Synopsis:
tigervnc security updateSummary:
An update for tigervnc is now available for openEuler-22.03-LTS-SP4,openEuler-24.03-LTS,openEuler-24.03-LTS-SP1,openEuler-24.03-LTS-SP2,openEuler-24.03-LTS-SP3,openEuler-20.03-LTS-SP4Description:
This package provides client for Virtual Network Computing (VNC), with which you can access any other desktops running a VNC server.
Security Fix(es):
In TigerVNC before 1.16.2, Image.cxx in x0vncserver allows other users to observe or manipulate the screen contents, or cause an application crash, because of incorrect permissions.(CVE-2026-34352)Topic:
An update for tigervnc is now available for openEuler-22.03-LTS-SP4,openEuler-24.03-LTS,openEuler-24.03-LTS-SP1,openEuler-24.03-LTS-SP2,openEuler-24.03-LTS-SP3,openEuler-20.03-LTS-SP4.
openEuler Security has rated this update as having a security impact of high. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section.Severity:
HighAffected Component:
tigervnc
1.10.1-9.oe2003sp41.10.1-9.oe2003sp41.10.1-9.oe2003sp41.10.1-9.oe2003sp41.10.1-9.oe2003sp41.10.1-9.oe2003sp41.10.1-9.oe2003sp41.10.1-9.oe2003sp41.12.0-10.oe2203sp41.12.0-10.oe2203sp4Exploitability
AV:LAC:LPR:NUI:NScope
S:CImpact
C:HI:LA:L8.5/CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:L