Security update for LibVNCServer (important)

openSUSE Security Update: Security update for LibVNCServer Announcement ID: openSUSE-SU-2020:0624-1 Rating: important References: 1155419 1160471 1170441 Cross-References: CVE-2019-15681 CVE-2019-15690 CVE-2019-20788 Affected Products: openSUSE Leap 15.1 An update that fixes three vulnerabilities...

MGASA-2020-0207 Updated libvncserver packages fix security vulnerability

Updated libvncserver packages fix security vulnerability: libvncclient/cursor.c in LibVNCServer through 0.9.12 has a HandleCursorShape integer overflow and heap-based buffer overflow via a large height or width value CVE-2019-20788...

Updated libvncserver packages fix security vulnerability

Updated libvncserver packages fix security vulnerability: libvncclient/cursor.c in LibVNCServer through 0.9.12 has a HandleCursorShape integer overflow and heap-based buffer overflow via a large height or width value CVE-2019-20788...

SUSE SLED15 / SLES15 Security Update : LibVNCServer (SUSE-SU-2020:1164-1)

This update for LibVNCServer fixes the following issues : CVE-2019-15690: Fixed a heap buffer overflow bsc1160471. CVE-2019-15681: Fixed a memory leak which could have allowed to a remote attacker to read stack memory bsc1155419. CVE-2019-20788: Fixed a integer overflow and heap-based buffer...

SUSE SLES12 Security Update : LibVNCServer (SUSE-SU-2020:1165-1)

This update for LibVNCServer fixes the following issues : CVE-2019-15690: Fixed a heap buffer overflow bsc1160471. CVE-2019-15681: Fixed a memory leak which could have allowed to a remote attacker to read stack memory bsc1155419. CVE-2019-20788: Fixed a integer overflow and heap-based buffer...

GNOME security, bug fix, and enhancement update

accountsservice 0.6.50-8 - Dont set HasNoUsers=true if realmd has providers Related: 1750516 appstream-data 8-20191129 - Regenerate the RHEL metadata to include the latest evince changes - Resolves: 1768461 clutter 1.26.2-8 - rebuild to get the new in 8.2.0 - plus address 1785233 evince 3.28.4-4 ...

CVE-2019-20788

A flaw was found in libvncserver in versions through 0.9.12. A large height or width value may cause an integer overflow or a heap-based buffer overflow. The highest threat from this vulnerability is to system availability...

Amazon Linux 2 : libvncserver (ALAS-2020-1411)

The version of libvncserver installed on the remote host is prior to 0.9.9-14. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2020-1411 advisory. Integer Overflow or Wraparound leads to Heap-based Buffer Overflow CVE-2019-15690 Tenable has extracted the preceding...

CVE-2019-20788

libvncclient/cursor.c in LibVNCServer through 0.9.12 has a HandleCursorShape integer overflow and heap-based buffer overflow via a large height or width value. NOTE: this may overlap CVE-2019-15690...

CVE-2019-20788

libvncclient/cursor.c in LibVNCServer through 0.9.12 has a HandleCursorShape integer overflow and heap-based buffer overflow via a large height or width value. NOTE: this may overlap CVE-2019-15690...

CVE-2019-20788

libvncclient/cursor.c in LibVNCServer through 0.9.12 has a HandleCursorShape integer overflow and heap-based buffer overflow via a large height or width value. NOTE: this may overlap CVE-2019-15690...

CVE-2019-20788

libvncclient/cursor.c in LibVNCServer through 0.9.12 has a HandleCursorShape integer overflow and heap-based buffer overflow via a large height or width value. NOTE: this may overlap CVE-2019-15690...

CVE-2019-20788

CVE-2019-20788 affects LibVNCServer (LibVNCClient) in libvncclient/cursor.c up to version 0.9.12, where HandleCursorShape can overflow an integer value and trigger a heap-based buffer overflow when a cursor shape with a large height or width is supplied. This corresponds to an impact on code hand...

CVE-2019-20788

libvncclient/cursor.c in LibVNCServer through 0.9.12 has a HandleCursorShape integer overflow and heap-based buffer overflow via a large height or width value. NOTE: this may overlap CVE-2019-15690...

CVE-2019-20788

libvncclient/cursor.c in LibVNCServer through 0.9.12 has a HandleCursorShape integer overflow and heap-based buffer overflow via a large height or width value. NOTE: this may overlap CVE-2019-15690...

Important: libvncserver

Issue Overview: Integer Overflow or Wraparound leads to Heap-based Buffer Overflow CVE-2019-15690 Affected Packages: libvncserver Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the difference between AL2 Core and AL2 Extras advisories. Issue...

CentOS 7 : libvncserver (RHSA-2020:0913)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:0913 advisory. - libvncserver: HandleCursorShape integer overflow resulting in heap-based buffer overflow CVE-2019-15690 - libvncclient/cursor.c in LibVNCServer throu...

Oracle Linux 7 : libvncserver (ELSA-2020-0913)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-0913 advisory. 0.9.9-14 - Fix CVE-2019-15690 an integer overflow in HandleCursorShape in a client bug 1814339 Tenable has extracted the preceding description block directly fr...

CentOS: Security Advisory for libvncserver (CESA-2020:0913)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

libvncserver security update

CentOS Errata and Security Advisory CESA-2020:0913 An update for libvncserver is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...