Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2014-8240HistoryOct 16, 2014 - 7:55 p.m.
CVE-2014-8240
2014-10-1619:55:14
Debian Security Bug Tracker
security-tracker.debian.org
15
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.015 Low
EPSS
Percentile
86.8%
Integer overflow in TigerVNC allows remote VNC servers to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to screen size handling, which triggers a heap-based buffer overflow, a similar issue to CVE-2014-6051.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | tigervnc | < 1.7.0-1 | tigervnc_1.7.0-1_all.deb |
| Debian | 11 | all | tigervnc | < 1.7.0-1 | tigervnc_1.7.0-1_all.deb |
| Debian | 999 | all | tigervnc | < 1.7.0-1 | tigervnc_1.7.0-1_all.deb |
| Debian | 13 | all | tigervnc | < 1.7.0-1 | tigervnc_1.7.0-1_all.deb |
Related
gentoo
gentoo
TigerVNC: Integer overflow
2016-12-13 00:00:00
LibVNCServer: Multiple vulnerabilities
2015-07-07 00:00:00
prion
prion
Integer overflow
2014-10-16 19:55:00
Integer overflow
2014-09-30 16:55:00
cvelist
cvelist
CVE-2014-8240
2014-10-16 19:00:00
CVE-2014-6051
2014-09-30 16:00:00
nessus
nessus
GLSA-201612-36 : TigerVNC: Integer overflow
2016-12-13 00:00:00
RHEL 6 : vnc (Unpatched Vulnerability)
2024-06-03 00:00:00
RHEL 5 : vnc (Unpatched Vulnerability)
2024-06-03 00:00:00
cve
cve
CVE-2014-8240
2014-10-16 19:55:14
CVE-2014-6051
2014-09-30 16:55:07
nvd
nvd
CVE-2014-8240
2014-10-16 19:55:14
CVE-2014-6051
2014-09-30 16:55:07
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2014:1592-1)
2021-04-19 00:00:00
RedHat Update for tigervnc RHSA-2015:2233-03
2015-11-20 00:00:00
Oracle: Security Advisory (ELSA-2015-2233)
2015-11-25 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:02:54
Arbitrary Code Execution
2019-05-02 05:04:38
Arbitrary Code Execution
2019-05-02 05:04:38
debiancve
debiancve
CVE-2014-6051
2014-09-30 16:55:07
ubuntucve
ubuntucve
CVE-2014-6051
2014-09-24 00:00:00
CVE-2014-6052
2014-09-24 00:00:00
oraclelinux
oraclelinux
tigervnc security, bug fix, and enhancement update
2015-11-24 00:00:00
libvncserver security update
2014-11-11 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities in TigerVNC affect PowerKVM
2018-06-18 01:35:11
amazon
amazon
Medium: tigervnc
2015-12-14 10:00:00
redhat
redhat
(RHSA-2015:0113) Moderate: libvncserver security update
2015-02-02 00:00:00
(RHSA-2014:1826) Moderate: libvncserver security update
2014-11-11 00:00:00
centos
centos
tigervnc security update
2015-11-30 19:53:52
libvncserver security update
2014-11-11 18:36:28
mageia
mageia
Updated tigervnc packages fix security vulnerabilities
2015-11-26 23:47:39
Updated libvncserver & remmina packages fix security vulnerabilities
2014-10-07 13:22:51
securityvulns
securityvulns
[oCERT-2014-007] libvncserver multiple issues
2014-09-29 00:00:00
libvncserver multiple security vulnerabilities
2014-09-29 00:00:00
ubuntu
ubuntu
LibVNCServer vulnerabilities
2014-09-29 00:00:00
iTALC vulnerabilities
2020-10-20 00:00:00
archlinux
archlinux
libvncserver: remote code execution, denial of service
2014-10-24 00:00:00
debian
debian
[SECURITY] [DSA 3081-1] libvncserver security update
2014-11-29 15:21:35
[SECURITY] [DLA 197-1] libvncserver security update
2015-04-14 16:05:48
[SECURITY] [DLA 1979-1] italc security update
2019-10-30 22:21:35
freebsd
freebsd
libvncserver -- multiple security vulnerabilities
2014-09-23 00:00:00
osv
osv
libvncserver - security update
2014-11-29 00:00:00
libvncserver - security update
2015-04-14 00:00:00
italc vulnerabilities
2020-10-20 16:35:20
fedora
fedora
[SECURITY] Fedora 19 Update: krfb-4.11.5-4.fc19
2014-10-08 19:11:38
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.015 Low
EPSS
Percentile
86.8%
Related for DEBIANCVE:CVE-2014-8240