Advisories ยป MGASA-2023-0321

Updated tigervnc packages fix security vulnerabilities

Publication date: 20 Nov 2023
Modification date: 20 Nov 2023
Type: security
Affected Mageia releases : 8 , 9
CVE: CVE-2023-5367 , CVE-2023-5380

Description

The updated packages fix security vulnerabilities:

OOB write in XIChangeDeviceProperty/RRChangeOutputProperty.
(CVE-2023-5367)

Use-after-free bug in DestroyWindow. (CVE-2023-5380)
                

References

SRPMS

9/core

8/core