vulnerability
Amazon Linux 2023: CVE-2025-49180: Medium priority package update for tigervnc (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:L/Au:S/C:C/I:C/A:C) | Jun 17, 2025 | Jul 11, 2025 | Jul 11, 2025 |
Severity
7
CVSS
(AV:L/AC:L/Au:S/C:C/I:C/A:C)
Published
Jun 17, 2025
Added
Jul 11, 2025
Modified
Jul 11, 2025
Description
A flaw was found in the RandR extension, where the RRChangeProviderProperty function does not properly validate input. This issue leads to an integer overflow when computing the total size to allocate.
Solutions
amazon-linux-2023-upgrade-tigervncamazon-linux-2023-upgrade-tigervnc-debuginfoamazon-linux-2023-upgrade-tigervnc-debugsourceamazon-linux-2023-upgrade-tigervnc-iconsamazon-linux-2023-upgrade-tigervnc-licenseamazon-linux-2023-upgrade-tigervnc-selinuxamazon-linux-2023-upgrade-tigervnc-serveramazon-linux-2023-upgrade-tigervnc-server-debuginfoamazon-linux-2023-upgrade-tigervnc-server-minimalamazon-linux-2023-upgrade-tigervnc-server-minimal-debuginfoamazon-linux-2023-upgrade-tigervnc-server-moduleamazon-linux-2023-upgrade-tigervnc-server-module-debuginfoamazon-linux-2023-upgrade-xorg-x11-server-commonamazon-linux-2023-upgrade-xorg-x11-server-debuginfoamazon-linux-2023-upgrade-xorg-x11-server-debugsourceamazon-linux-2023-upgrade-xorg-x11-server-develamazon-linux-2023-upgrade-xorg-x11-server-sourceamazon-linux-2023-upgrade-xorg-x11-server-xephyramazon-linux-2023-upgrade-xorg-x11-server-xephyr-debuginfoamazon-linux-2023-upgrade-xorg-x11-server-xnestamazon-linux-2023-upgrade-xorg-x11-server-xnest-debuginfoamazon-linux-2023-upgrade-xorg-x11-server-xorgamazon-linux-2023-upgrade-xorg-x11-server-xorg-debuginfoamazon-linux-2023-upgrade-xorg-x11-server-xvfbamazon-linux-2023-upgrade-xorg-x11-server-xvfb-debuginfoamazon-linux-2023-upgrade-xorg-x11-server-xwaylandamazon-linux-2023-upgrade-xorg-x11-server-xwayland-debuginfoamazon-linux-2023-upgrade-xorg-x11-server-xwayland-debugsourceamazon-linux-2023-upgrade-xorg-x11-server-xwayland-devel
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.