Описание
LibVNCServer 0.9.12 release and earlier contains heap buffer overflow vulnerability within the HandleCursorShape() function in libvncclient/cursor.c. An attacker sends cursor shapes with specially crafted dimensions, which can result in remote code execution.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 0.9.11+dfsg-1ubuntu1.2 |
| devel | not-affected | 0.9.13+dfsg-1 |
| eoan | released | 0.9.11+dfsg-1.3ubuntu0.1 |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/bionic | released | 0.9.11+dfsg-1ubuntu1.2 |
| esm-infra/focal | released | 0.9.12+dfsg-9ubuntu0.1 |
| esm-infra/xenial | released | 0.9.10+dfsg-3ubuntu0.16.04.4 |
| focal | released | 0.9.12+dfsg-9ubuntu0.1 |
| groovy | not-affected | 0.9.13+dfsg-1 |
| hirsute | not-affected | 0.9.13+dfsg-1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needed |
| devel | not-affected | |
| eoan | ignored | end of life |
| esm-apps/bionic | not-affected | 0.9.13-3ubuntu0.1~esm1 |
| esm-apps/focal | not-affected | 0.9.16-3ubuntu0.1~esm1 |
| esm-apps/jammy | not-affected | |
| esm-apps/noble | not-affected | |
| esm-apps/xenial | not-affected | 0.9.13-1.2ubuntu0.1~esm1 |
| esm-infra-legacy/trusty | needs-triage | |
| focal | ignored | end of standard support, was needs-triage |
Показывать по
8.8 High
CVSS3
Связанные уязвимости
LibVNCServer 0.9.12 release and earlier contains heap buffer overflow vulnerability within the HandleCursorShape() function in libvncclient/cursor.c. An attacker sends cursor shapes with specially crafted dimensions, which can result in remote code execution.
LibVNCServer 0.9.12 release and earlier contains heap buffer overflow vulnerability within the HandleCursorShape() function in libvncclient/cursor.c. An attacker sends cursor shapes with specially crafted dimensions, which can result in remote code execution.
LibVNCServer 0.9.12 release and earlier contains heap buffer overflow ...
LibVNCServer 0.9.12 release and earlier contains heap buffer overflow vulnerability within the HandleCursorShape() function in libvncclient/cursor.c. An attacker sends cursor shapes with specially crafted dimensions, which can result in remote code execution.
8.8 High
CVSS3