CVE-2025-49180: 
TigerVNC vulnerability analysis and mitigation

CVE-2025-49180 is a vulnerability discovered in the X Resize, Rotate and Reflect (RandR) extension, specifically affecting the RRChangeProviderProperty function. The vulnerability was disclosed on June 17, 2025, affecting various X.Org X Server implementations including xorg-server and xwayland packages (NVD, Ubuntu Security).

The vulnerability is classified as an Integer Overflow or Wraparound (CWE-190) with a CVSS v3.1 Base Score of 7.8 (High). The vulnerability stems from improper input validation in the RRChangeProviderProperty function, which leads to an integer overflow when computing the total size to allocate. The attack vector is local (AV:L), requiring low attack complexity (AC:L) and low privileges (PR:L), with no user interaction needed (UI:N). The scope is unchanged (S:U), with high confidentiality (C:H), integrity (I:H), and availability (A:H) impacts (NVD, Wiz).

The vulnerability could potentially result in memory corruption due to integer overflow during allocation calculations. This could lead to system crashes or possible code execution in the context of the X server (Wiz, Debian Security).

Multiple vendors have released patches to address this vulnerability. Ubuntu has fixed the issue in multiple versions of xorg-server (2:21.1.16-1ubuntu1.1 for 25.04, 2:21.1.13-2ubuntu1.4 for 24.10, 2:21.1.12-1ubuntu1.4 for 24.04 LTS) and xwayland packages. Red Hat has also released security updates through multiple advisories (RHSA-2025:9303, RHSA-2025:9304, RHSA-2025:9305, RHSA-2025:9306) (Ubuntu Security, Red Hat Security).