Red Hat Product Errata RHSA-2025:2865 - Security Advisory
Issued:
2025-03-17
Updated:
2025-03-17

RHSA-2025:2865 - Security Advisory

Synopsis

Important: tigervnc security update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for tigervnc is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Virtual Network Computing (VNC) is a remote display system which allows users to view a computing desktop environment not only on the machine where it is running, but from anywhere on the Internet and from a wide variety of machine architectures. TigerVNC is a suite of VNC servers and clients.

Security Fix(es):

  • X.Org: Xwayland: Use-after-free of the root cursor (CVE-2025-26594)
  • xorg: xwayland: Use-after-free in SyncInitTrigger() (CVE-2025-26601)
  • xorg: xwayland: Use-after-free in PlayReleasedEvents() (CVE-2025-26600)
  • xorg: xwayland: Use of uninitialized pointer in compRedirectWindow() (CVE-2025-26599)
  • xorg: xwayland: Out-of-bounds write in CreatePointerBarrierClient() (CVE-2025-26598)
  • xorg: xwayland: Buffer overflow in XkbChangeTypesOfKey() (CVE-2025-26597)
  • xorg: xwayland: Heap overflow in XkbWriteKeySyms() (CVE-2025-26596)
  • Xorg: xwayland: Buffer overflow in XkbVModMaskText() (CVE-2025-26595)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.4 x86_64
  • Red Hat Enterprise Linux Server - AUS 8.4 x86_64
  • Red Hat Enterprise Linux Server - TUS 8.4 x86_64
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.4 ppc64le
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.4 x86_64

Fixes

  • BZ - 2345248 - CVE-2025-26594 X.Org: Xwayland: Use-after-free of the root cursor
  • BZ - 2345251 - CVE-2025-26601 xorg: xwayland: Use-after-free in SyncInitTrigger()
  • BZ - 2345252 - CVE-2025-26600 xorg: xwayland: Use-after-free in PlayReleasedEvents()
  • BZ - 2345253 - CVE-2025-26599 xorg: xwayland: Use of uninitialized pointer in compRedirectWindow()
  • BZ - 2345254 - CVE-2025-26598 xorg: xwayland: Out-of-bounds write in CreatePointerBarrierClient()
  • BZ - 2345255 - CVE-2025-26597 xorg: xwayland: Buffer overflow in XkbChangeTypesOfKey()
  • BZ - 2345256 - CVE-2025-26596 xorg: xwayland: Heap overflow in XkbWriteKeySyms()
  • BZ - 2345257 - CVE-2025-26595 Xorg: xwayland: Buffer overflow in XkbVModMaskText()

Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.4

SRPM
tigervnc-1.11.0-8.el8_4.12.src.rpm SHA-256: 4c7f5edc66ef34dfc054c3bd3bc89dca8b1f1a3b9b64355b0fe399dc05483d48
x86_64
tigervnc-1.11.0-8.el8_4.12.x86_64.rpm SHA-256: a05a7572bcd159f41eee90c773cd124d348875b5d44168c2b8caa38bf49b40d8
tigervnc-debuginfo-1.11.0-8.el8_4.12.x86_64.rpm SHA-256: f7886dc90e53fae69fa17a7c669f3eab454ce2c3ab07c2ae35e2659865f0c2f5
tigervnc-debugsource-1.11.0-8.el8_4.12.x86_64.rpm SHA-256: 372925c0ac7665dec2f5751fa98e4b9f65747cc2069e4b681ecd2d00dd7028cf
tigervnc-icons-1.11.0-8.el8_4.12.noarch.rpm SHA-256: f6f39b53e6fcca6e77c143c164952bbfff226089ce02dd91d839c6307ab93591
tigervnc-license-1.11.0-8.el8_4.12.noarch.rpm SHA-256: b17567a2e54571a9d305f6bc48b62b52b7de836a15b68fcdfdf5911a02320e6f
tigervnc-selinux-1.11.0-8.el8_4.12.noarch.rpm SHA-256: 0060fc204bb9d093608e693bbcf6fbcab749668b7e9d20f6f4f918384d7441c7
tigervnc-server-1.11.0-8.el8_4.12.x86_64.rpm SHA-256: 9fa06c4d7b27c1bd0776726453c9d2fb82c1d1871f44170aaadcc0ee945da217
tigervnc-server-debuginfo-1.11.0-8.el8_4.12.x86_64.rpm SHA-256: 4cf1ae269e51bd6ff22c94f50011049980cde3dba1034eb9597f547421c9b7e6
tigervnc-server-minimal-1.11.0-8.el8_4.12.x86_64.rpm SHA-256: 39a2cb67f79dedfad019b2883a89ae3d465636f4337de7e85c51869775703f84
tigervnc-server-minimal-debuginfo-1.11.0-8.el8_4.12.x86_64.rpm SHA-256: dcde520ed7e50b6e77bd6a1156ab64bffdf41d9d99c92993d1065e12db7b068b
tigervnc-server-module-1.11.0-8.el8_4.12.x86_64.rpm SHA-256: 8d60d9f95fed34d583ee9a17ffe55e37cbe570a7acec018a613210992fa03857
tigervnc-server-module-debuginfo-1.11.0-8.el8_4.12.x86_64.rpm SHA-256: a2b2367dfebc08eed26f16b761627c767038a5d7395210b3a550fc7dcc0ec36a

