CVE-2020-14398

Опубликовано: 17 июн. 2020

Источник: redhat

CVSS3: 7.5

Описание

An issue was discovered in LibVNCServer before 0.9.13. An improperly closed TCP connection causes an infinite loop in libvncclient/sockets.c.

This flaw does not affect versions of vino shipped with Red Hat Enterprise Linux 6, 7, or 8 because libvncclient is not included in the package.

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 6	libvncserver	Out of support scope
Red Hat Enterprise Linux 6	vino	Not affected
Red Hat Enterprise Linux 7	libvncserver	Will not fix
Red Hat Enterprise Linux 7	vino	Not affected
Red Hat Enterprise Linux 8	libvncserver	Will not fix
Red Hat Enterprise Linux 8	vino	Not affected

Показывать по

Статус:

Moderate

Дефект:

CWE-835

https://bugzilla.redhat.com/show_bug.cgi?id=1860348libvncserver: an improperly closed TCP connection causes an infinite loop in libvncclient/sockets.c

7.5 High

CVSS3

CVE-2020-14398

CVSS3: 7.5

ubuntu

больше 5 лет назад

An issue was discovered in LibVNCServer before 0.9.13. An improperly closed TCP connection causes an infinite loop in libvncclient/sockets.c.

CVE-2020-14398

CVSS3: 7.5

nvd

больше 5 лет назад

An issue was discovered in LibVNCServer before 0.9.13. An improperly closed TCP connection causes an infinite loop in libvncclient/sockets.c.

CVE-2020-14398

CVSS3: 7.5

debian

больше 5 лет назад

An issue was discovered in LibVNCServer before 0.9.13. An improperly c ...

GHSA-g66j-3r55-grh3

CVSS3: 7.5

github

больше 3 лет назад

An issue was discovered in LibVNCServer before 0.9.13. An improperly closed TCP connection causes an infinite loop in libvncclient/sockets.c.

BDU:2020-03158

CVSS3: 7.5

fstec

около 6 лет назад

Уязвимость компонента libvncclient/sockets.c кроссплатформенной библиотеки LibVNCServer, позволяющая нарушителю вызвать отказ в обслуживании

7.5 High

CVSS3