{"id":"RHSA-2025:10355","summary":"Red Hat Security Advisory: tigervnc security update","modified":"2026-03-18T10:42:58Z","published":"2025-07-07T10:02:46Z","upstream":["CVE-2025-49175","CVE-2025-49176","CVE-2025-49178","CVE-2025-49179","CVE-2025-49180"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2025:10355"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#important"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2369947"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2369954"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2369977"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2369978"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2369981"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_10355.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-49175"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2025-49175"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-49175"},{"type":"ARTICLE","url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/0885e0b26225c90534642fe911632ec0779eebee"},{"type":"ARTICLE","url":"https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/2024"},{"type":"ARTICLE","url":"https://www.x.org/wiki/Development/Security/"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-49176"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2025-49176"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-49176"},{"type":"ARTICLE","url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/03731b326a80b582e48d939fe62cb1e2b10400d9"},{"type":"ARTICLE","url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/4fc4d76b2c7aaed61ed2653f997783a3714c4fe1"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-49178"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2025-49178"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-49178"},{"type":"ARTICLE","url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/d55c54cecb5e83eaa2d56bed5cc4461f9ba318c2"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-49179"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2025-49179"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-49179"},{"type":"ARTICLE","url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/2bde9ca49a8fd9a1e6697d5e7ef837870d66f5d4"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2025-49180"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2025-49180"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-49180"},{"type":"ARTICLE","url":"https://gitlab.freedesktop.org/xorg/xserver/-/commit/3c3a4b767b16174d3213055947ea7f4f88e10ec6"}],"affected":[{"package":{"name":"tigervnc","ecosystem":"Red Hat:rhel_e4s:8.8::appstream","purl":"pkg:rpm/redhat/tigervnc"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.12.0-15.el8_8.14"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:10355.json"}},{"package":{"name":"tigervnc-debuginfo","ecosystem":"Red Hat:rhel_e4s:8.8::appstream","purl":"pkg:rpm/redhat/tigervnc-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.12.0-15.el8_8.14"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:10355.json"}},{"package":{"name":"tigervnc-debugsource","ecosystem":"Red Hat:rhel_e4s:8.8::appstream","purl":"pkg:rpm/redhat/tigervnc-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.12.0-15.el8_8.14"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:10355.json"}},{"package":{"name":"tigervnc-icons","ecosystem":"Red Hat:rhel_e4s:8.8::appstream","purl":"pkg:rpm/redhat/tigervnc-icons"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.12.0-15.el8_8.14"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:10355.json"}},{"package":{"name":"tigervnc-license","ecosystem":"Red Hat:rhel_e4s:8.8::appstream","purl":"pkg:rpm/redhat/tigervnc-license"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.12.0-15.el8_8.14"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:10355.json"}},{"package":{"name":"tigervnc-selinux","ecosystem":"Red Hat:rhel_e4s:8.8::appstream","purl":"pkg:rpm/redhat/tigervnc-selinux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.12.0-15.el8_8.14"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:10355.json"}},{"package":{"name":"tigervnc-server","ecosystem":"Red Hat:rhel_e4s:8.8::appstream","purl":"pkg:rpm/redhat/tigervnc-server"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.12.0-15.el8_8.14"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:10355.json"}},{"package":{"name":"tigervnc-server-debuginfo","ecosystem":"Red Hat:rhel_e4s:8.8::appstream","purl":"pkg:rpm/redhat/tigervnc-server-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.12.0-15.el8_8.14"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:10355.json"}},{"package":{"name":"tigervnc-server-minimal","ecosystem":"Red Hat:rhel_e4s:8.8::appstream","purl":"pkg:rpm/redhat/tigervnc-server-minimal"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.12.0-15.el8_8.14"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:10355.json"}},{"package":{"name":"tigervnc-server-minimal-debuginfo","ecosystem":"Red Hat:rhel_e4s:8.8::appstream","purl":"pkg:rpm/redhat/tigervnc-server-minimal-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.12.0-15.el8_8.14"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:10355.json"}},{"package":{"name":"tigervnc-server-module","ecosystem":"Red Hat:rhel_e4s:8.8::appstream","purl":"pkg:rpm/redhat/tigervnc-server-module"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.12.0-15.el8_8.14"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:10355.json"}},{"package":{"name":"tigervnc-server-module-debuginfo","ecosystem":"Red Hat:rhel_e4s:8.8::appstream","purl":"pkg:rpm/redhat/tigervnc-server-module-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.12.0-15.el8_8.14"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:10355.json"}},{"package":{"name":"tigervnc","ecosystem":"Red Hat:rhel_tus:8.8::appstream","purl":"pkg:rpm/redhat/tigervnc"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.12.0-15.el8_8.14"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:10355.json"}},{"package":{"name":"tigervnc-debuginfo","ecosystem":"Red Hat:rhel_tus:8.8::appstream","purl":"pkg:rpm/redhat/tigervnc-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.12.0-15.el8_8.14"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:10355.json"}},{"package":{"name":"tigervnc-debugsource","ecosystem":"Red Hat:rhel_tus:8.8::appstream","purl":"pkg:rpm/redhat/tigervnc-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.12.0-15.el8_8.14"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:10355.json"}},{"package":{"name":"tigervnc-icons","ecosystem":"Red Hat:rhel_tus:8.8::appstream","purl":"pkg:rpm/redhat/tigervnc-icons"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.12.0-15.el8_8.14"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:10355.json"}},{"package":{"name":"tigervnc-license","ecosystem":"Red Hat:rhel_tus:8.8::appstream","purl":"pkg:rpm/redhat/tigervnc-license"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.12.0-15.el8_8.14"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:10355.json"}},{"package":{"name":"tigervnc-selinux","ecosystem":"Red Hat:rhel_tus:8.8::appstream","purl":"pkg:rpm/redhat/tigervnc-selinux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.12.0-15.el8_8.14"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:10355.json"}},{"package":{"name":"tigervnc-server","ecosystem":"Red Hat:rhel_tus:8.8::appstream","purl":"pkg:rpm/redhat/tigervnc-server"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.12.0-15.el8_8.14"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:10355.json"}},{"package":{"name":"tigervnc-server-debuginfo","ecosystem":"Red Hat:rhel_tus:8.8::appstream","purl":"pkg:rpm/redhat/tigervnc-server-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.12.0-15.el8_8.14"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:10355.json"}},{"package":{"name":"tigervnc-server-minimal","ecosystem":"Red Hat:rhel_tus:8.8::appstream","purl":"pkg:rpm/redhat/tigervnc-server-minimal"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.12.0-15.el8_8.14"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:10355.json"}},{"package":{"name":"tigervnc-server-minimal-debuginfo","ecosystem":"Red Hat:rhel_tus:8.8::appstream","purl":"pkg:rpm/redhat/tigervnc-server-minimal-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.12.0-15.el8_8.14"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:10355.json"}},{"package":{"name":"tigervnc-server-module","ecosystem":"Red Hat:rhel_tus:8.8::appstream","purl":"pkg:rpm/redhat/tigervnc-server-module"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.12.0-15.el8_8.14"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:10355.json"}},{"package":{"name":"tigervnc-server-module-debuginfo","ecosystem":"Red Hat:rhel_tus:8.8::appstream","purl":"pkg:rpm/redhat/tigervnc-server-module-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.12.0-15.el8_8.14"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2025:10355.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}