Red Hat Product Errata RHSA-2026:20575 - Security Advisory Issued: 2026-05-26 Updated: 2026-05-26 RHSA-2026:20575 - Security Advisory Overview Updated Packages Synopsis Important: tigervnc security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for tigervnc is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description Virtual Network Computing (VNC) is a remote display system which allows users to view a computing desktop environment not only on the machine where it is running, but from anywhere on the Internet and from a wide variety of machine architectures. TigerVNC is a suite of VNC servers and clients. Security Fix(es): xorg: xwayland: X.Org X server: Denial of Service via integer underflow in XKB compatibility map handling (CVE-2026-33999) xwayland: xorg: X.Org X server: Information disclosure and denial of service via out-of-bounds read in XKB geometry processing. (CVE-2026-34000) xorg: xwayland: X.Org X server: Use-after-free vulnerability leads to server crash and potential memory corruption (CVE-2026-34001) xorg: xwayland: X.Org X server: Information disclosure or Denial of Service via out-of-bounds read in XKB modifier map handling (CVE-2026-34002) xorg: xwayland: X.Org X server: Information exposure and denial of service via out-of-bounds memory access (CVE-2026-34003) TigerVNC: x0vncserver: TigerVNC x0vncserver: Information disclosure, data manipulation, and denial of service via incorrect permissions (CVE-2026-34352) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.4 x86_64 Red Hat Enterprise Linux Server - AUS 9.4 x86_64 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.4 s390x Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.4 ppc64le Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.4 aarch64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.4 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.4 x86_64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.4 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.4 s390x Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.4 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.4 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.4 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.4 s390x Fixes BZ - 2451106 - CVE-2026-33999 xorg: xwayland: X.Org X server: Denial of Service via integer underflow in XKB compatibility map handling BZ - 2451107 - CVE-2026-34000 xwayland: xorg: X.Org X server: Information disclosure and denial of service via out-of-bounds read in XKB geometry processing. BZ - 2451109 - CVE-2026-34001 xorg: xwayland: X.Org X server: Use-after-free vulnerability leads to server crash and potential memory corruption BZ - 2451112 - CVE-2026-34002 xorg: xwayland: X.Org X server: Information disclosure or Denial of Service via out-of-bounds read in XKB modifier map handling BZ - 2451113 - CVE-2026-34003 xorg: xwayland: X.Org X server: Information exposure and denial