Search CVE reports
11 – 20 of 22 results
Some fixes available 8 of 23
LibVNC before commit c3115350eb8bb635d0fdb4dbbb0d0541f38ed19c contains a CWE-835: Infinite loop vulnerability in VNC client code. Vulnerability allows attacker to consume excessive amount of resources like CPU and RAM
5 affected packages
italc, tightvnc, libvncserver, ssvnc, x11vnc
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| italc | Not in release | Not in release | Not in release | Fixed |
| tightvnc | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| libvncserver | Not affected | Not affected | Not affected | Fixed |
| ssvnc | Not affected | Not affected | Not affected | Vulnerable |
| x11vnc | Not affected | Not affected | Not affected | Not affected |
Some fixes available 8 of 23
LibVNC before commit 7b1ef0ffc4815cab9a96c7278394152bdc89dc4d contains heap out-of-bound write vulnerability inside structure in VNC client code that can result remote code execution
5 affected packages
tightvnc, libvncserver, x11vnc, italc, ssvnc
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| tightvnc | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| libvncserver | Not affected | Not affected | Not affected | Fixed |
| x11vnc | Not affected | Not affected | Not affected | Not affected |
| italc | Not in release | Not in release | Not in release | Fixed |
| ssvnc | Not affected | Not affected | Not affected | Vulnerable |
Some fixes available 6 of 7
LibVNC before commit a83439b9fbe0f03c48eb94ed05729cb016f8b72f contains multiple heap out-of-bound write vulnerabilities in VNC client code that can result remote code execution
3 affected packages
italc, libvncserver, x11vnc
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| italc | — | — | Not in release | Fixed |
| libvncserver | — | — | Not affected | Fixed |
| x11vnc | — | — | Not affected | Not affected |
Some fixes available 6 of 7
LibVNC before commit 502821828ed00b4a2c4bef90683d0fd88ce495de contains heap out-of-bound write vulnerability in server code of file transfer extension that can result remote code execution
3 affected packages
libvncserver, x11vnc, italc
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libvncserver | — | — | Not affected | Fixed |
| x11vnc | — | — | Not affected | Not affected |
| italc | — | — | Not in release | Fixed |
Heap-based buffer overflow in ultra.c in LibVNCClient in LibVNCServer before 0.9.11 allows remote servers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted FramebufferUpdate message...
2 affected packages
italc, libvncserver
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| italc | — | — | Not in release | Fixed |
| libvncserver | — | — | — | — |
Heap-based buffer overflow in rfbproto.c in LibVNCClient in LibVNCServer before 0.9.11 allows remote servers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted FramebufferUpdate...
2 affected packages
italc, libvncserver
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| italc | — | — | Not in release | Not affected |
| libvncserver | — | — | — | — |
Some fixes available 4 of 5
Multiple stack-based buffer overflows in the File Transfer feature in rfbserver.c in LibVNCServer 0.9.9 and earlier allow remote authenticated users to cause a denial of service (crash) and possibly execute arbitrary code via a...
3 affected packages
krfb, libvncserver, italc
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| krfb | — | — | — | — |
| libvncserver | — | — | — | — |
| italc | — | — | Not in release | Not affected |
Some fixes available 4 of 5
The rfbProcessClientNormalMessage function in libvncserver/rfbserver.c in LibVNCServer 0.9.9 and earlier allows remote attackers to cause a denial of service (divide-by-zero error and server crash) via a zero value in the scaling...
3 affected packages
italc, krfb, libvncserver
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| italc | — | — | Not in release | Not affected |
| krfb | — | — | — | — |
| libvncserver | — | — | — | — |
Some fixes available 18 of 32
The rfbProcessClientNormalMessage function in libvncserver/rfbserver.c in LibVNCServer 0.9.9 and earlier does not properly handle attempts to send a large amount of ClientCutText data, which allows remote attackers to cause a...
5 affected packages
italc, krfb, libvncserver, vino, tightvnc
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| italc | Not in release | Not in release | Not in release | Not affected |
| krfb | Not affected | Not affected | Not affected | Not affected |
| libvncserver | Not affected | Not affected | Not affected | Not affected |
| vino | Fixed | Fixed | Fixed | Fixed |
| tightvnc | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
Some fixes available 4 of 5
The HandleRFBServerMessage function in libvncclient/rfbproto.c in LibVNCServer 0.9.9 and earlier does not check certain malloc return values, which allows remote VNC servers to cause a denial of service (application crash) or...
3 affected packages
italc, krfb, libvncserver
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| italc | — | — | Not in release | Fixed |
| krfb | — | — | — | — |
| libvncserver | — | — | — | — |