ALSA-2025:20958

[ALSA-2025:20958] Important: tigervnc security update

Type:

security

Severity:

important

Release date:

2025-12-01

Description:

Virtual Network Computing (VNC) is a remote display system which allows users to view a computing desktop environment not only on the machine where it is running, but from anywhere on the Internet and from a wide variety of machine architectures. TigerVNC is a suite of VNC servers and clients.  

Security Fix(es):  

  * xorg: xmayland: Use-after-free in XPresentNotify structure creation (CVE-2025-62229)
  * xorg: xwayland: Use-after-free in Xkb client resource removal (CVE-2025-62230)
  * xorg: xmayland: Value overflow in XkbSetCompatMap() (CVE-2025-62231)


For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	tigervnc-server-module-1.15.0-6.el9_7.aarch64.rpm	0820aab6b29c77d0cf58ce178019acccb6dc13c37e358495b1e718a9b76e44b7
aarch64	tigervnc-server-minimal-1.15.0-6.el9_7.aarch64.rpm	2689c65a95b2d836760acba086298bed0169e6160f53e650277f5272148e8aa6
aarch64	tigervnc-1.15.0-6.el9_7.aarch64.rpm	55ecf9adbe00764e60cbb29badc88e61f09b290482905a082014a463155cf549
aarch64	tigervnc-server-1.15.0-6.el9_7.aarch64.rpm	b8a8499aa761dabef187a2ee6c3a6b29e876866426b849729d874cb7805fdfea
noarch	tigervnc-icons-1.15.0-6.el9_7.noarch.rpm	333e5482a205d8828f969fd977ba876027c9287c32583387abe4e1afe2e10988
noarch	tigervnc-license-1.15.0-6.el9_7.noarch.rpm	6a077ef5a28e02370391b2ec36e908423de2be14111b20041afd23a52841bb48
noarch	tigervnc-selinux-1.15.0-6.el9_7.noarch.rpm	c52e4f99f0d4b4fb6120119a5e00ddca550bcdd994420eff7b665b995582fa44
ppc64le	tigervnc-server-minimal-1.15.0-6.el9_7.ppc64le.rpm	4626b92bec9801f5bab6c45731ac4e693f0052e4c4f68949b8c714e0f7ba11b7
ppc64le	tigervnc-server-1.15.0-6.el9_7.ppc64le.rpm	48c5ee7cf7553edc42b3635246154d6a31f2f4d30dbc031fb21cf6a0580b9937
ppc64le	tigervnc-server-module-1.15.0-6.el9_7.ppc64le.rpm	98dc65caae100a8ed5c7ac7c9b8c0daed324da7f8d4fe92ff3cdbb54d5ac6113
ppc64le	tigervnc-1.15.0-6.el9_7.ppc64le.rpm	c23c995962851d0301c2c8b38636af7969bd4c84a89eba30ddb6a4ff3c70095c
s390x	tigervnc-server-module-1.15.0-6.el9_7.s390x.rpm	07061fa108749a2ec5b712b7cbd1e093096928b390abe0d9509832ec286800bc
s390x	tigervnc-1.15.0-6.el9_7.s390x.rpm	0d9c2924fca8ea5bc4337c2c0a9c83bbfbca28cfc29b6c1bab7473260d8995ed
s390x	tigervnc-server-1.15.0-6.el9_7.s390x.rpm	2f47dc395b95cb60a7fc375bc52a58fd0c0aa97c37829864c5e76013f08db02e
s390x	tigervnc-server-minimal-1.15.0-6.el9_7.s390x.rpm	d4276b47cec7f01bb8ac59a4e66bc5d59c30d94d4ecc3941706f2342af05172f
x86_64	tigervnc-server-minimal-1.15.0-6.el9_7.x86_64.rpm	6a531fa351db049d6709086bdae183c48dab4df354320f31d9ee21e293b8df77
x86_64	tigervnc-1.15.0-6.el9_7.x86_64.rpm	7d099dc1255d4b62f1f2da1a134b3b5512bfcfa7490f86b6936b62eef1541cae
x86_64	tigervnc-server-1.15.0-6.el9_7.x86_64.rpm	81122c08d264a56f59485fb75eaa7cf5da25dbacdc343d982939aec6cd95f5bd
x86_64	tigervnc-server-module-1.15.0-6.el9_7.x86_64.rpm	94fb920e945f8d7d6c0167bba81192b5dbe6393601d5385a051545f50421616c

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.