of service via out-of-bounds memory access BZ - 2452022 - CVE-2026-34352 TigerVNC: x0vncserver: TigerVNC x0vncserver: Information disclosure, data manipulation, and denial of service via incorrect permissions CVEs CVE-2026-33999 CVE-2026-34000 CVE-2026-34001 CVE-2026-34002 CVE-2026-34003 CVE-2026-34352 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.4 SRPM tigervnc-1.13.1-8.el9_4.9.src.rpm SHA-256: ac249fa9aedfafc61dbd8d300968a09586725544ab0b0d061a1018ec23c5fa6f x86_64 tigervnc-1.13.1-8.el9_4.9.x86_64.rpm SHA-256: 87b709d3246ab65e4c65b396764d0ccf22b81298a613e33d8a9075e9a149c563 tigervnc-debuginfo-1.13.1-8.el9_4.9.x86_64.rpm SHA-256: 01f5441ced585397f1defd909dee9ac041e442b666df94e074de78f103670176 tigervnc-debugsource-1.13.1-8.el9_4.9.x86_64.rpm SHA-256: 4751819e3c15e6d044ee893d1a1a8d2e7578baf126d48e0440599b4eabc0932a tigervnc-icons-1.13.1-8.el9_4.9.noarch.rpm SHA-256: 393de468e4d61e075cdc3e409883d836f67caf27ce29382e11726ac88029d1b2 tigervnc-license-1.13.1-8.el9_4.9.noarch.rpm SHA-256: fdbbb356d241cc6dd6842b711cfc8be411a9df91bff9eec825f4f84a6adecb86 tigervnc-selinux-1.13.1-8.el9_4.9.noarch.rpm SHA-256: e1368bf837380615cef815904cabfb96a15c093893ac9ac1c6f2039d01b089cf tigervnc-server-1.13.1-8.el9_4.9.x86_64.rpm SHA-256: 54990f1a0815adee1af19c52f6bcd1f7dc3cc3a96dfb8ff3c7d25aea811d3677 tigervnc-server-debuginfo-1.13.1-8.el9_4.9.x86_64.rpm SHA-256: 48e2fee9d23cb1ef0bf758c1a904a27920584414efeb10ae38db5c9c56b27c5c tigervnc-server-minimal-1.13.1-8.el9_4.9.x86_64.rpm SHA-256: 7a2c0afcb7da0f6218039c14b3134d8d40d54923e44c020b5607a898cd7cd1d8 tigervnc-server-minimal-debuginfo-1.13.1-8.el9_4.9.x86_64.rpm SHA-256: 95c604f02e68873601840726a6c81d11270a2339a44efb700a66c7bf5c03841c tigervnc-server-module-1.13.1-8.el9_4.9.x86_64.rpm SHA-256: 449206365be2def8e5c1f1f00169f264aa6836fed1f48ac21797ec5c1f47b9d7 tigervnc-server-module-debuginfo-1.13.1-8.el9_4.9.x86_64.rpm SHA-256: 9101eeca019c42707f8e605fd295478d9886edbdb2810dc38bb680b28db801ed Red Hat Enterprise Linux Server - AUS 9.4 SRPM tigervnc-1.13.1-8.el9_4.9.src.rpm SHA-256: ac249fa9aedfafc61dbd8d300968a09586725544ab0b0d061a1018ec23c5fa6f x86_64 tigervnc-1.13.1-8.el9_4.9.x86_64.rpm SHA-256: 87b709d3246ab65e4c65b396764d0ccf22b81298a613e33d8a9075e9a149c563 tigervnc-debuginfo-1.13.1-8.el9_4.9.x86_64.rpm SHA-256: 01f5441ced585397f1defd909dee9ac041e442b666df94e074de78f103670176 tigervnc-debugsource-1.13.1-8.el9_4.9.x86_64.rpm SHA-256: 4751819e3c15e6d044ee893d1a1a8d2e7578baf126d48e0440599b4eabc0932a tigervnc-icons-1.13.1-8.el9_4.9.noarch.rpm SHA-256: 393de468e4d61e075cdc3e409883d836f67caf27ce29382e11726ac88029d1b2 tigervnc-license-1.13.1-8.el9_4.9.noarch.rpm SHA-256: fdbbb356d241cc6dd6842b711cfc8be411a9df91bff9eec825f4f84a6adecb86 tigervnc-selinux-1.13.1-8.el9_4.9.noarch.rpm SHA-256: e1368bf837380615cef815904cabfb96a15c093893ac9ac1c6f2039d01b089cf tigervnc-server-1.13.1-8.el9_4.9.x86_64.rpm SHA-256: 54990f1a0815adee1af19c52f6bcd1f7dc3cc3a96dfb8ff3c7d25aea811d3677 