FEDORA-2017-2d0066d567 — security update for tigervnc

stable

tigervnc-1.7.1-4.fc26

FEDORA-2017-2d0066d567 created by jgrulich 8 years ago for Fedora 26

Security fix for CVE-2017-7392 CVE-2017-7393 CVE-2017-7394 CVE-2017-7395 CVE-2017-7396.

Add systemd unit file for Xvnc.

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2017-2d0066d567

This update has been submitted for testing by jgrulich.

8 years ago

This update has been pushed to testing.

8 years ago

jgrulich edited this update.

New build(s):

tigervnc-1.7.1-4.fc26

Removed build(s):

tigervnc-1.7.1-3.fc26

8 years ago

This update has been submitted for testing by jgrulich.

8 years ago

This update has been pushed to testing.

8 years ago

filiperosset commented & provided feedback 8 years ago

karma

no regressions noted

cserpentis commented & provided feedback 8 years ago

karma

works for me in a VM

alciregi commented & provided feedback 8 years ago

karma

WFM

This update has been submitted for stable by bodhi.

8 years ago

This update has been pushed to stable.

8 years ago

Please log in to add feedback.

Metadata

Type

security

Karma

Signed

Content Type

RPM

Test Gating

None

Autopush Settings

Unstable by Karma

-3

Stable by Karma

Stable by Time

disabled

Dates

submitted

8 years ago

in testing

8 years ago

in stable

8 years ago

modified

8 years ago

Builds

tigervnc-1.7.1-4.fc26

BZ#891802 RFE: systemd unit for Xvnc (not vncserver)

BZ#1438694 CVE-2017-7392 tigervnc: SSecurityVeNCrypt memory leak

BZ#1438697 CVE-2017-7393 tigervnc: Double free via crafted fences

BZ#1438700 CVE-2017-7394 tigervnc: Server crash via long usernames

BZ#1438701 CVE-2017-7395 tigervnc: Integer overflow in SMsgReader::readClientCutText

BZ#1438703 CVE-2017-7396 tigervnc: SecurityServer and ClientServer memory leaks

tigervnc-1.7.1-4.fc26

Automated Test Results

None