Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports

Toggle filters

11 – 20 of 22 results

CVE-2018-20020

Medium priority

Some fixes available 8 of 22

LibVNC before commit 7b1ef0ffc4815cab9a96c7278394152bdc89dc4d contains heap out-of-bound write vulnerability inside structure in VNC client code that can result remote code execution

5 affected packages

italc, libvncserver, ssvnc, tightvnc, x11vnc

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
italc Not in release Not in release Not in release Fixed Fixed
libvncserver Not affected Not affected Not affected Fixed Fixed
ssvnc Not affected Not affected Not affected Vulnerable Fixed
tightvnc Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
x11vnc Not affected Not affected Not affected Not affected Not affected
Show less packages

CVE-2018-20019

Medium priority

Some fixes available 6 of 7

LibVNC before commit a83439b9fbe0f03c48eb94ed05729cb016f8b72f contains multiple heap out-of-bound write vulnerabilities in VNC client code that can result remote code execution

3 affected packages

italc, libvncserver, x11vnc

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
italc Not in release Fixed Fixed
libvncserver Not affected Fixed Fixed
x11vnc Not affected Not affected Not affected
Show less packages

CVE-2018-15127

Medium priority

Some fixes available 6 of 7

LibVNC before commit 502821828ed00b4a2c4bef90683d0fd88ce495de contains heap out-of-bound write vulnerability in server code of file transfer extension that can result remote code execution

3 affected packages

italc, libvncserver, x11vnc

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
italc Not in release Fixed Fixed
libvncserver Not affected Fixed Fixed
x11vnc Not affected Not affected Not affected
Show less packages

CVE-2018-7225

Medium priority

Some fixes available 29 of 41

An issue was discovered in LibVNCServer through 0.9.11. rfbProcessClientNormalMessage() in rfbserver.c does not sanitize msg.cct.length, leading to access to uninitialized and potentially sensitive data or possibly unspecified...

4 affected packages

italc, libvncserver, tightvnc, vino

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
italc Not in release Not in release Not in release Fixed Fixed
libvncserver Fixed Fixed Fixed Fixed Fixed
tightvnc Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
vino Fixed Fixed Fixed Fixed Fixed
Show less packages

CVE-2016-9942

Medium priority
Fixed

Heap-based buffer overflow in ultra.c in LibVNCClient in LibVNCServer before 0.9.11 allows remote servers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted FramebufferUpdate message...

2 affected packages

italc, libvncserver

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
italc Not in release Fixed Fixed
libvncserver Fixed
Show less packages

CVE-2016-9941

Medium priority
Fixed

Heap-based buffer overflow in rfbproto.c in LibVNCClient in LibVNCServer before 0.9.11 allows remote servers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted FramebufferUpdate...

2 affected packages

italc, libvncserver

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
italc Not in release Not affected Fixed
libvncserver Fixed
Show less packages

CVE-2014-6055

Medium priority

Some fixes available 4 of 5

Multiple stack-based buffer overflows in the File Transfer feature in rfbserver.c in LibVNCServer 0.9.9 and earlier allow remote authenticated users to cause a denial of service (crash) and possibly execute arbitrary code via a...

3 affected packages

italc, krfb, libvncserver

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
italc Not in release Not affected Fixed
krfb
libvncserver
Show less packages

CVE-2014-6054

Medium priority

Some fixes available 4 of 5

The rfbProcessClientNormalMessage function in libvncserver/rfbserver.c in LibVNCServer 0.9.9 and earlier allows remote attackers to cause a denial of service (divide-by-zero error and server crash) via a zero value in the scaling...

3 affected packages

italc, krfb, libvncserver

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
italc Not in release Not affected Fixed
krfb
libvncserver
Show less packages

CVE-2014-6053

Medium priority

Some fixes available 17 of 30

The rfbProcessClientNormalMessage function in libvncserver/rfbserver.c in LibVNCServer 0.9.9 and earlier does not properly handle attempts to send a large amount of ClientCutText data, which allows remote attackers to cause a...

5 affected packages

italc, krfb, libvncserver, tightvnc, vino

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
italc Not in release Not in release Not in release Not affected Fixed
krfb Not affected Not affected Not affected Not affected Not affected
libvncserver Not affected Not affected Not affected Not affected Not affected
tightvnc Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
vino Fixed Fixed Fixed Fixed Fixed
Show less packages

CVE-2014-6052

Medium priority

Some fixes available 4 of 5

The HandleRFBServerMessage function in libvncclient/rfbproto.c in LibVNCServer 0.9.9 and earlier does not check certain malloc return values, which allows remote VNC servers to cause a denial of service (application crash) or...

3 affected packages

italc, krfb, libvncserver

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
italc Not in release Fixed Fixed
krfb
libvncserver
Show less packages
  1. Previous page
  2. 1
  3. 2
  4. 3
  5. Next page
Export to JSON