Red Hat Enterprise Linux Server - AUS 8.4

SRPM
tigervnc-1.11.0-8.el8_4.12.src.rpm SHA-256: 4c7f5edc66ef34dfc054c3bd3bc89dca8b1f1a3b9b64355b0fe399dc05483d48
x86_64
tigervnc-1.11.0-8.el8_4.12.x86_64.rpm SHA-256: a05a7572bcd159f41eee90c773cd124d348875b5d44168c2b8caa38bf49b40d8
tigervnc-debuginfo-1.11.0-8.el8_4.12.x86_64.rpm SHA-256: f7886dc90e53fae69fa17a7c669f3eab454ce2c3ab07c2ae35e2659865f0c2f5
tigervnc-debugsource-1.11.0-8.el8_4.12.x86_64.rpm SHA-256: 372925c0ac7665dec2f5751fa98e4b9f65747cc2069e4b681ecd2d00dd7028cf
tigervnc-icons-1.11.0-8.el8_4.12.noarch.rpm SHA-256: f6f39b53e6fcca6e77c143c164952bbfff226089ce02dd91d839c6307ab93591
tigervnc-license-1.11.0-8.el8_4.12.noarch.rpm SHA-256: b17567a2e54571a9d305f6bc48b62b52b7de836a15b68fcdfdf5911a02320e6f
tigervnc-selinux-1.11.0-8.el8_4.12.noarch.rpm SHA-256: 0060fc204bb9d093608e693bbcf6fbcab749668b7e9d20f6f4f918384d7441c7
tigervnc-server-1.11.0-8.el8_4.12.x86_64.rpm SHA-256: 9fa06c4d7b27c1bd0776726453c9d2fb82c1d1871f44170aaadcc0ee945da217
tigervnc-server-debuginfo-1.11.0-8.el8_4.12.x86_64.rpm SHA-256: 4cf1ae269e51bd6ff22c94f50011049980cde3dba1034eb9597f547421c9b7e6
tigervnc-server-minimal-1.11.0-8.el8_4.12.x86_64.rpm SHA-256: 39a2cb67f79dedfad019b2883a89ae3d465636f4337de7e85c51869775703f84
tigervnc-server-minimal-debuginfo-1.11.0-8.el8_4.12.x86_64.rpm SHA-256: dcde520ed7e50b6e77bd6a1156ab64bffdf41d9d99c92993d1065e12db7b068b
tigervnc-server-module-1.11.0-8.el8_4.12.x86_64.rpm SHA-256: 8d60d9f95fed34d583ee9a17ffe55e37cbe570a7acec018a613210992fa03857
tigervnc-server-module-debuginfo-1.11.0-8.el8_4.12.x86_64.rpm SHA-256: a2b2367dfebc08eed26f16b761627c767038a5d7395210b3a550fc7dcc0ec36a

