Lucene search
OracleLinuxELSA-2024-0010HistoryJan 03, 2024 - 12:00 a.m.
tigervnc security update
2024-01-0300:00:00
linux.oracle.com
13
tigervnc
security update
xorg-x11-server
out-of-bounds write
memory reads
memory writes
cve-2023-5367
cve-2023-6377
cve-2023-6478
unix
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.3 High
AI Score
Confidence
Low
0.273 Low
EPSS
Percentile
96.8%
[1.13.1-3.3]
- xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty (CVE-2023-5367)
- xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions (CVE-2023-6377)
- xorg-x11-server: out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty (CVE-2023-6478)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 9 | src | tigervnc | < 1.13.1-3.el9_3.3 | tigervnc-1.13.1-3.el9_3.3.src.rpm |
| oracle linux | 9 | aarch64 | tigervnc | < 1.13.1-3.el9_3.3 | tigervnc-1.13.1-3.el9_3.3.aarch64.rpm |
| oracle linux | 9 | noarch | tigervnc-icons | < 1.13.1-3.el9_3.3 | tigervnc-icons-1.13.1-3.el9_3.3.noarch.rpm |
| oracle linux | 9 | noarch | tigervnc-license | < 1.13.1-3.el9_3.3 | tigervnc-license-1.13.1-3.el9_3.3.noarch.rpm |
| oracle linux | 9 | noarch | tigervnc-selinux | < 1.13.1-3.el9_3.3 | tigervnc-selinux-1.13.1-3.el9_3.3.noarch.rpm |
| oracle linux | 9 | aarch64 | tigervnc-server | < 1.13.1-3.el9_3.3 | tigervnc-server-1.13.1-3.el9_3.3.aarch64.rpm |
| oracle linux | 9 | aarch64 | tigervnc-server-minimal | < 1.13.1-3.el9_3.3 | tigervnc-server-minimal-1.13.1-3.el9_3.3.aarch64.rpm |
| oracle linux | 9 | aarch64 | tigervnc-server-module | < 1.13.1-3.el9_3.3 | tigervnc-server-module-1.13.1-3.el9_3.3.aarch64.rpm |
| oracle linux | 9 | src | tigervnc | < 1.13.1-3.el9_3.3 | tigervnc-1.13.1-3.el9_3.3.src.rpm |
| oracle linux | 9 | x86_64 | tigervnc | < 1.13.1-3.el9_3.3 | tigervnc-1.13.1-3.el9_3.3.x86_64.rpm |
Related
nessus
nessus
AlmaLinux 9 : tigervnc (ALSA-2024:0010)
2024-01-04 00:00:00
RHEL 9 : tigervnc (RHSA-2024:0010)
2024-01-02 00:00:00
Oracle Linux 9 : tigervnc (ELSA-2024-0010)
2024-01-03 00:00:00
osv
osv
Important: tigervnc security update
2024-01-02 00:00:00
xorg-server, xwayland vulnerabilities
2023-12-13 13:23:48
xorg-server - security update
2023-12-13 00:00:00
redhat
redhat
(RHSA-2024:0010) Important: tigervnc security update
2024-01-02 06:50:57
(RHSA-2024:0020) Important: tigervnc security update
2024-01-02 06:54:35
(RHSA-2024:0015) Important: tigervnc security update
2024-01-02 06:53:55
almalinux
almalinux
Important: tigervnc security update
2024-01-02 00:00:00
Important: tigervnc security update
2024-01-02 00:00:00
Moderate: xorg-x11-server security update
2024-05-22 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-3686-2)
2023-12-15 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:4790-1)
2023-12-14 00:00:00
Fedora: Security Advisory for tigervnc (FEDORA-2023-ec02e360af)
2024-01-18 00:00:00
fedora
fedora
[SECURITY] Fedora 38 Update: xorg-x11-server-1.20.14-28.fc38
2024-01-11 02:16:48
[SECURITY] Fedora 39 Update: xorg-x11-server-Xwayland-23.2.3-1.fc39
2023-12-19 01:12:16
[SECURITY] Fedora 39 Update: xorg-x11-server-1.20.14-28.fc39
2023-12-15 01:33:14
redos
redos
ROS-20240408-08
2024-04-08 00:00:00
oraclelinux
oraclelinux
tigervnc security update
2024-01-04 00:00:00
xorg-x11-server security update
2024-01-02 00:00:00
tigervnc security update
2024-01-02 00:00:00
debian
debian
[SECURITY] [DSA 5576-1] xorg-server security update
2023-12-13 07:02:47
[SECURITY] [DLA 3686-1] xorg-server security update
2023-12-13 08:05:16
[SECURITY] [DSA 5576-2] xorg-server security update
2023-12-17 13:03:35
ubuntu
ubuntu
X.Org X Server vulnerabilities
2023-12-13 00:00:00
X.Org X Server vulnerabilities
2023-12-13 00:00:00
freebsd
freebsd
xorg-server -- Multiple vulnerabilities
2023-12-13 00:00:00
amazon
amazon
Important: xorg-x11-server
2024-01-03 21:04:00
Important: xorg-x11-server
2024-01-03 22:37:00
slackware
slackware
[slackware-security] xorg-server
2023-12-13 22:08:24
rosalinux
rosalinux
Advisory ROSA-SA-2024-2324
2024-01-23 12:14:57
centos
centos
tigervnc security update
2024-01-12 19:01:36
xorg security update
2024-01-12 19:00:25
mageia
mageia
Updated x11-server and tigervnc packages fix security vulnerabilities
2024-01-15 01:23:43
alpinelinux
alpinelinux
zdi
zdi
cvelist
cvelist
cbl_mariner
cbl_mariner
cve
cve
CVE-2023-5367
2023-10-25 20:15:18
CVE-2023-6478
2023-12-13 07:15:31
ubuntucve
ubuntucve
CVE-2023-5367
2023-10-25 00:00:00
CVE-2023-6377
2023-12-13 00:00:00
prion
prion
Heap overflow
2023-10-25 20:15:00
nvd
nvd
veracode
veracode
Out-of-Bounds Write
2023-10-28 00:48:10
Remote Code Execution
2023-12-15 07:04:27
debiancve
debiancve
CVE-2023-5367
2023-10-25 20:15:18
redhatcve
redhatcve
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.3 High
AI Score
Confidence
Low
0.273 Low
EPSS
Percentile
96.8%
Related for ELSA-2024-0010