Critical Vulnerability Information Vulnerability Overview Advisory ID: RHSA-2025:10350 Release Date: 2025-07-07 Update Date: 2025-07-07 Type/Severity: Security Advisory, Important Affected Products Red Hat Enterprise Linux Server - AUS 9.2 x86_64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.2 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.2 x86_64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.2 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.2 s390x Vulnerability Details CVE IDs: - CVE-2025-49175 - CVE-2025-49176 - CVE-2025-49178 - CVE-2025-49179 - CVE-2025-49180 Fixed Bugzilla Issues: - BZ #2369947: CVE-2025-49175 xorg-x11-server-Xwayland: xorg-x11-server-tigervnc: Out-of-Bounds Read in X Rendering Extension Animated Cursors - BZ #2369954: CVE-2025-49176 xorg-x11-server-Xwayland: xorg-x11-server-tigervnc: Integer Overflow in Big Requests Extension - BZ #2369977: CVE-2025-49178 xorg-x11-server-Xwayland: xorg-x11-server-tigervnc: Unprocessed Client Request Due to Bytes to Ignore - BZ #2369978: CVE-2025-49179 xorg-x11-server-Xwayland: xorg-x11-server-tigervnc: Integer overflow in X Record extension - BZ #2369980: CVE-2025-49180 xorg-x11-server-Xwayland: xorg-x11-server-tigervnc: Integer Overflow in X Resize, Rotate and Reflect (RandR) Extension Solution Reference Link: https://access.redhat.com/articles/11250 References https://access.redhat.com/security/updates/classification/#important