Red Hat Enterprise Linux Server - TUS 8.4

SRPM
tigervnc-1.11.0-8.el8_4.12.src.rpm SHA-256: 4c7f5edc66ef34dfc054c3bd3bc89dca8b1f1a3b9b64355b0fe399dc05483d48
x86_64
tigervnc-1.11.0-8.el8_4.12.x86_64.rpm SHA-256: a05a7572bcd159f41eee90c773cd124d348875b5d44168c2b8caa38bf49b40d8
tigervnc-debuginfo-1.11.0-8.el8_4.12.x86_64.rpm SHA-256: f7886dc90e53fae69fa17a7c669f3eab454ce2c3ab07c2ae35e2659865f0c2f5
tigervnc-debugsource-1.11.0-8.el8_4.12.x86_64.rpm SHA-256: 372925c0ac7665dec2f5751fa98e4b9f65747cc2069e4b681ecd2d00dd7028cf
tigervnc-icons-1.11.0-8.el8_4.12.noarch.rpm SHA-256: f6f39b53e6fcca6e77c143c164952bbfff226089ce02dd91d839c6307ab93591
tigervnc-license-1.11.0-8.el8_4.12.noarch.rpm SHA-256: b17567a2e54571a9d305f6bc48b62b52b7de836a15b68fcdfdf5911a02320e6f
tigervnc-selinux-1.11.0-8.el8_4.12.noarch.rpm SHA-256: 0060fc204bb9d093608e693bbcf6fbcab749668b7e9d20f6f4f918384d7441c7
tigervnc-server-1.11.0-8.el8_4.12.x86_64.rpm SHA-256: 9fa06c4d7b27c1bd0776726453c9d2fb82c1d1871f44170aaadcc0ee945da217
tigervnc-server-debuginfo-1.11.0-8.el8_4.12.x86_64.rpm SHA-256: 4cf1ae269e51bd6ff22c94f50011049980cde3dba1034eb9597f547421c9b7e6
tigervnc-server-minimal-1.11.0-8.el8_4.12.x86_64.rpm SHA-256: 39a2cb67f79dedfad019b2883a89ae3d465636f4337de7e85c51869775703f84
tigervnc-server-minimal-debuginfo-1.11.0-8.el8_4.12.x86_64.rpm SHA-256: dcde520ed7e50b6e77bd6a1156ab64bffdf41d9d99c92993d1065e12db7b068b
tigervnc-server-module-1.11.0-8.el8_4.12.x86_64.rpm SHA-256: 8d60d9f95fed34d583ee9a17ffe55e37cbe570a7acec018a613210992fa03857
tigervnc-server-module-debuginfo-1.11.0-8.el8_4.12.x86_64.rpm SHA-256: a2b2367dfebc08eed26f16b761627c767038a5d7395210b3a550fc7dcc0ec36a

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.4

SRPM
tigervnc-1.11.0-8.el8_4.12.src.rpm SHA-256: 4c7f5edc66ef34dfc054c3bd3bc89dca8b1f1a3b9b64355b0fe399dc05483d48
ppc64le
tigervnc-1.11.0-8.el8_4.12.ppc64le.rpm SHA-256: 29c4cc1dd24f88e0041d704c07cf48f62c89cb8913975dadca1d8b6d50de3164
tigervnc-debuginfo-1.11.0-8.el8_4.12.ppc64le.rpm SHA-256: 18b86ca1eb11fae650de03b944b6837190543fd602edf5a94cce373d9597ef06
tigervnc-debugsource-1.11.0-8.el8_4.12.ppc64le.rpm SHA-256: c833fc026bab1fe9a381bb885d05377c56b5f6b98fcbafe93e78dbc02caa419d
tigervnc-icons-1.11.0-8.el8_4.12.noarch.rpm SHA-256: f6f39b53e6fcca6e77c143c164952bbfff226089ce02dd91d839c6307ab93591
tigervnc-license-1.11.0-8.el8_4.12.noarch.rpm SHA-256: b17567a2e54571a9d305f6bc48b62b52b7de836a15b68fcdfdf5911a02320e6f
tigervnc-selinux-1.11.0-8.el8_4.12.noarch.rpm SHA-256: 0060fc204bb9d093608e693bbcf6fbcab749668b7e9d20f6f4f918384d7441c7
tigervnc-server-1.11.0-8.el8_4.12.ppc64le.rpm SHA-256: 6072fde249196e4477ac53ee973768fddc3cfa132753ffa8adf793c780fa7309
tigervnc-server-debuginfo-1.11.0-8.el8_4.12.ppc64le.rpm SHA-256: 8f5ede49d8c95aed79ed69812d7913e419ef7d1cad2b707ff4018a8901f4d694
tigervnc-server-minimal-1.11.0-8.el8_4.12.ppc64le.rpm SHA-256: e32afd3cb2df1f9ed31cbe4f83b3127ffa7faffe63349380cd6f43e7a6715fd4
tigervnc-server-minimal-debuginfo-1.11.0-8.el8_4.12.ppc64le.rpm SHA-256: 42770c337b3b8f9e3fe3b6ae44bfadf35eb3c4be78a512eb5f7102910ebf43ba
tigervnc-server-module-1.11.0-8.el8_4.12.ppc64le.rpm SHA-256: 98c47b2ee73b736b63ebb274985384bbbc5bb64aa28132b3468be1121d9f620d
tigervnc-server-module-debuginfo-1.11.0-8.el8_4.12.ppc64le.rpm SHA-256: 0ca32f242c9697ac7f45eefbda61ff5aba72a7a6cd19329ee7c663c8780cbd91

