13 matches found
Linux Distros Unpatched Vulnerability : CVE-2020-14405
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in LibVNCServer before 0.9.13. libvncclient/rfbproto.c does not limit TextChat size. CVE-2020-14405 Note that Nessus relies on the...
NewStart CGSL MAIN 6.02 : libvncserver Multiple Vulnerabilities (NS-SA-2022-0048)
The remote NewStart CGSL host, running version MAIN 6.02, has libvncserver packages installed that are affected by multiple vulnerabilities: - An issue was discovered in LibVNCServer before 0.9.13. There is an information leak of uninitialized memory contents in the libvncclient/rfbproto.c...
libvncserver security update
0.9.11-17 - Fix CVE-2020-25708 Resolves: 1898078 0.9.11-16 - Fix CVE-2019-20839 Resolves: 1851032 - Fix CVE-2018-21247 Resolves: 1852516 - Fix CVE-2020-14405 Resolves: 1860527 - Fix CVE-2020-14397 Resolves: 1861152...
CentOS 8 : libvncserver (CESA-2021:1811)
The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2021:1811 advisory. - libvncserver: uninitialized memory contents are vulnerable to Information Leak CVE-2018-21247 - libvncserver: buffer overflow in...
ALSA-2021:1811 Moderate: libvncserver security update
LibVNCServer is a C library that enables you to implement VNC server functionality into own programs. Security Fixes: libvncserver: uninitialized memory contents are vulnerable to Information Leak CVE-2018-21247 libvncserver: buffer overflow in ConnectClientToUnixSock CVE-2019-20839 libvncserver:...
Huawei EulerOS: Security Advisory for libvncserver (EulerOS-SA-2020-2362)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : LibVNCServer vulnerabilities (USN-4434-1)
The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4434-1 advisory. Ramin Farajpour Cami discovered that LibVNCServer incorrectly handled certain malformed unix socket names. A remote attacker coul...
CVE-2020-14405
An issue was discovered in LibVNCServer before 0.9.13. libvncclient/rfbproto.c does not limit TextChat size...
Ubuntu: Security Advisory (USN-4434-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated libvncserver packages fix security vulnerability
Updated libvncserver packages fix security vulnerabilities: libvncclient/sockets.c in LibVNCServer had a buffer overflow via a long socket filename CVE-2019-20839. libvncserver/rfbregion.c had a NULL pointer dereference CVE-2020-14397. Byte-aligned data was accessed through uint32t pointers in...
Debian: Security Advisory (DLA-2264-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
UBUNTU-CVE-2020-14405
An issue was discovered in LibVNCServer before 0.9.13. libvncclient/rfbproto.c does not limit TextChat size...
CVE-2020-14405
CVE-2020-14405 is reported in LibVNCServer prior to 0.9.13 for libvncclient/rfbproto.c not limiting TextChat size. The connected Nessus advisories confirm the presence of this vulnerability across several distributions and list the CVE as affecting libvncserver, but do not provide exploit details...