关键漏洞信息 漏洞概述 类型/严重性: 重要安全更新 主题: TigerVNC的安全更新,涉及多个CVE漏洞。 影响的产品 Red Hat Enterprise Linux for x86_64 8 Red Hat Enterprise Linux for IBM z Systems 8 Red Hat Enterprise Linux for Power, little endian 8 Red Hat Enterprise Linux for ARM 64 8 固定的漏洞 (CVEs) CVE-2025-49175: Xorg-x11-server-Xwayland: xorg-x11-server: tigerVNC: Out-of-Bounds Read in X Rendering Extension Animated Cursors CVE-2025-49176: Xorg-x11-server-Xwayland: xorg-x11-server: tigerVNC: Integer Overflow in Big Requests Extension CVE-2025-49178: Xorg-x11-server-Xwayland: xorg-x11-server: tigerVNC: Unprocessed Client Request Due to Bytes to Ignore CVE-2025-49179: Xorg-x11-server-Xwayland: xorg-x11-server: tigerVNC: Integer overflow in X Record extension CVE-2025-49180: Xorg-x11-server-Xwayland: xorg-x11-server: tigerVNC: Integer Overflow in X Resize, Rotate and Reflect (RandR) Extension 解决方案 参考链接: https://access.redhat.com/articles/11258 参考资料 Red Hat 安全更新分类