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.4

SRPM
tigervnc-1.11.0-8.el8_4.12.src.rpm SHA-256: 4c7f5edc66ef34dfc054c3bd3bc89dca8b1f1a3b9b64355b0fe399dc05483d48
x86_64
tigervnc-1.11.0-8.el8_4.12.x86_64.rpm SHA-256: a05a7572bcd159f41eee90c773cd124d348875b5d44168c2b8caa38bf49b40d8
tigervnc-debuginfo-1.11.0-8.el8_4.12.x86_64.rpm SHA-256: f7886dc90e53fae69fa17a7c669f3eab454ce2c3ab07c2ae35e2659865f0c2f5
tigervnc-debugsource-1.11.0-8.el8_4.12.x86_64.rpm SHA-256: 372925c0ac7665dec2f5751fa98e4b9f65747cc2069e4b681ecd2d00dd7028cf
tigervnc-icons-1.11.0-8.el8_4.12.noarch.rpm SHA-256: f6f39b53e6fcca6e77c143c164952bbfff226089ce02dd91d839c6307ab93591
tigervnc-license-1.11.0-8.el8_4.12.noarch.rpm SHA-256: b17567a2e54571a9d305f6bc48b62b52b7de836a15b68fcdfdf5911a02320e6f
tigervnc-selinux-1.11.0-8.el8_4.12.noarch.rpm SHA-256: 0060fc204bb9d093608e693bbcf6fbcab749668b7e9d20f6f4f918384d7441c7
tigervnc-server-1.11.0-8.el8_4.12.x86_64.rpm SHA-256: 9fa06c4d7b27c1bd0776726453c9d2fb82c1d1871f44170aaadcc0ee945da217
tigervnc-server-debuginfo-1.11.0-8.el8_4.12.x86_64.rpm SHA-256: 4cf1ae269e51bd6ff22c94f50011049980cde3dba1034eb9597f547421c9b7e6
tigervnc-server-minimal-1.11.0-8.el8_4.12.x86_64.rpm SHA-256: 39a2cb67f79dedfad019b2883a89ae3d465636f4337de7e85c51869775703f84
tigervnc-server-minimal-debuginfo-1.11.0-8.el8_4.12.x86_64.rpm SHA-256: dcde520ed7e50b6e77bd6a1156ab64bffdf41d9d99c92993d1065e12db7b068b
tigervnc-server-module-1.11.0-8.el8_4.12.x86_64.rpm SHA-256: 8d60d9f95fed34d583ee9a17ffe55e37cbe570a7acec018a613210992fa03857
tigervnc-server-module-debuginfo-1.11.0-8.el8_4.12.x86_64.rpm SHA-256: a2b2367dfebc08eed26f16b761627c767038a5d7395210b3a550fc7dcc0ec36a

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.