ELSA-2019-0059

Опубликовано: 15 янв. 2019

Источник: oracle-oval

Платформа: Oracle Linux 7

Описание

ELSA-2019-0059: libvncserver security update (IMPORTANT)

[0.9.9-13]

Fix CVE-2018-15127 (Heap out-of-bounds write in rfbserver.c:rfbProcessFileTransferReadBuffer()) (bug #1662995)

Обновленные пакеты

Oracle Linux 7

Oracle Linux aarch64

libvncserver

0.9.9-13.el7_6

libvncserver-devel

0.9.9-13.el7_6

Oracle Linux x86_64

libvncserver

0.9.9-13.el7_6

libvncserver-devel

0.9.9-13.el7_6

Связанные CVE

CVE-2018-15127

Ссылки на источники

Связанные уязвимости

CVE-2018-15127

CVSS3: 9.8

ubuntu

почти 7 лет назад

LibVNC before commit 502821828ed00b4a2c4bef90683d0fd88ce495de contains heap out-of-bound write vulnerability in server code of file transfer extension that can result remote code execution

CVE-2018-15127

CVSS3: 7.5

redhat

почти 7 лет назад

LibVNC before commit 502821828ed00b4a2c4bef90683d0fd88ce495de contains heap out-of-bound write vulnerability in server code of file transfer extension that can result remote code execution

CVE-2018-15127

CVSS3: 9.8

nvd

почти 7 лет назад

LibVNC before commit 502821828ed00b4a2c4bef90683d0fd88ce495de contains heap out-of-bound write vulnerability in server code of file transfer extension that can result remote code execution

CVE-2018-15127

CVSS3: 9.8

debian

почти 7 лет назад

LibVNC before commit 502821828ed00b4a2c4bef90683d0fd88ce495de contains ...

GHSA-2pgv-ghf3-xj9q

CVSS3: 9.8

github

больше 3 лет назад

LibVNC before commit 502821828ed00b4a2c4bef90683d0fd88ce495de contains heap out-of-bound write vulnerability in server code of file transfer extension that can result remote code execution