openSUSE-SU-2017:0444-1

Опубликовано: 10 фев. 2017

Источник: suse-cvrf

Описание

Security update for tigervnc

This update for tigervnc fixes the following issues:

This security issue was fixed:

CVE-2016-10207: Prevent crash caused by failed TLS connection (bnc#1023012)

This non-security issue was fixed:

Fix random client disconnections (boo#1022432)

Список пакетов

openSUSE Leap 42.1

libXvnc-devel-1.6.0-11.1

libXvnc1-1.6.0-11.1

tigervnc-1.6.0-11.1

xorg-x11-Xvnc-1.6.0-11.1

openSUSE Leap 42.2

libXvnc-devel-1.6.0-11.1

libXvnc1-1.6.0-11.1

tigervnc-1.6.0-11.1

xorg-x11-Xvnc-1.6.0-11.1

Ссылки

https://lists.opensuse.org/opensuse-security-announce/2017-02/msg00020.html
E-Mail link for openSUSE-SU-2017:0444-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings

Описание

The Xvnc server in TigerVNC allows remote attackers to cause a denial of service (invalid memory access and crash) by terminating a TLS handshake early.

Затронутые продукты

openSUSE Leap 42.1:libXvnc-devel-1.6.0-11.1

openSUSE Leap 42.1:libXvnc1-1.6.0-11.1

openSUSE Leap 42.1:tigervnc-1.6.0-11.1

openSUSE Leap 42.1:xorg-x11-Xvnc-1.6.0-11.1

Ссылки

https://www.suse.com/security/cve/CVE-2016-10207.html
CVE-2016-10207
https://bugzilla.suse.com/1023012
SUSE Bug 1023012

openSUSE-SU-2017:0444-1

Описание

Список пакетов

openSUSE Leap 42.1

openSUSE Leap 42.2

Ссылки

Уязвимость: CVE-2016-10207

Описание

Затронутые продукты

Ссылки