Search CVE reports
11 – 20 of 45 results
Some fixes available 3 of 25
An issue was discovered in LibVNCServer before 0.9.13. An improperly closed TCP connection causes an infinite loop in libvncclient/sockets.c.
3 affected packages
libvncserver, x11vnc, veyon
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libvncserver | Not affected | Not affected | Fixed | Fixed |
| x11vnc | Not affected | Not affected | Not affected | Not affected |
| veyon | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
Some fixes available 17 of 39
An issue was discovered in LibVNCServer before 0.9.13. libvncserver/rfbregion.c has a NULL pointer dereference.
4 affected packages
veyon, libvncserver, x11vnc, vino
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| veyon | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
| libvncserver | Not affected | Not affected | Fixed | Fixed |
| x11vnc | Not affected | Not affected | Not affected | Not affected |
| vino | Fixed | Fixed | Fixed | Fixed |
Some fixes available 1 of 22
An issue was discovered in LibVNCServer before 0.9.13. libvncclient/tls_openssl.c has a NULL pointer dereference.
3 affected packages
libvncserver, veyon, x11vnc
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libvncserver | Not affected | Not affected | Fixed | Not affected |
| veyon | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
| x11vnc | Not affected | Not affected | Not affected | Not affected |
Some fixes available 2 of 24
An issue was discovered in LibVNCServer before 0.9.13. libvncserver/ws_decode.c can lead to a crash because of unaligned accesses in hybiReadAndDecode.
3 affected packages
libvncserver, veyon, x11vnc
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libvncserver | Not affected | Not affected | Not affected | Fixed |
| veyon | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
| x11vnc | Not affected | Not affected | Not affected | Not affected |
Some fixes available 3 of 25
libvncclient/sockets.c in LibVNCServer before 0.9.13 has a buffer overflow via a long socket filename.
3 affected packages
libvncserver, veyon, x11vnc
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libvncserver | Not affected | Not affected | Fixed | Fixed |
| veyon | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
| x11vnc | Not affected | Not affected | Not affected | Not affected |
An issue was discovered in LibVNCServer before 0.9.13. There is an information leak (of uninitialized memory contents) in the libvncclient/rfbproto.c ConnectToRFBRepeater function.
4 affected packages
vino, veyon, x11vnc, libvncserver
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| vino | Not affected | Not affected | Not affected | Not affected |
| veyon | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
| x11vnc | Not affected | Not affected | Needs evaluation | Needs evaluation |
| libvncserver | Not affected | Not affected | Needs evaluation | Needs evaluation |
Some fixes available 3 of 11
libvncclient/cursor.c in LibVNCServer through 0.9.12 has a HandleCursorShape integer overflow and heap-based buffer overflow via a large height or width value. NOTE: this may overlap CVE-2019-15690.
2 affected packages
libvncserver, x11vnc
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libvncserver | Not affected | Not affected | Not affected | Fixed |
| x11vnc | Not affected | Not affected | Not affected | Not affected |
Some fixes available 4 of 12
LibVNCServer 0.9.12 release and earlier contains heap buffer overflow vulnerability within the HandleCursorShape() function in libvncclient/cursor.c. An attacker sends cursor shapes with specially crafted dimensions, which can...
2 affected packages
libvncserver, x11vnc
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libvncserver | Not affected | Not affected | Fixed | Fixed |
| x11vnc | Not affected | Not affected | Not affected | Not affected |
Some fixes available 20 of 78
LibVNC commit before d01e1bb4246323ba6fcee3b82ef1faa9b1dac82a contains a memory leak (CWE-655) in VNC server code, which allow an attacker to read stack memory and can be abused for information disclosure. Combined with another...
7 affected packages
krfb, libvncserver, tightvnc, veyon, x11vnc...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| krfb | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| libvncserver | Not affected | Not affected | Not affected | Fixed |
| tightvnc | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| veyon | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
| x11vnc | Not affected | Not affected | Not affected | Not affected |
| italc | Not in release | Not in release | Not in release | Fixed |
| vino | Fixed | Fixed | Fixed | Fixed |
Some fixes available 5 of 77
TightVNC code version 1.3.10 contains null pointer dereference in HandleZlibBPP function, which results Denial of System (DoS). This attack appear to be exploitable via network connectivity.
6 affected packages
tightvnc, libvncserver, ssvnc, veyon, vncsnapshot, x11vnc
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| tightvnc | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| libvncserver | Not affected | Not affected | Fixed | Fixed |
| ssvnc | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| veyon | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
| vncsnapshot | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| x11vnc | Not affected | Not affected | Not affected | Not affected |