CVE-2018-7225
CVE-2018-7225 in LibVNCServer : rfbProcessClientNormalMessage() in rfbserver.c does not sanitize msg.cct.length, allowing access to uninitialized and potentially sensitive data via crafted VNC packets. This affects LibVNCServer up to version 0.9.11. Multiple downstream advisories document fixes i...