[ol8_appstream] tigervnc-license-1.13.1-15.el8_10.noarch

Name:	tigervnc-license
Version:	1.13.1
Release:	15.el8_10
Architecture:	noarch
Group:	Unspecified
Size:	18000
License:	GPLv2+
RPM:	tigervnc-license-1.13.1-15.el8_10.noarch.rpm
Source RPM:	tigervnc-1.13.1-15.el8_10.src.rpm
Build Date:	Mon Mar 10 2025
Build Host:	build-ol8-x86_64.oracle.com
Vendor:	Oracle America
URL:	http://www.tigervnc.com
Summary:	License of TigerVNC suite
Description:	This package contains license of the TigerVNC suite

Changelog (Show File list) (Show related packages)

Wed Feb 26 2025 Jan Grulich <jgrulich@redhat.com> - 1.13.1-15

- Fix CVE-2025-26594 xorg-x11-server Use-after-free of the root cursor
  Resolves: RHEL-79397
- Fix CVE-2025-26595 xorg-x11-server Buffer overflow in XkbVModMaskText()
  Resolves: RHEL-79401
- Fix CVE-2025-26596 xorg-x11-server Heap overflow in XkbWriteKeySyms()
  Resolves: RHEL-79386
- Fix CVE-2025-26597 xorg-x11-server Buffer overflow in XkbChangeTypesOfKey()
  Resolves: RHEL-79380
- Fix CVE-2025-26598 xorg-x11-server Out-of-bounds write in CreatePointerBarrierClient()
  Resolves: RHEL-79369
- Fix CVE-2025-26599 xorg-x11-server Use of uninitialized pointer in compRedirectWindow()
  Resolves: RHEL-79364
- Fix CVE-2025-26600 xorg-x11-server Use-after-free in PlayReleasedEvents()
  Resolves: RHEL-79360
- Fix CVE-2025-26601 xorg-x11-server Use-after-free in SyncInitTrigger()
  Resolves: RHEL-79348

Thu Oct 31 2024 Jan Grulich <jgrulich@redhat.com> - 1.13.1-14

- Fix CVE-2024-9632: xorg-x11-server: heap-based buffer overflow privilege escalation vulnerability
  Resolves: RHEL-61999

Mon Aug 05 2024 Jan Grulich <jgrulich@redhat.com> - 1.13.1-13

- vncsession: use /bin/sh if the user shell is not set
  Resolves: RHEL-52827

Fri Jul 12 2024 Jan Grulich <jgrulich@redhat.com> - 1.13.1-12

- Fix FTBS: drop already applied Xorg patches
  Resolves: RHEL-46696

Tue May 28 2024 Jan Grulich <jgrulich@redhat.com> - 1.13.1-11

- vncconfig: add option to force view-only remote client connections
  Resolves: RHEL-11908

Mon Apr 15 2024 Jan Grulich <jgrulich@redhat.com> - 1.13.1-10

- Drop patches that are already part of xorg-x11-server
  Resolves: RHEL-30755
  Resolves: RHEL-30767
  Resolves: RHEL-30761

Thu Apr 04 2024 Jan Grulich <jgrulich@redhat.com> - 1.13.1-9

- Fix CVE-2024-31080 tigervnc: xorg-x11-server: Heap buffer overread/data leakage in ProcXIGetSelectedEvents
  Resolves: RHEL-30755
- Fix CVE-2024-31083 tigervnc: xorg-x11-server: User-after-free in ProcRenderAddGlyphs
  Resolves: RHEL-30767
- Fix CVE-2024-31081 tigervnc: xorg-x11-server: Heap buffer overread/data leakage in ProcXIPassiveGrabDevice
  Resolves: RHEL-30761

Wed Feb 07 2024 Jan Grulich <jgrulich@redhat.com> - 1.13.1-8

- Fix copy/paste error in the DeviceStateNotify
  Resolves: RHEL-20530

Mon Jan 22 2024 Jan Grulich <jgrulich@redhat.com> - 1.13.1-7

- Fix CVE-2024-21886 tigervnc: xorg-x11-server: heap buffer overflow in DisableDevice
  Resolves: RHEL-20388
- Fix CVE-2024-21885 tigervnc: xorg-x11-server: heap buffer overflow in XISendDeviceHierarchyEvent
  Resolves: RHEL-20382
- Fix CVE-2024-0229 tigervnc: xorg-x11-server: reattaching to different master device may lead to out-of-bounds memory access
  Resolves: RHEL-20530
- Fix CVE-2023-6816 tigervnc: xorg-x11-server: Heap buffer overflow in DeviceFocusEvent and ProcXIQueryPointer
  Resolves: RHEL-21214

Mon Jan 08 2024 Jan Grulich <jgrulich@redhat.com> - 1.13.1-6

- Use dup() to get available file descriptor when using -inetd option
  Resolves: RHEL-21000