CVE-2019-15680

Опубликовано: 29 окт. 2019

Источник: ubuntu

Приоритет: low

EPSS Низкий

CVSS2: 5

CVSS3: 7.5

Описание

TightVNC code version 1.3.10 contains null pointer dereference in HandleZlibBPP function, which results Denial of System (DoS). This attack appear to be exploitable via network connectivity.

Релиз	Статус	Примечание
bionic	released	0.9.11+dfsg-1ubuntu1.2
devel	not-affected	0.9.13+dfsg-1
disco	ignored	end of life
eoan	released	0.9.11+dfsg-1.3ubuntu0.1
esm-infra-legacy/trusty	DNE
esm-infra/bionic	released	0.9.11+dfsg-1ubuntu1.2
esm-infra/focal	released	0.9.12+dfsg-9ubuntu0.1
esm-infra/xenial	released	0.9.10+dfsg-3ubuntu0.16.04.4
focal	released	0.9.12+dfsg-9ubuntu0.1
groovy	not-affected	0.9.13+dfsg-1

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	needs-triage
disco	ignored	end of life
eoan	ignored	end of life
esm-apps/bionic	needs-triage
esm-apps/focal	needs-triage
esm-apps/jammy	needs-triage
esm-apps/noble	needs-triage
esm-apps/xenial	needs-triage
esm-infra-legacy/trusty	DNE

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	needs-triage
disco	ignored	end of life
eoan	ignored	end of life
esm-apps/bionic	needs-triage
esm-apps/focal	needs-triage
esm-apps/jammy	needs-triage
esm-apps/noble	needs-triage
esm-apps/xenial	needs-triage
esm-infra-legacy/trusty	released	1.3.9-6.5+deb8u1build0.14.04.1~esm1

Показывать по

Релиз	Статус	Примечание
bionic	DNE
devel	needs-triage
disco	ignored	end of life
eoan	ignored	end of life
esm-apps/focal	needs-triage
esm-apps/jammy	needs-triage
esm-apps/noble	needs-triage
esm-infra-legacy/trusty	DNE
focal	ignored	end of standard support, was needs-triage
groovy	ignored	end of life

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	needs-triage
disco	ignored	end of life
eoan	ignored	end of life
esm-apps/bionic	needs-triage
esm-apps/focal	needs-triage
esm-apps/jammy	needs-triage
esm-apps/noble	needs-triage
esm-apps/xenial	needs-triage
esm-infra-legacy/trusty	DNE

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	not-affected
disco	ignored	end of life
eoan	ignored	end of life
esm-apps/bionic	not-affected	0.9.13-3ubuntu0.1~esm1
esm-apps/focal	not-affected	0.9.16-3ubuntu0.1~esm1
esm-apps/jammy	not-affected
esm-apps/noble	not-affected
esm-apps/xenial	not-affected	0.9.13-1.2ubuntu0.1~esm1
esm-infra-legacy/trusty	needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 56%

0.00337

Низкий

5 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

CVE-2019-15680

CVSS3: 7.5

nvd

больше 6 лет назад

TightVNC code version 1.3.10 contains null pointer dereference in HandleZlibBPP function, which results Denial of System (DoS). This attack appear to be exploitable via network connectivity.

CVE-2019-15680

CVSS3: 7.5

debian

больше 6 лет назад

TightVNC code version 1.3.10 contains null pointer dereference in Hand ...

GHSA-7734-vjrv-hjxq

github

больше 3 лет назад

TightVNC code version 1.3.10 contains null pointer dereference in HandleZlibBPP function, which results Denial of System (DoS). This attack appear to be exploitable via network connectivity.

BDU:2021-01302

CVSS3: 7.5

fstec

больше 6 лет назад

Уязвимость функции HandleZlibBPP реализации VNC с расширениями для оптимизации работы в условиях медленных каналов передачи данных Tightvnc, связанная с разыменованием нулевого указателя, позволяющая нарушителю вызвать отказ в обслуживании

SUSE-SU-2019:14235-1

suse-cvrf

около 6 лет назад

Security update for tightvnc

EPSS

Процентиль: 56%

0.00337

Низкий

5 Medium

CVSS2

7.5 High

CVSS3

CVE-2019-15680

Описание

Пакет libvncserver

Пакет ssvnc

Пакет tightvnc

Пакет veyon

Пакет vncsnapshot

Пакет x11vnc

Ссылки на источники

Связанные уязвимости