CVE-2019-20840

Опубликовано: 17 июн. 2020

Источник: debian

EPSS Низкий

Описание

An issue was discovered in LibVNCServer before 0.9.13. libvncserver/ws_decode.c can lead to a crash because of unaligned accesses in hybiReadAndDecode.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
libvncserver	fixed	0.9.13+dfsg-1		package
libvncserver	not-affected		buster	package
libvncserver	not-affected		stretch	package
libvncserver	not-affected		jessie	package

Примечания

https://github.com/LibVNC/libvncserver/commit/0cf1400c61850065de590d403f6d49e32882fd76
Vulnerable code is introduced with the fix for CVE-2017-18922.

EPSS

Процентиль: 83%

0.02026

Низкий

Связанные уязвимости

CVE-2019-20840

CVSS3: 7.5

ubuntu

больше 5 лет назад

An issue was discovered in LibVNCServer before 0.9.13. libvncserver/ws_decode.c can lead to a crash because of unaligned accesses in hybiReadAndDecode.

CVE-2019-20840

CVSS3: 7.5

redhat

больше 5 лет назад

An issue was discovered in LibVNCServer before 0.9.13. libvncserver/ws_decode.c can lead to a crash because of unaligned accesses in hybiReadAndDecode.

CVE-2019-20840

CVSS3: 7.5

nvd

больше 5 лет назад

An issue was discovered in LibVNCServer before 0.9.13. libvncserver/ws_decode.c can lead to a crash because of unaligned accesses in hybiReadAndDecode.

GHSA-42fc-843w-r7rp

CVSS3: 7.5

github

больше 3 лет назад

An issue was discovered in LibVNCServer before 0.9.13. libvncserver/ws_decode.c can lead to a crash because of unaligned accesses in hybiReadAndDecode.

openSUSE-SU-2020:1056-1

suse-cvrf

больше 5 лет назад

Security update for LibVNCServer

EPSS

Процентиль: 83%

0.02026

Низкий