ALSA-2025:19489

[ALSA-2025:19489] Important: tigervnc security update

Type:

security

Severity:

important

Release date:

2025-11-07

Description:

Virtual Network Computing (VNC) is a remote display system which allows users to view a computing desktop environment not only on the machine where it is running, but from anywhere on the Internet and from a wide variety of machine architectures. TigerVNC is a suite of VNC servers and clients.  

Security Fix(es):  

  * xorg: xmayland: Use-after-free in XPresentNotify structure creation (CVE-2025-62229)
  * xorg: xwayland: Use-after-free in Xkb client resource removal (CVE-2025-62230)
  * xorg: xmayland: Value overflow in XkbSetCompatMap() (CVE-2025-62231)


For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	tigervnc-1.14.1-9.el9_6.aarch64.rpm	2796f85636a4f056d7481609f892a84f6f3abd390ec606ada363d73276f5ed48
aarch64	tigervnc-server-module-1.14.1-9.el9_6.aarch64.rpm	ab71c7344c91e2b69334ba24269555130ede77676e68ac03c12db36477f27cea
aarch64	tigervnc-server-minimal-1.14.1-9.el9_6.aarch64.rpm	b1dc23faadcfe21864d5dbf847fa96e65f4c43ab030c6f70f36cbea3643bb039
aarch64	tigervnc-server-1.14.1-9.el9_6.aarch64.rpm	c71006d2b5de45d8be38d5a393a888c4fe910b6be0609cae27c236e75b173634
noarch	tigervnc-icons-1.14.1-9.el9_6.noarch.rpm	a48af40b7b945104b762b3bee9b92d035d55472d983c8a5618b5e9955010c260
noarch	tigervnc-license-1.14.1-9.el9_6.noarch.rpm	b0a4e8d4edae26e11f55b71f6894b5ac9fe20e6873ff20ca43ffe155a724cc41
noarch	tigervnc-selinux-1.14.1-9.el9_6.noarch.rpm	cb396b6637c108f1a93ab3c4b6d5f8268f6ae61a68b5cca03d929802b332076f
ppc64le	tigervnc-server-minimal-1.14.1-9.el9_6.ppc64le.rpm	3f885b166b3392a584f53ff35a2eaeb0f16a7a54b678a45aaf4aec5432915946
ppc64le	tigervnc-server-module-1.14.1-9.el9_6.ppc64le.rpm	734c7bc2efd2c9db0284f3e1dc5b03901abd7b0a2f1a224df77bc809bb5efbce
ppc64le	tigervnc-server-1.14.1-9.el9_6.ppc64le.rpm	78a3b5a376d9237e4004879f200f16a30d4cb30393f4df856ad43a6932d8be56
ppc64le	tigervnc-1.14.1-9.el9_6.ppc64le.rpm	90b54283dfdeb32b6c96c6606b5c07ee798e55810ac7e46e2a4ed1a69884d0e4
s390x	tigervnc-server-1.14.1-9.el9_6.s390x.rpm	18a120ab00fe561171300c13f4faf516471d7a8d556a4724854a3e2a2c0aa06b
s390x	tigervnc-server-module-1.14.1-9.el9_6.s390x.rpm	b28cabf7cf6bc0ba391abaf9ff343bd3dac071bdb9638d8f2c0f22c410b52ccf
s390x	tigervnc-1.14.1-9.el9_6.s390x.rpm	faa0b390cca71d478e6f035007080e40980b287b44f316438015e2e4942cc4e5
s390x	tigervnc-server-minimal-1.14.1-9.el9_6.s390x.rpm	fbc74fc0ea608407ef85ec770de752c15efe09a563f421d40c6d34acff7acac1
x86_64	tigervnc-server-module-1.14.1-9.el9_6.x86_64.rpm	0ef86e3e46c93451fad1955d252bdeafb42bb73f3e7a30d2bc4cf5c75c36a6a4
x86_64	tigervnc-server-minimal-1.14.1-9.el9_6.x86_64.rpm	48511e430b24fbf3ac9d2994188c3124e15624d2ada252271d85813824ff9521
x86_64	tigervnc-server-1.14.1-9.el9_6.x86_64.rpm	5f06cd13a0ca6a57a79e1b3b8ad47967cbfb29e32dbf826234e5b2d0ce7a6747
x86_64	tigervnc-1.14.1-9.el9_6.x86_64.rpm	efd49dd882c5bf9f8fb202e3ea706cd05687b6688bd97ab0a8683002408446fe

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.