Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:DLA-197-1:6E481
HistoryApr 14, 2015 - 4:05 p.m.

[SECURITY] [DLA 197-1] libvncserver security update

2015-04-1416:05:48
lists.debian.org
15

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

9.8

Confidence

High

EPSS

0.886

Percentile

98.8%

JSON

Package : libvncserver
Version : 0.9.7-2+deb6u1
CVE ID : CVE-2014-6051 CVE-2014-6052 CVE-2014-6053 CVE-2014-6054
CVE-2014-6055
Debian Bug : 762745

Several vulnerabilities have been discovered in libvncserver, a library to
implement VNC server functionality. These vulnerabilities might result in
the execution of arbitrary code or denial of service in both the client
and the server side.

For the oldstable distribution (squeeze), these problems have been fixed in
version 0.9.7-2+deb6u1.

This update has been prepared by Nguyen Cong.

–
RaphaΓ«l Hertzog β—ˆ Debian Developer

Support Debian LTS: http://www.freexian.com/services/debian-lts.html
Learn to master Debian: http://debian-handbook.info/get/
Attachment:
signature.asc
Description: Digital signature

OSVersionArchitecturePackageVersionFilename
Debian8i386italc-master<Β 1:2.0.2+dfsg1-2+deb8u1italc-master_1:2.0.2+dfsg1-2+deb8u1_i386.deb
Debian8armhfitalc-client<Β 1:2.0.2+dfsg1-2+deb8u1italc-client_1:2.0.2+dfsg1-2+deb8u1_armhf.deb
Debian6i386linuxvnc<Β 0.9.7-2+deb6u1linuxvnc_0.9.7-2+deb6u1_i386.deb
Debian7amd64libvncserver-config<Β 0.9.9+dfsg-1+deb7u1libvncserver-config_0.9.9+dfsg-1+deb7u1_amd64.deb
Debian7ia64libvncserver0-dbg<Β 0.9.9+dfsg-1+deb7u1libvncserver0-dbg_0.9.9+dfsg-1+deb7u1_ia64.deb
Debian7kfreebsd-amd64libvncserver-dev<Β 0.9.9+dfsg-1+deb7u1libvncserver-dev_0.9.9+dfsg-1+deb7u1_kfreebsd-amd64.deb
Debian7s390xlibvncserver-dev<Β 0.9.9+dfsg-1+deb7u1libvncserver-dev_0.9.9+dfsg-1+deb7u1_s390x.deb
Debian8amd64italc-master-dbg<Β 1:2.0.2+dfsg1-2+deb8u1italc-master-dbg_1:2.0.2+dfsg1-2+deb8u1_amd64.deb
Debian7armhflibvncserver0-dbg<Β 0.9.9+dfsg-1+deb7u1libvncserver0-dbg_0.9.9+dfsg-1+deb7u1_armhf.deb
Debian7powerpclibvncserver0-dbg<Β 0.9.9+dfsg-1+deb7u1libvncserver0-dbg_0.9.9+dfsg-1+deb7u1_powerpc.deb
Rows per page:
1-10 of 1061

