ALSA-2026:29844

[ALSA-2026:29844] Important: tigervnc security update

Type:

security

Severity:

important

Release date:

2026-06-29

Description:

Virtual Network Computing (VNC) is a remote display system which allows users to view a computing desktop environment not only on the machine where it is running, but from anywhere on the Internet and from a wide variety of machine architectures. TigerVNC is a suite of VNC servers and clients.  

Security Fix(es):  

  * xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: stack buffer overflow in font alias resolution due to libXfont2 name length mismatch (CVE-2026-50256)
  * xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: use-after-free in miSyncDestroyFence() (CVE-2026-50257)
  * xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: stack buffer overflow in XKB key types due to unchecked shift levels (CVE-2026-50258)
  * xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: stack buffer overflow in XKB SetMap request via mapWidths indexing (CVE-2026-50259)
  * xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: use-after-free in FreeCounter() (CVE-2026-50260)
  * xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: use-after-free in SyncChangeCounter() (CVE-2026-50261)
  * xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: out-of-bounds read/write in GLX ChangeDrawableAttributes (CVE-2026-50262)
  * xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: use-after-free information disclosure in CreateSaverWindow() (CVE-2026-50263)
  * xorg-x11-server: xorg-x11-server-Xwayland: xorg-x11-server: out-of-bounds heap write in DRI2 DRIGetBuffers/DRIGetBuffersWithFormat (CVE-2026-50264)


For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	tigervnc-1.15.0-7.el9_8.2.aarch64.rpm	be7e49862561b3367e86221e157d79f17c580601e82991876c0a0e45adf036c2
aarch64	tigervnc-server-minimal-1.15.0-7.el9_8.2.aarch64.rpm	c8b8653b0aafca556bef3ebc7d7e0f81517b783d5e8aeeef96e01ac1925d2798
aarch64	tigervnc-server-1.15.0-7.el9_8.2.aarch64.rpm	d0aee76084eb188e5a2380bf1a3efc185a7ebd51911212fd1f13f20189194beb
aarch64	tigervnc-server-module-1.15.0-7.el9_8.2.aarch64.rpm	db3f77dba2d3c0295d47eff442a6eef67d42d03bd1ed0819c31fab635c8ad7a3
noarch	tigervnc-license-1.15.0-7.el9_8.2.noarch.rpm	6dc9356de382439479290e0fe573714ed7c54fac9cc3c5b4c1a5688b6a08d823
noarch	tigervnc-icons-1.15.0-7.el9_8.2.noarch.rpm	bd5342a78bbda689ce234b9d474bec09298793ed5d18dba21fe3a3363d4ce456
noarch	tigervnc-selinux-1.15.0-7.el9_8.2.noarch.rpm	c437c1ef0d78e64e2813217d6e58cf407792f913bb9adcb9f584f4b8bffe62f4
ppc64le	tigervnc-server-minimal-1.15.0-7.el9_8.2.ppc64le.rpm	511dc28feeb61e4ad1c5748d0700658ddacb01870a9732b45b2bccee9330fc72
ppc64le	tigervnc-server-1.15.0-7.el9_8.2.ppc64le.rpm	a830feb88a7510040e42c82172e55058f42bff2cfe99ae08f17a5bb555e6719e
ppc64le	tigervnc-server-module-1.15.0-7.el9_8.2.ppc64le.rpm	b30163d012b9fbf558bb22fcfb837e817c28a6af417bbf557ec1bd353db19fc5
ppc64le	tigervnc-1.15.0-7.el9_8.2.ppc64le.rpm	e4923922b6280585932386799582777db5d28cc17c062c5dbaf2f8738f64404e
s390x	tigervnc-server-minimal-1.15.0-7.el9_8.2.s390x.rpm	82f51e57e8cf52a07e209778507d0e515711fd562660c726cf9152fa21ccdffa
s390x	tigervnc-server-module-1.15.0-7.el9_8.2.s390x.rpm	969174dab6928099773e05aa4304089d6b7b2b22537bda86458f9724798baf3f
s390x	tigervnc-1.15.0-7.el9_8.2.s390x.rpm	c0682023fdb91ca7e700b47ae82c0cfcf89658ca57d5e79ea466226987fe7b5e
s390x	tigervnc-server-1.15.0-7.el9_8.2.s390x.rpm	ded12a5913a710d5d03127218b8a9e53261fcc2e7d3de028fe3a2ce319ec8e22
x86_64	tigervnc-server-1.15.0-7.el9_8.2.x86_64.rpm	249e15c8344bbc385c2e2759ab423df0e4b2f3863c93267297fda6ffade46c24
x86_64	tigervnc-server-minimal-1.15.0-7.el9_8.2.x86_64.rpm	31eafafa782490616d35da3268b58dabbe5b776c56b2bb30c67cc6cd19ac7488
x86_64	tigervnc-1.15.0-7.el9_8.2.x86_64.rpm	5e242cb4d5337d9025c6790f93578ffe7323b6f66ab01a89f58fc5d088086a5c
x86_64	tigervnc-server-module-1.15.0-7.el9_8.2.x86_64.rpm	6c2de50a8cdb0bf83e9ecbb017ce450e9d122dc08e96d4f9c47084c03d29c0b4

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.