Important: Red Hat Security Advisory: libvncserver security update

An update for libvncserver is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

libvncserver: websocket decoding buffer overflow

A flaw was found in libvncserver. A heap-based buffer overflow within the websocket decoding functionality is possible, which can lead to exploitation by a malicious attacker to overwrite a function pointer. The highest threat from this vulnerability is to data confidentiality and integrity as we...

ALSA-2020:3385 Important: libvncserver security update

LibVNCServer is a C library that enables you to implement VNC server functionality into own programs. Security Fixes: libvncserver: websocket decoding buffer overflow CVE-2017-18922 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related...

Important: libvncserver security update

LibVNCServer is a C library that enables you to implement VNC server functionality into own programs. Security Fixes: libvncserver: websocket decoding buffer overflow CVE-2017-18922 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related...

libvncserver security update

0.9.11-15.1 - Fix NVR Related: 1852356 0.9.11-15 - Fix CVE-2017-18922 Resolves: 1852356...

SUSE SLES12 Security Update : LibVNCServer (SUSE-SU-2020:2167-1)

This update for LibVNCServer fixes the following issues : security update fix CVE-2018-21247 bsc1173874, uninitialized memory contents are vulnerable to Information leak fix CVE-2019-20839 bsc1173875, buffer overflow in ConnectClientToUnixSock fix CVE-2019-20840 bsc1173876, unaligned accesses in...

RHEL 8 : libvncserver (RHSA-2020:3385)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:3385 advisory. LibVNCServer is a C library that enables you to implement VNC server functionality into own programs. Security Fixes: libvncserver: websocket decodin...

CentOS: Security Advisory for libvncserver (CESA-2020:3281)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

SUSE-SU-2020:2167-1 Security update for LibVNCServer

This update for LibVNCServer fixes the following issues: - security update fix CVE-2018-21247 bsc1173874, uninitialized memory contents are vulnerable to Information leak fix CVE-2019-20839 bsc1173875, buffer overflow in ConnectClientToUnixSock fix CVE-2019-20840 bsc1173876, unaligned accesses in...

libvncserver security update

CentOS Errata and Security Advisory CESA-2020:3281 An update for libvncserver is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

CentOS 7 : libvncserver (RHSA-2020:3281)

The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:3281 advisory. - It was discovered that websockets.c in LibVNCServer prior to 0.9.12 did not properly decode certain WebSocket frames. A malicious attacker could exploit this ...

Denial Of Service (DoS)

libvncserver is vulnerable to denial of service DoS. An issue was discovered in LibVNCServer before 0.9.13. libvncclient/rfbproto.c does not limit TextChat size...

Arbitrary Code Execution

LibVNCServer is vulnerable to arbitrary code execution. An integer overflow in pixelvalue in libvncserver/scale.c allows an attacker to execute arbitrary code...

Denial Of Service (DoS)

libvncserver is vulnerable to denial of service DoS. The vulnerability exists as libvncclient/sockets.c in LibVNCServer before 0.9.13 has a buffer overflow via a long socket filename...

Oracle Linux 7 : libvncserver (ELSA-2020-3281)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-3281 advisory. 0.9.9-14.1 - Fix CVE-2017-18922 Resolves: 1852509 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note...

Denial Of Service (DoS)

libvncserver is vulnerable to denial of service DoS. The vulnerability exists through a websocket decoding buffer overflow...

libvncserver security update

0.9.9-14.1 - Fix CVE-2017-18922 Resolves: 1852509...

Scientific Linux Security Update : libvncserver on SL7.x x86_64 (20200803)

Security Fixes : - libvncserver: websocket decoding buffer overflow CVE-2017-18922 C Tenable Network Security, Inc. The descriptive text is C Scientific Linux. include'compat.inc'; if description scriptid139301; scriptversion"1.3"; scriptsetattributeattribute:"pluginmodificationdate",...

Important: Red Hat Security Advisory: libvncserver security update

An update for libvncserver is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

libvncserver: websocket decoding buffer overflow

A flaw was found in libvncserver. A heap-based buffer overflow within the websocket decoding functionality is possible, which can lead to exploitation by a malicious attacker to overwrite a function pointer. The highest threat from this vulnerability is to data confidentiality and integrity as we...