Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Mageia 2023-0118 Critical Tigervnc/X11-Server Privilege Elevation

mageia
Calendar Grey March 31, 2023
Dist Mageia Esm H88
Mageia 2023-0119 has released an updated version of tigervnc/x11-server that addresses a critical security vulnerability allowing unauthorized access. More details available.
DeepCopyPointerClasses use-after-free leads to privilege elevation

Summary

DeepCopyPointerClasses use-after-free leads to privilege elevation. (CVE-2023-0494)

References

- https://bugs.mageia.org/show_bug.cgi?id=31523

- https://access.redhat.com/errata/RHSA-2023:0622

- https://lists.x.org/archives/xorg-announce/2023-February/003320.html

- https://lists.x.org/archives/xorg-announce/2023-February/003321.html

- https://lists.x.org/archives/xorg-announce/2023-February/003322.html

-

-

- https://access.redhat.com/errata/RHSA-2023:0675

- https://lists.debian.org/debian-security-announce/2023/msg00031.html

- https://ubuntu.com/security/notices/USN-5846-1

- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/EW32TRKDYCE243TZOU75JUXT4AHPPDVT/

- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/VXKWNOBBI2ZCTIV3D4TT7EVVWMLTF6P2/

- https://www.cve.org/CVERecord?id=CVE-2023-0494

Topics%20covered

Topics Covered

security advisory critical privilege escalation Mageia Tigervnc X11-server

Resolution

SRPMS

- 8/core/tigervnc-1.11.0-4.2.mga8

- 8/core/x11-server-1.20.14-4.2.mga8

Severity
critical
Lowest
Low
Medium
High
Critical

Publication date: 31 Mar 2023
URL: https://advisories.mageia.org/MGASA-2023-0118.html
Type: security
CVE: CVE-2023-0494

Topics%20covered

Topics Covered

security advisory critical privilege escalation Mageia Tigervnc X11-server

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here