Search CVE reports
11 – 20 of 47 results
Some fixes available 3 of 18
An issue was discovered in LibVNCServer before 0.9.13. Byte-aligned data is accessed through uint16_t pointers in libvncserver/translate.c. NOTE: Third parties do not consider this to be a vulnerability as there is no known path...
3 affected packages
veyon, x11vnc, libvncserver
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| veyon | Not affected | Not affected | Not affected | Not in release |
| x11vnc | Not affected | Not affected | Not affected | Not affected |
| libvncserver | Not affected | Not affected | Fixed | Fixed |
Some fixes available 3 of 18
An issue was discovered in LibVNCServer before 0.9.13. Byte-aligned data is accessed through uint32_t pointers in libvncclient/rfbproto.c. NOTE: there is reportedly "no trust boundary crossed.
3 affected packages
libvncserver, veyon, x11vnc
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libvncserver | Not affected | Not affected | Fixed | Fixed |
| veyon | Not affected | Not affected | Not affected | Not in release |
| x11vnc | Not affected | Not affected | Not affected | Not affected |
Some fixes available 3 of 25
An issue was discovered in LibVNCServer before 0.9.13. An improperly closed TCP connection causes an infinite loop in libvncclient/sockets.c.
3 affected packages
libvncserver, x11vnc, veyon
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libvncserver | Not affected | Not affected | Fixed | Fixed |
| x11vnc | Not affected | Not affected | Not affected | Not affected |
| veyon | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
Some fixes available 17 of 39
An issue was discovered in LibVNCServer before 0.9.13. libvncserver/rfbregion.c has a NULL pointer dereference.
4 affected packages
veyon, libvncserver, x11vnc, vino
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| veyon | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
| libvncserver | Not affected | Not affected | Fixed | Fixed |
| x11vnc | Not affected | Not affected | Not affected | Not affected |
| vino | Fixed | Fixed | Fixed | Fixed |
Some fixes available 1 of 22
An issue was discovered in LibVNCServer before 0.9.13. libvncclient/tls_openssl.c has a NULL pointer dereference.
3 affected packages
libvncserver, veyon, x11vnc
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libvncserver | Not affected | Not affected | Fixed | Not affected |
| veyon | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
| x11vnc | Not affected | Not affected | Not affected | Not affected |
Some fixes available 2 of 24
An issue was discovered in LibVNCServer before 0.9.13. libvncserver/ws_decode.c can lead to a crash because of unaligned accesses in hybiReadAndDecode.
3 affected packages
libvncserver, veyon, x11vnc
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libvncserver | Not affected | Not affected | Not affected | Fixed |
| veyon | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
| x11vnc | Not affected | Not affected | Not affected | Not affected |
Some fixes available 3 of 25
libvncclient/sockets.c in LibVNCServer before 0.9.13 has a buffer overflow via a long socket filename.
3 affected packages
libvncserver, veyon, x11vnc
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libvncserver | Not affected | Not affected | Fixed | Fixed |
| veyon | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
| x11vnc | Not affected | Not affected | Not affected | Not affected |
An issue was discovered in LibVNCServer before 0.9.13. There is an information leak (of uninitialized memory contents) in the libvncclient/rfbproto.c ConnectToRFBRepeater function.
4 affected packages
vino, veyon, x11vnc, libvncserver
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| vino | Not affected | Not affected | Not affected | Not affected |
| veyon | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
| x11vnc | Not affected | Not affected | Needs evaluation | Needs evaluation |
| libvncserver | Not affected | Not affected | Needs evaluation | Needs evaluation |
Some fixes available 3 of 11
libvncclient/cursor.c in LibVNCServer through 0.9.12 has a HandleCursorShape integer overflow and heap-based buffer overflow via a large height or width value. NOTE: this may overlap CVE-2019-15690.
2 affected packages
libvncserver, x11vnc
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libvncserver | Not affected | Not affected | Not affected | Fixed |
| x11vnc | Not affected | Not affected | Not affected | Not affected |
Some fixes available 4 of 12
LibVNCServer 0.9.12 release and earlier contains heap buffer overflow vulnerability within the HandleCursorShape() function in libvncclient/cursor.c. An attacker sends cursor shapes with specially crafted dimensions, which can...
2 affected packages
libvncserver, x11vnc
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libvncserver | Not affected | Not affected | Fixed | Fixed |
| x11vnc | Not affected | Not affected | Not affected | Not affected |