tigervnc-server-debuginfo-1.13.1-8.el9_4.9.x86_64.rpm SHA-256: 48e2fee9d23cb1ef0bf758c1a904a27920584414efeb10ae38db5c9c56b27c5c tigervnc-server-minimal-1.13.1-8.el9_4.9.x86_64.rpm SHA-256: 7a2c0afcb7da0f6218039c14b3134d8d40d54923e44c020b5607a898cd7cd1d8 tigervnc-server-minimal-debuginfo-1.13.1-8.el9_4.9.x86_64.rpm SHA-256: 95c604f02e68873601840726a6c81d11270a2339a44efb700a66c7bf5c03841c tigervnc-server-module-1.13.1-8.el9_4.9.x86_64.rpm SHA-256: 449206365be2def8e5c1f1f00169f264aa6836fed1f48ac21797ec5c1f47b9d7 tigervnc-server-module-debuginfo-1.13.1-8.el9_4.9.x86_64.rpm SHA-256: 9101eeca019c42707f8e605fd295478d9886edbdb2810dc38bb680b28db801ed Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.4 SRPM tigervnc-1.13.1-8.el9_4.9.src.rpm SHA-256: ac249fa9aedfafc61dbd8d300968a09586725544ab0b0d061a1018ec23c5fa6f s390x tigervnc-1.13.1-8.el9_4.9.s390x.rpm SHA-256: 47069c2c87e435cd9536cc46ee46e8d1d16f78da010f07eae4f99b6967ac7733 tigervnc-debuginfo-1.13.1-8.el9_4.9.s390x.rpm SHA-256: 2e330d871bdb2fb1efd141934059b831adf8c4a76611d0ec01343c55e6c13f43 tigervnc-debugsource-1.13.1-8.el9_4.9.s390x.rpm SHA-256: 827c81994ca33c422d32390c4b60bd2588d0d0d56ec746d31ebb099d9313bafb tigervnc-icons-1.13.1-8.el9_4.9.noarch.rpm SHA-256: 393de468e4d61e075cdc3e409883d836f67caf27ce29382e11726ac88029d1b2 tigervnc-license-1.13.1-8.el9_4.9.noarch.rpm SHA-256: fdbbb356d241cc6dd6842b711cfc8be411a9df91bff9eec825f4f84a6adecb86 tigervnc-selinux-1.13.1-8.el9_4.9.noarch.rpm SHA-256: e1368bf837380615cef815904cabfb96a15c093893ac9ac1c6f2039d01b089cf tigervnc-server-1.13.1-8.el9_4.9.s390x.rpm SHA-256: 6687f210cf6235c1840f277706de2c75054e188f429018ffdee792573f8dac6c tigervnc-server-debuginfo-1.13.1-8.el9_4.9.s390x.rpm SHA-256: a7ce418126a78629b532fe4b6c885665c0ae4c9bd7053cf3ab77177f2e973fd7 tigervnc-server-minimal-1.13.1-8.el9_4.9.s390x.rpm SHA-256: 63a43f3e86e94d68cd4a619a62b80384ce76a17d982fce7eb325f7453a07a7e1 tigervnc-server-minimal-debuginfo-1.13.1-8.el9_4.9.s390x.rpm SHA-256: b796c90d10986d527b67626d11d2458cfa8d156a98259f43021f0909478a35da tigervnc-server-module-1.13.1-8.el9_4.9.s390x.rpm SHA-256: 03bfa230cb179709ffdf0d5e360db6018336809f42b30f7c37853992663103f5 tigervnc-server-module-debuginfo-1.13.1-8.el9_4.9.s390x.rpm SHA-256: 8ea4d4d9dfb04481f49c99e36f6ec5d2f9e22de4e7b392468ffb968fb0f8db23 Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.4 SRPM tigervnc-1.13.1-8.el9_4.9.src.rpm SHA-256: ac249fa9aedfafc61dbd8d300968a09586725544ab0b0d061a1018ec23c5fa6f ppc64le tigervnc-1.13.1-8.el9_4.9.ppc64le.rpm SHA-256: ae71ea44eba8eabba66fc49317bac5408b123b5b49e9b68348a4d1a4721b4ec3 tigervnc-debuginfo-1.13.1-8.el9_4.9.ppc64le.rpm SHA-256: 8eead5a3c0c1e2ed9c896d4efd456c5ea0fec7a3a1f88d2c34a30b88ac21cf73 tigervnc-debugsource-1.13.1-8.el9_4.9.ppc64le.rpm SHA-256: e46b90c123260de2e17925c514ff3c69444399951ae9ffe72d9b4152e1759e02 tigervnc-icons-1.13.1-8.el9_4.9.noarch.rpm SHA-256: 393de468e4d61e0