Описание
ELSA-2020-0920: libvncserver security update (IMPORTANT)
[0.9.11-9.2]
- Enable gating (bug #1681199)
[0.9.11-9.1]
- Fix CVE-2019-15690 (an integer overflow in HandleCursorShape() in a client) (bug #1814342)
Обновленные пакеты
Oracle Linux 8
Oracle Linux x86_64
libvncserver
0.9.11-9.el8_1.2
libvncserver-devel
0.9.11-9.el8_1.2
Связанные CVE
Связанные уязвимости
LibVNCServer 0.9.12 release and earlier contains heap buffer overflow vulnerability within the HandleCursorShape() function in libvncclient/cursor.c. An attacker sends cursor shapes with specially crafted dimensions, which can result in remote code execution.
LibVNCServer 0.9.12 release and earlier contains heap buffer overflow vulnerability within the HandleCursorShape() function in libvncclient/cursor.c. An attacker sends cursor shapes with specially crafted dimensions, which can result in remote code execution.
LibVNCServer 0.9.12 release and earlier contains heap buffer overflow vulnerability within the HandleCursorShape() function in libvncclient/cursor.c. An attacker sends cursor shapes with specially crafted dimensions, which can result in remote code execution.
LibVNCServer 0.9.12 release and earlier contains heap buffer overflow ...
LibVNCServer 0.9.12 release and earlier contains heap buffer overflow vulnerability within the HandleCursorShape() function in libvncclient/cursor.c. An attacker sends cursor shapes with specially crafted dimensions, which can result in remote code execution.