MiracleLinux 7 : gtk-vnc-0.7.0-2.el7 (AXSA:2017-1910:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2017-1910:01 advisory. gtk-vnc is a VNC viewer widget for GTK2. It is built using coroutines allowing it to be completely asynchronous while remaining single threaded...

Linux Distros Unpatched Vulnerability : CVE-2017-5885

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple integer overflows in the 1 vncconnectionservermessage and 2 vnccolormapset functions in gtk-vnc before 0.7.0 allow remote servers to cause a denial of...

RHEL 5 : gtk-vnc (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - gtk-vnc: Integer overflow when processing SetColorMapEntries CVE-2017-5885 - gtk-vnc 0.4.2 and older...

RHEL 7 : gtk-vnc (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - gtk-vnc: Integer overflow when processing SetColorMapEntries CVE-2017-5885 - gtk-vnc before 0.7.0 does no...

RHEL 6 : gtk-vnc (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - gtk-vnc: Integer overflow when processing SetColorMapEntries CVE-2017-5885 - gtk-vnc 0.4.2 and older...

RHEL 6 : gtk-vnc (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - gtk-vnc: Integer overflow when processing SetColorMapEntries CVE-2017-5885 - gtk-vnc 0.4.2 and older...

RHEL 7 : gtk-vnc (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - gtk-vnc: Integer overflow when processing SetColorMapEntries CVE-2017-5885 - gtk-vnc before 0.7.0 does no...

Mageia: Security Advisory (MGASA-2017-0057)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2021:3125-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLED12: gtk-vnc-devel / gtk-vnc-lang / gtk-vnc2-devel / libgtk-vnc-1_0-0 / etc (SUSE-SU-2021:3125-1)

The remote SUSE Linux SLED12 / SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:3125-1 advisory. - CVE-2017-5885: Correctly validate color map range indexes bsc1024268. - CVE-2017-5884: Fix bounds checking for RRE,...

EulerOS Virtualization for ARM 64 3.0.6.0 : gtk-vnc (EulerOS-SA-2020-2010)

According to the versions of the gtk-vnc packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - An integer overflow flaw was found in gtk-vnc. A remote malicious VNC server could use this flaw to crash VNC viewers...

Huawei EulerOS: Security Advisory for gtk-vnc (EulerOS-SA-2017-1182)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for gtk-vnc (EulerOS-SA-2017-1181)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP2 : gtk-vnc (EulerOS-SA-2017-1182)

According to the versions of the gtk-vnc package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - It was found that gtk-vnc lacked proper bounds checking while processing messages using RRE, hextile, or copyrect encodings. A remote malicious...

EulerOS 2.0 SP1 : gtk-vnc (EulerOS-SA-2017-1181)

According to the versions of the gtk-vnc package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - It was found that gtk-vnc lacked proper bounds checking while processing messages using RRE, hextile, or copyrect encodings. A remote malicious...

CentOS 7 : gtk-vnc (CESA-2017:2258)

An update for gtk-vnc is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

gtk, gvnc, gvncpulse security update

CentOS Errata and Security Advisory CESA-2017:2258 An update for gtk-vnc is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

Scientific Linux Security Update : gtk-vnc on SL7.x x86_64 (20170801)

The following packages have been upgraded to a later upstream version: gtk-vnc 0.7.0. Security Fixes : - It was found that gtk-vnc lacked proper bounds checking while processing messages using RRE, hextile, or copyrect encodings. A remote malicious VNC server could use this flaw to crash VNC...

Oracle Linux 7 : gtk-vnc (ELSA-2017-2258)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2017-2258 advisory. - CVE-2017-5884 - fix bounds checking for RRE, hextile and copyrect encodings rhbz 1425367 Tenable has extracted the preceding description block direct...

gtk-vnc security, bug fix, and enhancement update

0.7.0-2 - Fix reserved data size rhbz 1416783 - Fix inverted args in tests rhbz 1416783 - Avoid sign extension problems rhbz 1416783 - Fix crash with opening via GSocketAddress rhbz 1416783 - Fix crash & error reporting during connection timeout rhbz 1441120 - Fix incompatibility with libvncserve...