Lucene search
AmazonALAS2-2020-1411HistoryApr 20, 2020 - 8:47 p.m.
Important: libvncserver
2020-04-2020:47:00
alas.aws.amazon.com
14
9.3 High
AI Score
Confidence
High
Issue Overview:
Integer Overflow or Wraparound leads to Heap-based Buffer Overflow (CVE-2019-15690)
Affected Packages:
libvncserver
Note:
This advisory is applicable to Amazon Linux 2 (AL2) Core repository. Visit this FAQ section for the difference between AL2 Core and AL2 Extras advisories.
Issue Correction:
Run yum update libvncserver to update your system.
New Packages:
aarch64:
libvncserver-0.9.9-14.amzn2.aarch64
libvncserver-devel-0.9.9-14.amzn2.aarch64
libvncserver-debuginfo-0.9.9-14.amzn2.aarch64
i686:
libvncserver-0.9.9-14.amzn2.i686
libvncserver-devel-0.9.9-14.amzn2.i686
libvncserver-debuginfo-0.9.9-14.amzn2.i686
src:
libvncserver-0.9.9-14.amzn2.src
x86_64:
libvncserver-0.9.9-14.amzn2.x86_64
libvncserver-devel-0.9.9-14.amzn2.x86_64
libvncserver-debuginfo-0.9.9-14.amzn2.x86_64
Additional References
Red Hat: CVE-2019-15690
Mitre: CVE-2019-15690
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Amazon Linux | 2 | aarch64 | libvncserver | < 0.9.9-14.amzn2 | libvncserver-0.9.9-14.amzn2.aarch64.rpm |
| Amazon Linux | 2 | aarch64 | libvncserver-devel | < 0.9.9-14.amzn2 | libvncserver-devel-0.9.9-14.amzn2.aarch64.rpm |
| Amazon Linux | 2 | aarch64 | libvncserver-debuginfo | < 0.9.9-14.amzn2 | libvncserver-debuginfo-0.9.9-14.amzn2.aarch64.rpm |
| Amazon Linux | 2 | i686 | libvncserver | < 0.9.9-14.amzn2 | libvncserver-0.9.9-14.amzn2.i686.rpm |
| Amazon Linux | 2 | i686 | libvncserver-devel | < 0.9.9-14.amzn2 | libvncserver-devel-0.9.9-14.amzn2.i686.rpm |
| Amazon Linux | 2 | i686 | libvncserver-debuginfo | < 0.9.9-14.amzn2 | libvncserver-debuginfo-0.9.9-14.amzn2.i686.rpm |
| Amazon Linux | 2 | x86_64 | libvncserver | < 0.9.9-14.amzn2 | libvncserver-0.9.9-14.amzn2.x86_64.rpm |
| Amazon Linux | 2 | x86_64 | libvncserver-devel | < 0.9.9-14.amzn2 | libvncserver-devel-0.9.9-14.amzn2.x86_64.rpm |
| Amazon Linux | 2 | x86_64 | libvncserver-debuginfo | < 0.9.9-14.amzn2 | libvncserver-debuginfo-0.9.9-14.amzn2.x86_64.rpm |
Related
oraclelinux
oraclelinux
libvncserver security update
2020-03-26 00:00:00
libvncserver security update
2020-03-23 00:00:00
GNOME security, bug fix, and enhancement update
2020-05-05 00:00:00
ubuntucve
ubuntucve
CVE-2019-15690
2019-12-31 00:00:00
CVE-2019-20788
2020-04-23 00:00:00
openvas
openvas
CentOS: Security Advisory for libvncserver (CESA-2020:0913)
2020-03-26 00:00:00
Mageia: Security Advisory (MGASA-2020-0164)
2022-01-28 00:00:00
Huawei EulerOS: Security Advisory for libvncserver (EulerOS-SA-2020-1925)
2020-09-04 00:00:00
debian
debian
[SECURITY] [DLA 2146-1] libvncserver security update
2020-03-17 19:43:31
nessus
nessus
Scientific Linux Security Update : libvncserver on SL7.x x86_64 (20200323)
2020-03-24 00:00:00
Amazon Linux 2 : libvncserver (ALAS-2020-1411)
2020-04-24 00:00:00
Oracle Linux 7 : libvncserver (ELSA-2020-0913)
2020-03-26 00:00:00
debiancve
debiancve
CVE-2019-15690
2022-02-25 11:31:58
CVE-2019-20788
2020-04-23 19:15:00
redhatcve
redhatcve
CVE-2019-15690
2020-03-10 10:10:54
CVE-2019-20788
2020-04-30 14:10:03
mageia
mageia
Updated libvncserver packages fix security vulnerability
2020-04-15 13:12:14
cve
cve
CVE-2019-15690
2022-02-25 11:31:58
CVE-2019-20788
2020-04-23 19:15:00
prion
prion
Integer overflow
2020-04-23 19:15:00
redhat
redhat
(RHSA-2020:0913) Important: libvncserver security update
2020-03-23 07:28:10
(RHSA-2020:0921) Important: libvncserver security update
2020-03-23 08:01:22
(RHSA-2020:0920) Important: libvncserver security update
2020-03-23 08:01:21
osv
osv
CVE-2019-20788
2020-04-23 19:15:00
libvncserver - security update
2020-03-18 00:00:00
centos
centos
libvncserver security update
2020-03-25 19:16:12
alpinelinux
alpinelinux
CVE-2019-20788
2020-04-23 19:15:00
suse
suse
Security update for LibVNCServer (important)
2020-05-11 00:00:00
ubuntu
ubuntu
LibVNCServer vulnerabilities
2020-07-01 00:00:00
ics
ics
Siemens SIMATIC ITC
2021-12-16 12:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1900
2021-07-02 17:22:34