Lucene search
OracleLinuxELSA-2024-2616HistoryMay 07, 2024 - 12:00 a.m.
tigervnc security update
2024-05-0700:00:00
linux.oracle.com
5
tigervnc
security update
cve-2024-31083
cve-2024-31080
rhel-30985
rhel-31015
heap buffer overread
user-after-free
data leakage
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.4 High
AI Score
Confidence
High
0.0005 Low
EPSS
Percentile
17.2%
[1.13.1-8.3]
- Rebuild (z-stream target)
Resolves: RHEL-30985
Resolves: RHEL-31015
[1.13.1-8.2] - Fix crash caused by fix for CVE-2024-31083
Resolves: RHEL-30985
[1.13.1-8.1] - Fix CVE-2024-31080 tigervnc: xorg-x11-server: Heap buffer overread/data leakage in ProcXIGetSelectedEvents
Resolves: RHEL-31015 - Fix CVE-2024-31083 tigervnc: xorg-x11-server: User-after-free in ProcRenderAddGlyphs
Resolves: RHEL-30985
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 9 | src | tigervnc | < 1.13.1-8.el9_4.3 | tigervnc-1.13.1-8.el9_4.3.src.rpm |
| oracle linux | 9 | aarch64 | tigervnc | < 1.13.1-8.el9_4.3 | tigervnc-1.13.1-8.el9_4.3.aarch64.rpm |
| oracle linux | 9 | noarch | tigervnc-icons | < 1.13.1-8.el9_4.3 | tigervnc-icons-1.13.1-8.el9_4.3.noarch.rpm |
| oracle linux | 9 | noarch | tigervnc-license | < 1.13.1-8.el9_4.3 | tigervnc-license-1.13.1-8.el9_4.3.noarch.rpm |
| oracle linux | 9 | noarch | tigervnc-selinux | < 1.13.1-8.el9_4.3 | tigervnc-selinux-1.13.1-8.el9_4.3.noarch.rpm |
| oracle linux | 9 | aarch64 | tigervnc-server | < 1.13.1-8.el9_4.3 | tigervnc-server-1.13.1-8.el9_4.3.aarch64.rpm |
| oracle linux | 9 | aarch64 | tigervnc-server-minimal | < 1.13.1-8.el9_4.3 | tigervnc-server-minimal-1.13.1-8.el9_4.3.aarch64.rpm |
| oracle linux | 9 | aarch64 | tigervnc-server-module | < 1.13.1-8.el9_4.3 | tigervnc-server-module-1.13.1-8.el9_4.3.aarch64.rpm |
| oracle linux | 9 | src | tigervnc | < 1.13.1-8.el9_4.3 | tigervnc-1.13.1-8.el9_4.3.src.rpm |
| oracle linux | 9 | x86_64 | tigervnc | < 1.13.1-8.el9_4.3 | tigervnc-1.13.1-8.el9_4.3.x86_64.rpm |
Related
nessus
nessus
Fedora 39 : xorg-x11-server-Xwayland (2024-5af98298c7)
2024-04-24 00:00:00
RHEL 9 : tigervnc (RHSA-2024:2040)
2024-04-24 00:00:00
RHEL 8 : tigervnc (RHSA-2024:2042)
2024-04-24 00:00:00
osv
osv
Important: tigervnc security update
2024-05-06 13:04:21
Moderate: xorg-x11-server security update
2024-05-22 00:00:00
Important: tigervnc security update
2024-05-22 00:00:00
almalinux
almalinux
Moderate: xorg-x11-server security update
2024-05-22 00:00:00
Important: xorg-x11-server-Xwayland security update
2024-05-23 00:00:00
Important: tigervnc security update
2024-05-22 00:00:00
redhat
redhat
(RHSA-2024:3343) Important: xorg-x11-server-Xwayland security update
2024-05-23 14:21:39
(RHSA-2024:2038) Important: tigervnc security update
2024-04-24 14:54:40
(RHSA-2024:3261) Important: tigervnc security update
2024-05-22 10:41:22
oraclelinux
oraclelinux
tigervnc security update
2024-05-29 00:00:00
tigervnc security update
2024-04-24 00:00:00
tigervnc security update
2024-04-29 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2024-0121)
2024-04-12 00:00:00
Debian: Security Advisory (DLA-3787-1)
2024-04-15 00:00:00
Debian: Security Advisory (DSA-5657-1)
2024-04-15 00:00:00
debian
debian
[SECURITY] [DSA 5657-1] xorg-server security update
2024-04-12 20:32:08
[SECURITY] [DLA 3787-1] xorg-server security update
2024-04-15 13:22:45
freebsd
freebsd
xorg server -- Multiple vulnerabilities
2024-04-03 00:00:00
amazon
amazon
Important: xorg-x11-server
2024-04-11 01:07:00
Important: tigervnc
2024-04-11 01:07:00
Important: tigervnc
2024-04-11 01:43:00
rocky
rocky
tigervnc security update
2024-06-14 13:59:30
tigervnc security update
2024-05-06 13:04:21
tigervnc security update
2024-05-10 14:32:42
fedora
fedora
[SECURITY] Fedora 38 Update: xorg-x11-server-Xwayland-22.1.9-7.fc38
2024-04-24 01:36:56
[SECURITY] Fedora 40 Update: xorg-x11-server-Xwayland-23.2.6-1.fc40
2024-04-19 21:43:34
[SECURITY] Fedora 39 Update: xorg-x11-server-Xwayland-23.2.6-1.fc39
2024-04-24 01:18:17
mageia
mageia
slackware
slackware
[slackware-security] xorg-server
2024-04-03 22:25:44
[slackware-security] tigervnc
2024-04-05 20:14:40
ubuntu
ubuntu
X.Org X Server vulnerabilities
2024-04-04 00:00:00
X.Org X Server regression
2024-04-09 00:00:00
redos
redos
ROS-20240507-07
2024-05-07 00:00:00
redhatcve
redhatcve
veracode
veracode
Buffer Over-read
2024-04-11 02:44:05
Buffer Over-Read
2024-04-11 02:44:06
Use After Free
2024-04-11 02:44:08
nvd
nvd
ubuntucve
ubuntucve
cgr
cgr
CVE-2024-31080 vulnerabilities
2024-05-19 03:07:16
CVE-2024-31081 vulnerabilities
2024-05-19 03:07:16
CVE-2024-31083 vulnerabilities
2024-05-19 03:07:16
alpinelinux
alpinelinux
cvelist
cvelist
CVE-2024-31081 Xorg-x11-server: heap buffer overread/data leakage in procxipassivegrabdevice
2024-04-04 13:48:12
CVE-2024-31080 Xorg-x11-server: heap buffer overread/data leakage in procxigetselectedevents
2024-04-04 13:47:33
CVE-2024-31083 Xorg-x11-server: use-after-free in procrenderaddglyphs
2024-04-05 12:04:49
cve
cve
debiancve
debiancve
wolfi
wolfi
CVE-2024-31080 vulnerabilities
2024-07-03 09:08:38
CVE-2024-31081 vulnerabilities
2024-07-03 09:08:38
CVE-2024-31083 vulnerabilities
2024-07-03 09:08:38
zdi
zdi
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.4 High
AI Score
Confidence
High
0.0005 Low
EPSS
Percentile
17.2%
Related for ELSA-2024-2616