18 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-20749
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LibVNC before 0.9.12 contains a heap out-of-bounds write vulnerability in libvncserver/rfbserver.c. The fix for CVE-2018-15127 was incomplete. CVE-2018-20749 No...
SUSE: Security Advisory (SUSE-SU-2019:0283-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2019:0313-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-4587-1: iTALC vulnerabilities
Nicolas Ruff discovered that iTALC had buffer overflows, divide-by-zero errors and didn't check malloc return values. A remote attacker could use these issues to cause a denial of service or possibly execute arbitrary code. CVE-2014-6051, CVE-2014-6052, CVE-2014-6053, CVE-2014-6054, CVE-2014-6055...
Ubuntu: Security Advisory (USN-4547-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for libvncserver (EulerOS-SA-2019-1068)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2019:0313-2 Security update for LibVNCServer
This update for LibVNCServer fixes the following issues: Security issues fixed: - CVE-2018-20749: Fixed a heap out of bounds write vulnerability in rfbserver.c bsc1123828 - CVE-2018-20750: Fixed a heap out of bounds write vulnerability in rfbserver.c bsc1123832 - CVE-2018-20748: Fixed multiple he...
OPENSUSE-SU-2019:0196-1 Security update for LibVNCServer
This update for LibVNCServer fixes the following issues: Security issues fixed: - CVE-2018-20749: Fixed a heap out of bounds write vulnerability in rfbserver.c bsc1123828 - CVE-2018-20750: Fixed a heap out of bounds write vulnerability in rfbserver.c bsc1123832 - CVE-2018-20748: Fixed multiple he...
EulerOS 2.0 SP5 : libvncserver (EulerOS-SA-2019-1068)
According to the versions of the libvncserver package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - LibVNC before 0.9.12 contains multiple heap out-of-bounds write vulnerabilities in libvncclient/rfbproto.c. The fix for CVE-2018-20019 was...
openSUSE Security Update : LibVNCServer (openSUSE-2019-200)
This update for LibVNCServer fixes the following issues: Security issues fixed : - CVE-2018-20749: Fixed a heap out of bounds write vulnerability in rfbserver.c bsc1123828 - CVE-2018-20750: Fixed a heap out of bounds write vulnerability in rfbserver.c bsc1123832 - CVE-2018-20748: Fixed multiple...
openSUSE Security Update : LibVNCServer (openSUSE-2019-196)
This update for LibVNCServer fixes the following issues : Security issues fixed : - CVE-2018-20749: Fixed a heap out of bounds write vulnerability in rfbserver.c bsc1123828 - CVE-2018-20750: Fixed a heap out of bounds write vulnerability in rfbserver.c bsc1123832 - CVE-2018-20748: Fixed multiple...
openSUSE: Security Advisory for LibVNCServer (openSUSE-SU-2019:0200-1)
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
SUSE SLES11 Security Update : LibVNCServer (SUSE-SU-2019:13952-1)
This update for LibVNCServer fixes the following issues : Security issues fixed : CVE-2018-20749: Fixed a heap out of bounds write vulnerability in rfbserver.c bsc1123828 CVE-2018-20750: Fixed a heap out of bounds write vulnerability in rfbserver.c bsc1123832 CVE-2018-20748: Fixed multiple heap...
SUSE-SU-2019:13952-1 Security update for LibVNCServer
This update for LibVNCServer fixes the following issues: Security issues fixed: - CVE-2018-20749: Fixed a heap out of bounds write vulnerability in rfbserver.c bsc1123828 - CVE-2018-20750: Fixed a heap out of bounds write vulnerability in rfbserver.c bsc1123832 - CVE-2018-20748: Fixed multiple he...
SUSE-SU-2019:0313-1 Security update for LibVNCServer
This update for LibVNCServer fixes the following issues: Security issues fixed: - CVE-2018-20749: Fixed a heap out of bounds write vulnerability in rfbserver.c bsc1123828 - CVE-2018-20750: Fixed a heap out of bounds write vulnerability in rfbserver.c bsc1123832 - CVE-2018-20748: Fixed multiple he...
SUSE-SU-2019:0283-1 Security update for LibVNCServer
This update for LibVNCServer fixes the following issues: Security issues fixed: - CVE-2018-20749: Fixed a heap out of bounds write vulnerability in rfbserver.c bsc1123828 - CVE-2018-20750: Fixed a heap out of bounds write vulnerability in rfbserver.c bsc1123832 - CVE-2018-20748: Fixed multiple he...
Debian DLA-1652-1 : libvncserver security update
A vulnerability was found by Kaspersky Lab in libvncserver, a C library to implement VNC server/client functionalities. In addition, some of the vulnerabilities addressed in DLA 1617-1 were found to have incomplete fixes, and have been addressed in this update. CVE-2018-15126 An attacker can caus...
CVE-2018-20749
LibVNC/libvncserver (vncserver) contains a heap out-of-bounds write in libvncserver/rfbserver.c. CVE-2018-20749 and CVE-2018-20750 reference heap-out-of-bounds writes with incomplete fixes related to CVE-2018-15127; advisories note that the fix for the earlier CVE was incomplete and Debian/ALAS e...