SUSE Package Hub - SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-2227

Update Info

SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-2227

Security update for LibVNCServer

Type: security

Severity: important

Issued: 2026-06-03

Description:

This update for LibVNCServer fixes the following issues:

- CVE-2026-44988: Fixed missing validation of rectangle width in tight gradient
  decoding can lead to server-triggered out-of-bounds write (bsc#1266459).

References

CVE: CVE-2026-44988
Bugzilla: 1266459 VUL-0: CVE-2026-44988: LibVNCServer: missing validation of rectangle width in tight gradient decoding can lead to server-triggered out-of-bounds write

Packages

LibVNCServer-0.9.10-150000.4.38.1