Описание
An issue was discovered in LibVNCServer before 0.9.13. libvncclient/tls_openssl.c has a NULL pointer dereference.
Отчет
versions of libvncserver and vino that ship with Red Hat Enterprise Linux 6 through 8 (inclusive) are not affected because the vulnerable code was introduced in a later version.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 6 | libvncserver | Not affected | ||
| Red Hat Enterprise Linux 6 | vino | Not affected | ||
| Red Hat Enterprise Linux 7 | libvncserver | Not affected | ||
| Red Hat Enterprise Linux 7 | vino | Not affected | ||
| Red Hat Enterprise Linux 8 | libvncserver | Not affected | ||
| Red Hat Enterprise Linux 8 | vino | Not affected |
Показывать по
Дополнительная информация
Статус:
EPSS
7.5 High
CVSS3
Связанные уязвимости
An issue was discovered in LibVNCServer before 0.9.13. libvncclient/tls_openssl.c has a NULL pointer dereference.
An issue was discovered in LibVNCServer before 0.9.13. libvncclient/tls_openssl.c has a NULL pointer dereference.
An issue was discovered in LibVNCServer before 0.9.13. libvncclient/tl ...
An issue was discovered in LibVNCServer before 0.9.13. libvncclient/tls_openssl.c has a NULL pointer dereference.
Уязвимость компонента libvncclient/tls_openssl.c кроссплатформенной библиотеки LibVNCServer, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
7.5 High
CVSS3