krfb -- Multiple security issues in bundled libvncserver

2014-09-23T00:00:00
ID FB25333D-442F-11E4-98F3-5453ED2E2B49
Type freebsd
Reporter FreeBSD
Modified 2014-09-23T00:00:00

Description

Martin Sandsmark reports:

krfb 4.14 [and earlier] embeds libvncserver which has had several security issues. Several remotely exploitable security issues have been uncovered in libvncserver, some of which might allow a remote authenticated user code execution or application crashes.