Search CVE reports
1 – 10 of 24 results
LibVNCServer versions 0.9.15 and prior (fixed in commit dc78dee) contain null pointer dereference vulnerabilities in the HTTP proxy handlers within httpProcessInput() in httpd.c that allow remote attackers to cause a denial of...
6 affected packages
libvncserver, vino, x11vnc, veyon, italc, tightvnc
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libvncserver | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| vino | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| x11vnc | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| veyon | Needs evaluation | Needs evaluation | Needs evaluation | — |
| italc | Not in release | Not in release | — | Needs evaluation |
| tightvnc | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
LibVNCServer versions 0.9.15 and prior (fixed in commit 009008e) contain a heap out-of-bounds read vulnerability in the UltraZip encoding handler that allows a malicious VNC server to cause information disclosure or application...
6 affected packages
veyon, libvncserver, vino, x11vnc, italc, tightvnc
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| veyon | Needs evaluation | Needs evaluation | Needs evaluation | — |
| libvncserver | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| vino | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| x11vnc | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| italc | Not in release | Not in release | — | Needs evaluation |
| tightvnc | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
libvncclient v0.9.13 was discovered to contain a memory leak via the function rfbClientCleanup().
6 affected packages
libvncserver, tightvnc, veyon, x11vnc, italc, vino
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libvncserver | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| tightvnc | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| veyon | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
| x11vnc | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| italc | — | Not in release | Not in release | Needs evaluation |
| vino | Not affected | Not affected | Not affected | Not affected |
Some fixes available 17 of 53
A divide by zero issue was found to occur in libvncserver-0.9.12. A malicious client could use this flaw to send a specially crafted message that, when processed by the VNC server, would lead to a floating point exception,...
6 affected packages
x11vnc, libvncserver, vino, italc, tightvnc, veyon
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| x11vnc | Not affected | Not affected | Not affected | Not affected |
| libvncserver | Not affected | Not affected | Fixed | Fixed |
| vino | Fixed | Fixed | Fixed | Fixed |
| italc | Not in release | Not in release | Not in release | Needs evaluation |
| tightvnc | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| veyon | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
Some fixes available 20 of 78
LibVNC commit before d01e1bb4246323ba6fcee3b82ef1faa9b1dac82a contains a memory leak (CWE-655) in VNC server code, which allow an attacker to read stack memory and can be abused for information disclosure. Combined with another...
7 affected packages
krfb, libvncserver, tightvnc, veyon, x11vnc...
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| krfb | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| libvncserver | Not affected | Not affected | Not affected | Fixed |
| tightvnc | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| veyon | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
| x11vnc | Not affected | Not affected | Not affected | Not affected |
| italc | Not in release | Not in release | Not in release | Fixed |
| vino | Fixed | Fixed | Fixed | Fixed |
Some fixes available 6 of 7
LibVNC through 0.9.12 contains a heap out-of-bounds write vulnerability in libvncserver/rfbserver.c. The fix for CVE-2018-15127 was incomplete.
3 affected packages
italc, libvncserver, x11vnc
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| italc | — | — | Not in release | Fixed |
| libvncserver | — | — | Not affected | Fixed |
| x11vnc | — | — | Not affected | Not affected |
Some fixes available 6 of 7
LibVNC before 0.9.12 contains a heap out-of-bounds write vulnerability in libvncserver/rfbserver.c. The fix for CVE-2018-15127 was incomplete.
3 affected packages
libvncserver, italc, x11vnc
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libvncserver | — | — | Not affected | Fixed |
| italc | — | — | Not in release | Fixed |
| x11vnc | — | — | Not affected | Not affected |
Some fixes available 7 of 22
LibVNC before 0.9.12 contains multiple heap out-of-bounds write vulnerabilities in libvncclient/rfbproto.c. The fix for CVE-2018-20019 was incomplete.
4 affected packages
italc, libvncserver, tightvnc, x11vnc
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| italc | Not in release | Not in release | Not in release | Fixed |
| libvncserver | Not affected | Not affected | Not affected | Fixed |
| tightvnc | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| x11vnc | Not affected | Not affected | Not affected | Not affected |
Some fixes available 7 of 9
LibVNC before commit 4a21bbd097ef7c44bb000c3bd0907f96a10e4ce7 contains null pointer dereference in VNC client code that can result DoS.
4 affected packages
libvncserver, x11vnc, italc, ssvnc
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libvncserver | Not affected | Not affected | Not affected | Fixed |
| x11vnc | Not affected | Not affected | Not affected | Not affected |
| italc | Not in release | Not in release | Not in release | Fixed |
| ssvnc | Not affected | Not affected | Not affected | Vulnerable |
Some fixes available 6 of 7
LibVNC before 8b06f835e259652b0ff026898014fc7297ade858 contains CWE-665: Improper Initialization vulnerability in VNC Repeater client code that allows attacker to read stack memory and can be abuse for information disclosure....
3 affected packages
italc, libvncserver, x11vnc
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| italc | — | — | Not in release | Fixed |
| libvncserver | — | — | Not affected | Fixed |
| x11vnc | — | — | Not affected | Not affected |