SUSE CVE-2020-14400

An issue was discovered in LibVNCServer before 0.9.13. Byte-aligned data is accessed through uint16t pointers in libvncserver/translate.c. NOTE: Third parties do not consider this to be a vulnerability as there is no known path of exploitation or cross of a trust boundary...

Unspecified Vulnerability in LibVNCServer (CNVD-2020-36786)

LibVNCServer is a cross-platform C library that supports the implementation of VNC Virtual Network Computing server or client functionality in programs. A security vulnerability exists in LibVNCServer versions prior to 0.9.13. The vulnerability can be exploited by an attacker to access byte-align...

CVE-2020-14400

An issue was discovered in LibVNCServer before 0.9.13. Byte-aligned data is accessed through uint16t pointers in libvncserver/translate.c. NOTE: Third parties do not consider this to be a vulnerability as there is no known path of exploitation or cross of a trust boundary...

PT-2020-2988 · Libvncserver +4 · Libvncserver +4

Name of the Vulnerable Software and Affected Versions: LibVNCServer versions prior to 0.9.13 Description: An issue in LibVNCServer is related to errors in the code, specifically in the libvncserver/translate.c component. The issue involves accessing byte-aligned data through uint16 t pointers. It...

Code injection

DISPUTED The disasinsn function in target/i386/translate.c in QEMU before 2.9.0, when TCG mode without hardware acceleration is used, does not limit the instruction size, which allows local users to gain privileges by creating a modified basic block that injects code into a setuid program, as...