Lucene search
PRIOn knowledge basePRION:CVE-2018-6307HistoryDec 19, 2018 - 4:29 p.m.
Heap overflow
2018-12-1916:29:00
PRIOn knowledge base
www.prio-n.com
2
LibVNC before commit ca2a5ac02fbbadd0a21fabba779c1ea69173d10b contains heap use-after-free vulnerability in server code of file transfer extension that can result remote code execution.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ubuntu_linux | eq | 16.04 | |
| ubuntu_linux | eq | 14.04 | |
| ubuntu_linux | eq | 18.04 | |
| ubuntu_linux | eq | 18.10 | |
| debian_linux | eq | 8.0 | |
| debian_linux | eq | 9.0 | |
| libvncserver | lt | 0.9.12 |
References
github.com/LibVNC/libvncserver/issues/241
ics-cert.kaspersky.com/advisories/klcert-advisories/2018/12/19/klcert-18-026-libvnc-heap-use-after-free/
lists.debian.org/debian-lts-announce/2018/12/msg00017.html
lists.debian.org/debian-lts-announce/2019/10/msg00042.html
usn.ubuntu.com/3877-1/
www.debian.org/security/2019/dsa-4383
Related
checkpoint_advisories
checkpoint_advisories
LibVNC LibVNCServer Use After Free (CVE-2018-6307)
2020-02-25 00:00:00
nvd
nvd
CVE-2018-6307
2018-12-19 16:29:00
debiancve
debiancve
CVE-2018-6307
2018-12-19 16:29:00
redhatcve
redhatcve
CVE-2018-6307
2018-12-20 07:49:54
veracode
veracode
Remote Code Execution (RCE)
2018-12-27 05:16:36
osv
osv
CVE-2018-6307
2018-12-19 16:29:00
libvncserver - security update
2018-12-25 00:00:00
libvncserver - security update
2019-02-03 00:00:00
cvelist
cvelist
CVE-2018-6307
2018-12-19 16:00:00
ubuntucve
ubuntucve
CVE-2018-6307
2018-12-19 00:00:00
cve
cve
CVE-2018-6307
2018-12-19 16:29:00
openvas
openvas
Huawei EulerOS: Security Advisory for libvncserver (EulerOS-SA-2019-1033)
2020-01-23 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:13927-1)
2021-06-09 00:00:00
Mageia: Security Advisory (MGASA-2019-0037)
2022-01-28 00:00:00
nessus
nessus
EulerOS 2.0 SP5 : libvncserver (EulerOS-SA-2019-1033)
2019-02-15 00:00:00
SUSE SLES11 Security Update : LibVNCServer (SUSE-SU-2019:13927-1)
2019-01-14 00:00:00
Debian DLA-1617-1 : libvncserver security update
2018-12-27 00:00:00
debian
debian
[SECURITY] [DLA 1617-1] libvncserver security update
2018-12-27 03:53:08
[SECURITY] [DSA 4383-1] libvncserver security update
2019-02-03 20:52:03
[SECURITY] [DSA 4383-1] libvncserver security update
2019-02-03 20:52:03
mageia
mageia
Updated libvncserver & x11vnc packages fix security vulnerabilities
2019-01-16 01:15:34
suse
suse
Security update for LibVNCServer (important)
2019-01-12 00:00:00
Security update for LibVNCServer (important)
2019-01-18 00:00:00
ubuntu
ubuntu
LibVNCServer vulnerabilities
2019-01-31 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1900
2021-07-02 17:22:34