Search CVE reports
41 – 47 of 47 results
Some fixes available 4 of 5
The rfbProcessClientNormalMessage function in libvncserver/rfbserver.c in LibVNCServer 0.9.9 and earlier allows remote attackers to cause a denial of service (divide-by-zero error and server crash) via a zero value in the scaling...
3 affected packages
italc, krfb, libvncserver
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| italc | — | — | Not in release | Not affected |
| krfb | — | — | — | — |
| libvncserver | — | — | — | — |
Some fixes available 19 of 34
The rfbProcessClientNormalMessage function in libvncserver/rfbserver.c in LibVNCServer 0.9.9 and earlier does not properly handle attempts to send a large amount of ClientCutText data, which allows remote attackers to cause a...
5 affected packages
italc, krfb, libvncserver, vino, tightvnc
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| italc | Not in release | Not in release | Not in release | Not affected |
| krfb | Not affected | Not affected | Not affected | Not affected |
| libvncserver | Not affected | Not affected | Not affected | Not affected |
| vino | Fixed | Fixed | Fixed | Fixed |
| tightvnc | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
Some fixes available 3 of 4
The HandleRFBServerMessage function in libvncclient/rfbproto.c in LibVNCServer 0.9.9 and earlier does not check certain malloc return values, which allows remote VNC servers to cause a denial of service (application crash) or...
3 affected packages
italc, krfb, libvncserver
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| italc | — | — | Not in release | Not affected |
| krfb | — | — | — | — |
| libvncserver | — | — | — | — |
Some fixes available 3 of 4
Integer overflow in the MallocFrameBuffer function in vncviewer.c in LibVNCServer 0.9.9 and earlier allows remote VNC servers to cause a denial of service (crash) and possibly execute arbitrary code via an advertisement for a...
3 affected packages
italc, krfb, libvncserver
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| italc | — | — | Not in release | Not affected |
| krfb | — | — | — | — |
| libvncserver | — | — | — | — |
Some fixes available 4 of 11
The rfbSendFramebufferUpdate function in server/libvncserver/rfbserver.c in vino-server in Vino 2.x before 2.28.3, 2.32.x before 2.32.2, 3.0.x before 3.0.2, and 3.1.x before 3.1.1, when tight encoding is used, allows...
3 affected packages
kdenetwork, libvncserver, vino
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| kdenetwork | — | — | — | — |
| libvncserver | — | — | — | — |
| vino | — | — | — | — |
Some fixes available 4 of 11
The rfbSendFramebufferUpdate function in server/libvncserver/rfbserver.c in vino-server in Vino 2.x before 2.28.3, 2.32.x before 2.32.2, 3.0.x before 3.0.2, and 3.1.x before 3.1.1, when raw encoding is used, allows...
3 affected packages
kdenetwork, libvncserver, vino
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| kdenetwork | — | — | — | — |
| libvncserver | — | — | — | — |
| vino | — | — | — | — |
auth.c in LibVNCServer 0.7.1 allows remote attackers to bypass authentication via a request in which the client specifies an insecure security type such as "Type 1 - None", which is accepted even if it is not offered by the...
1 affected package
libvncserver
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libvncserver | — | — | — | — |