Home / mailingsPDF  

[slackware-security] tigervnc (SSA:2026-154-05)

Posted on 04 June 2026
Slackware Security

[slackware-security] tigervnc (SSA:2026-154-05)

New tigervnc packages are available for Slackware 15.0 and -current to
fix security issues.


Here are the details from the Slackware 15.0 ChangeLog:
+--------------------------+
extra/tigervnc/tigervnc-1.16.2-i586-3_slack15.0.txz: Rebuilt.
Patched with fixes for the following xorg-server security issues:
Font Alias Stack-based Buffer Overflow.
XSYNC Use-After-Free in miSyncDestroyFence().
XKB Key Types Stack-based Buffer Overflow.
XKB SetMap Request Stack-based Buffer Overflow.
XSYNC Use-After-Free in FreeCounter().
XSYNC Use-After-Free in SyncChangeCounter().
GLX ChangeDrawableAttributes Out-Of-Bounds Read/Write.
CreateSaverWindow Use-After-Free Information Disclosure.
DRI2 DRIGetBuffers/DRIGetBuffersWithFormat Out-Of-Bounds Write.
For more information, see:
https://lists.x.org/archives/xorg/2026-June/062239.html
Zero Day Initiative identifiers:
ZDI-CAN-30136
ZDI-CAN-30159
ZDI-CAN-30160
ZDI-CAN-30161
ZDI-CAN-30163
ZDI-CAN-30164
ZDI-CAN-30165
ZDI-CAN-30168
(* Security fix *)
+--------------------------+


Where to find the new packages:
+-----------------------------+

Thanks to the friendly folks at the OSU Open Source Lab
(http://osuosl.org) for donating FTP and rsync hosting
to the Slackware project! :-)

Also see the "Get Slack" section on http://slackware.com for
additional mirror sites near you.

Updated package for Slackware 15.0:
ftp://ftp.slackware.com/pub/slackware/slackware-15.0/extra/tigervnc/tigervnc-1.16.2-i586-3_slack15.0.txz

Updated package for Slackware x86_64 15.0:
ftp://ftp.slackware.com/pub/slackware/slackware64-15.0/extra/tigervnc/tigervnc-1.16.2-x86_64-3_slack15.0.txz

Updated package for Slackware -current:
ftp://ftp.slackware.com/pub/slackware/slackware-current/extra/tigervnc/tigervnc-1.16.2-i686-3.txz

Updated packages for Slackware x86_64 -current:
ftp://ftp.slackware.com/pub/slackware/slackware64-current/extra/tigervnc/tigervnc-1.16.2-x86_64-3.txz


MD5 signatures:
+-------------+

Slackware 15.0 package:
eaf51937d37bdf8d1204ac5a74859506 tigervnc-1.16.2-i586-3_slack15.0.txz

Slackware x86_64 15.0 package:
34af31b00f6c9f3d094a35a337ffc7eb tigervnc-1.16.2-x86_64-3_slack15.0.txz

Slackware -current package:
81605676b5d7d65e596513d54cbd7733 tigervnc-1.16.2-i686-3.txz

Slackware x86_64 -current package:
6a74733c7d334054aa701fde5750fa6e tigervnc-1.16.2-x86_64-3.txz


Installation instructions:
+------------------------+

Upgrade the package as root:
# upgradepkg tigervnc-1.16.2-i586-3_slack15.0.txz


+-----+

Slackware Linux Security Team
http://slackware.com/gpg-key
security@slackware.com

 

TOP

Mailings :

Exploits :