Related

nessus 34
openvas 27
debian 4
veracode 5
securityvulns 2
archlinux 1
gentoo 2
ubuntu 3
osv 7
redhat 3
mageia 4
freebsd 2
centos 2
fedora 4
oraclelinux 2
ubuntucve 5
cvelist 7
debiancve 7
cve 7
prion 7
nvd 7
checkpoint_advisories 1
nessus
nessus
SUSE SLED11 / SLES11 Security Update : LibVNCServer (SUSE-SU-2015:2110-1)
2015-11-30 00:00:00
Scientific Linux Security Update : libvncserver on SL6.x, SL7.x i386/x86_64 (20141111)
2014-11-13 00:00:00
Debian DLA-197-1 : libvncserver security update
2015-04-15 00:00:00
openvas
openvas
Debian Security Advisory DSA 3081-1 (libvncserver - security update)
2014-11-29 00:00:00
Mageia: Security Advisory (MGASA-2014-0397)
2022-01-28 00:00:00
Debian: Security Advisory (DSA-3081-1)
2014-11-28 00:00:00
debian
debian
[SECURITY] [DSA 3081-1] libvncserver security update
2014-11-29 15:21:35
[SECURITY] [DLA 1979-1] italc security update
2019-10-30 22:21:35
[SECURITY] [DLA 2014-1] vino security update
2019-11-29 08:30:55
veracode
veracode
Arbitrary Code Execution
2019-05-02 05:04:38
Arbitrary Code Execution
2019-05-02 05:04:38
Denial Of Service (DoS) Through Divide By Zero
2019-05-02 05:04:38
securityvulns
securityvulns
[oCERT-2014-007] libvncserver multiple issues
2014-09-29 00:00:00
libvncserver multiple security vulnerabilities
2014-09-29 00:00:00
archlinux
archlinux
libvncserver: remote code execution, denial of service
2014-10-24 00:00:00
gentoo
gentoo
LibVNCServer: Multiple vulnerabilities
2015-07-07 00:00:00
TigerVNC: Integer overflow
2016-12-13 00:00:00
ubuntu
ubuntu
LibVNCServer vulnerabilities
2014-09-29 00:00:00
iTALC vulnerabilities
2020-10-20 00:00:00
Vino vulnerabilities
2020-10-07 00:00:00
osv
osv
libvncserver - security update
2015-04-14 00:00:00
libvncserver - security update
2014-11-29 00:00:00
italc vulnerabilities
2020-10-20 16:35:20
redhat
redhat
(RHSA-2014:1826) Moderate: libvncserver security update
2014-11-11 00:00:00
(RHSA-2014:1827) Moderate: kdenetwork security update
2014-11-11 14:45:20
(RHSA-2015:0113) Moderate: libvncserver security update
2015-02-02 00:00:00
mageia
mageia
Updated libvncserver & remmina packages fix security vulnerabilities
2014-10-07 13:22:51
Updated kdenetwork4 packages fix security vulnerabilities in krfb
2014-11-21 15:44:16
Updated KDE 4 and related packages move to KDE 4.12.5
2014-10-29 14:30:40
freebsd
freebsd
libvncserver -- multiple security vulnerabilities
2014-09-23 00:00:00
krfb -- Multiple security issues in bundled libvncserver
2014-09-23 00:00:00
centos
centos
libvncserver security update
2014-11-11 18:36:28
kdenetwork security update
2014-11-12 09:44:41
fedora
fedora
[SECURITY] Fedora 20 Update: libvncserver-0.9.10-0.6.20140718git9453be42.fc20
2014-09-29 04:06:45
[SECURITY] Fedora 21 Update: libvncserver-0.9.10-0.6.20140718git9453be42.fc21
2014-10-01 04:23:42
[SECURITY] Fedora 19 Update: krfb-4.11.5-4.fc19
2014-10-08 19:11:38
oraclelinux
oraclelinux
libvncserver security update
2014-11-11 00:00:00
kdenetwork security update
2014-11-11 00:00:00
ubuntucve
ubuntucve
CVE-2014-6052
2014-09-24 00:00:00
CVE-2014-6055
2014-09-24 00:00:00
CVE-2014-6051
2014-09-24 00:00:00
cvelist
cvelist
CVE-2014-6051
2014-09-30 16:00:00
CVE-2014-6055
2014-09-30 16:00:00
CVE-2014-6054
2014-10-06 14:00:00
debiancve
debiancve
CVE-2014-6051
2014-09-30 16:55:07
CVE-2014-6055
2014-09-30 16:55:07
CVE-2014-6054
2014-10-06 14:55:11
cve
cve
CVE-2014-6055
2014-09-30 16:55:07
CVE-2014-6051
2014-09-30 16:55:07
CVE-2014-6052
2014-12-15 18:59:04
prion
prion
Integer overflow
2014-09-30 16:55:00
Stack overflow
2014-09-30 16:55:00
Denial of service
2014-10-06 14:55:00
nvd
nvd
CVE-2014-6051
2014-09-30 16:55:07
CVE-2014-6055
2014-09-30 16:55:07
CVE-2014-6052
2014-12-15 18:59:04
checkpoint_advisories
checkpoint_advisories
LibVNCServer rfbProcessClientNormalMessage msg.ssc.scale Divide by Zero Denial of Service (CVE-2014-6054)
2014-10-13 00:00:00

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

9.8

Confidence

High

EPSS

0.886

Percentile

98.8%

JSON
Related for DEBIAN:DLA-197-1:6E481
nessus34openvas27debian4veracode5securityvulns2archlinux1gentoo2ubuntu3osv7redhat3mageia4freebsd2centos2fedora4oraclelinux2ubuntucve5cvelist7debiancve7cve7prion7nvd7checkpoint_advisories1