CVE-2014-8241

Опубликовано: 14 дек. 2016

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

XRegion in TigerVNC allows remote VNC servers to cause a denial of service (NULL pointer dereference) by leveraging failure to check a malloc return value, a similar issue to CVE-2014-6052.

Ссылки

http://seclists.org/oss-sec/2014/q4/278
Mailing List
http://seclists.org/oss-sec/2014/q4/300
Mailing List
http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html
http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html
http://www.securityfocus.com/bid/70390
Third Party Advisory
VDB Entry
https://bugzilla.redhat.com/show_bug.cgi?id=1151312
Issue Tracking
https://rhn.redhat.com/errata/RHSA-2015-2233.html
Third Party Advisory
http://seclists.org/oss-sec/2014/q4/278
Mailing List
http://seclists.org/oss-sec/2014/q4/300
Mailing List
http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html
http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html
http://www.securityfocus.com/bid/70390
Third Party Advisory
VDB Entry
https://bugzilla.redhat.com/show_bug.cgi?id=1151312
Issue Tracking
https://rhn.redhat.com/errata/RHSA-2015-2233.html
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:tigervnc:tigervnc:-:*:*:*:*:*:*:*

Конфигурация 2

Одно из

cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*

cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*

EPSS

Процентиль: 59%

0.00388

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-476

Связанные уязвимости

CVE-2014-8241

redhat

почти 11 лет назад

XRegion in TigerVNC allows remote VNC servers to cause a denial of service (NULL pointer dereference) by leveraging failure to check a malloc return value, a similar issue to CVE-2014-6052.

CVE-2014-8241

CVSS3: 9.8

debian

больше 8 лет назад

XRegion in TigerVNC allows remote VNC servers to cause a denial of ser ...

GHSA-gq2g-qwmw-m5q3

CVSS3: 9.8

github

больше 3 лет назад

XRegion in TigerVNC allows remote VNC servers to cause a denial of service (NULL pointer dereference) by leveraging failure to check a malloc return value, a similar issue to CVE-2014-6052.

ELSA-2015-2233

oracle-oval

почти 10 лет назад

ELSA-2015-2233: tigervnc security, bug fix, and enhancement update (MODERATE)

EPSS

Процентиль: 59%

0.00388

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-476