29 matches found
Linux Distros Unpatched Vulnerability : CVE-2020-25708
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A divide by zero issue was found to occur in libvncserver-0.9.12. A malicious client could use this flaw to send a specially crafted message that, when processe...
Debian: Security Advisory (DLA-3125-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
NewStart CGSL MAIN 6.02 : libvncserver Multiple Vulnerabilities (NS-SA-2022-0048)
The remote NewStart CGSL host, running version MAIN 6.02, has libvncserver packages installed that are affected by multiple vulnerabilities: - An issue was discovered in LibVNCServer before 0.9.13. There is an information leak of uninitialized memory contents in the libvncclient/rfbproto.c...
SUSE SLES11 Security Update : LibVNCServer (SUSE-SU-2020:14549-1)
The remote SUSE Linux SLES11 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2020:14549-1 advisory. - A divide by zero issue was found to occur in libvncserver-0.9.12. A malicious client could use this flaw to send a specially crafted message that,...
SUSE: Security Advisory (SUSE-SU-2020:14549-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2020:3515-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
libvncserver security update
0.9.11-17 - Fix CVE-2020-25708 Resolves: 1898078 0.9.11-16 - Fix CVE-2019-20839 Resolves: 1851032 - Fix CVE-2018-21247 Resolves: 1852516 - Fix CVE-2020-14405 Resolves: 1860527 - Fix CVE-2020-14397 Resolves: 1861152...
CentOS 8 : libvncserver (CESA-2021:1811)
The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2021:1811 advisory. - libvncserver: uninitialized memory contents are vulnerable to Information Leak CVE-2018-21247 - libvncserver: buffer overflow in...
ALSA-2021:1811 Moderate: libvncserver security update
LibVNCServer is a C library that enables you to implement VNC server functionality into own programs. Security Fixes: libvncserver: uninitialized memory contents are vulnerable to Information Leak CVE-2018-21247 libvncserver: buffer overflow in ConnectClientToUnixSock CVE-2019-20839 libvncserver:...
SUSE: Security Advisory (SUSE-SU-2020:3550-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP5 : libvncserver (EulerOS-SA-2021-1688)
According to the version of the libvncserver package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - A divide by zero issue was found to occur in libvncserver-0.9.12. A malicious client could use this flaw to send a specially crafted message...
Huawei EulerOS: Security Advisory for libvncserver (EulerOS-SA-2021-1688)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP8 : libvncserver (EulerOS-SA-2021-1153)
According to the versions of the libvncserver package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A divide by zero issue was found to occur in libvncserver-0.9.12. A malicious client could use this flaw to send a specially crafted messag...
EulerOS 2.0 SP3 : libvncserver (EulerOS-SA-2021-1091)
According to the versions of the libvncserver package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Heap-based buffer overflow in ultra.c in LibVNCClient in LibVNCServer before 0.9.11 allows remote servers to cause a denial of service...
SUSE SLES12 Security Update : LibVNCServer (SUSE-SU-2020:3550-1)
This update for LibVNCServer fixes the following issues : CVE-2020-25708 bsc1178682, libvncserver/rfbserver.c has a divide by zero which could result in DoS Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has...
SUSE SLED15 / SLES15 Security Update : LibVNCServer (SUSE-SU-2020:3515-1)
This update for LibVNCServer fixes the following issues : CVE-2020-25708 bsc1178682, libvncserver/rfbserver.c has a divide by zero which could result in DoS Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has...
openSUSE Security Update : LibVNCServer (openSUSE-2020-2025)
This update for LibVNCServer fixes the following issues : - CVE-2020-25708 bsc1178682, libvncserver/rfbserver.c has a divide by zero which could result in DoS This update was imported from the SUSE:SLE-15:Update update project. C Tenable Network Security, Inc. The descriptive text and package...
Security update for LibVNCServer (important)
openSUSE Security Update: Security update for LibVNCServer Announcement ID: openSUSE-SU-2020:2097-1 Rating: important References: 1178682 Cross-References: CVE-2020-25708 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for...
CVE-2020-25708
A divide by zero issue was found to occur in libvncserver-0.9.12. A malicious client could use this flaw to send a specially crafted message that, when processed by the VNC server, would lead to a floating point exception, resulting in a denial of service...
CVE-2020-25708
A divide by zero issue was found to occur in libvncserver-0.9.12. A malicious client could use this flaw to send a specially crafted message that, when processed by the VNC server, would lead to a floating point exception, resulting in a denial of service...