Updated libvncserver & remmina packages fix security vulnerabilities

2014-10-0713:22:51

Gentoo Foundation

advisories.mageia.org

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.886 High

EPSS

Percentile

98.7%

JSON

Updated libvncserver and remmina packages fix security vulnerabilities: A malicious VNC server can trigger incorrect memory management handling by advertising a large screen size parameter to the VNC client. This would result in multiple memory corruptions and could allow remote code execution on the VNC client (CVE-2014-6051, CVE-2014-6052). A malicious VNC client can trigger multiple DoS conditions on the VNC server by advertising a large screen size, ClientCutText message length and/or a zero scaling factor parameter (CVE-2014-6053, CVE-2014-6054). A malicious VNC client can trigger multiple stack-based buffer overflows by passing a long file and directory names and/or attributes (FileTime) when using the file transfer message feature (CVE-2014-6055). The remmina package had been built with a bundled copy of libvncserver. It has been rebuilt against the system libvncserver library to resolve these issues.

OSVersionArchitecturePackageVersionFilename
Mageia3noarchlibvncserver< 0.9.9-2.2libvncserver-0.9.9-2.2.mga3
Mageia3noarchremmina< 1.0.0-3.2remmina-1.0.0-3.2.mga3
Mageia4noarchlibvncserver< 0.9.9-3.2libvncserver-0.9.9-3.2.mga4
Mageia4noarchremmina< 1.0.0-4.4remmina-1.0.0-4.4.mga4

OS	Version	Architecture	Package	Version	Filename
Mageia	3	noarch	libvncserver	< 0.9.9-2.2	libvncserver-0.9.9-2.2.mga3
Mageia	3	noarch	remmina	< 1.0.0-3.2	remmina-1.0.0-3.2.mga3
Mageia	4	noarch	libvncserver	< 0.9.9-3.2	libvncserver-0.9.9-3.2.mga4
Mageia	4	noarch	remmina	< 1.0.0-4.4	remmina-1.0.0-4.4.mga4