7b96594c0a3b778398a9cf59bd9f58d8ea7e306
Size: 224.47 kB - tigervnc-server-minimal-1.13.1-3.el9_3.6.ML.1.x86_64.rpm
MD5: b133aeb445cc31c244d8599ac1b0d788
SHA-256: 2006c76e9dfb5de4d7d237d565cbcf3e5d95cb759370425401f70d41e57ac1da
Size: 1.13 MB - tigervnc-server-module-1.13.1-3.el9_3.6.ML.1.x86_64.rpm
MD5: c32cc1e86923038c1c3184528d1732ec
SHA-256: 527795e2f7baaba8c2ccdf25ba68f435623b578b56e2ea3ceef2df91fac5f760
Size: 244.22 kB
日本語