vnc/tightvnc security updates are available for Gentoo Linux:
tightvnc
The VNC server acts as an X server, but the script for starting it generates an MIT X cookie (which is used for X authentication) without using a strong enough random number generator. This could allow an attacker to be able to more easily guess the authentication cookie.vnc
tightvnc