Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2015:0113
HistoryFeb 02, 2015 - 12:00 a.m.

(RHSA-2015:0113) Moderate: libvncserver security update

2015-02-0200:00:00
access.redhat.com
31

EPSS

0.022

Percentile

89.5%

JSON

LibVNCServer is a library that allows for easy creation of VNC server or
client functionality.

An integer overflow flaw, leading to a heap-based buffer overflow, was
found in the way screen sizes were handled by LibVNCServer. A malicious VNC
server could use this flaw to cause a client to crash or, potentially,
execute arbitrary code in the client. (CVE-2014-6051)

Two stack-based buffer overflow flaws were found in the way LibVNCServer
handled file transfers. A remote attacker could use this flaw to crash the
VNC server using a malicious VNC client. (CVE-2014-6055)

Red Hat would like to thank oCERT for reporting these issues. oCERT
acknowledges Nicolas Ruff as the original reporter.

All libvncserver users are advised to upgrade to these updated packages,
which contain backported patches to correct these issues. All running
applications linked against libvncserver must be restarted for this update
to take effect.

OSVersionArchitecturePackageVersionFilename
RedHat6srclibvncserver< 0.9.7-7.el6_5.1libvncserver-0.9.7-7.el6_5.1.src.rpm
RedHat6s390libvncserver-debuginfo< 0.9.7-7.el6_5.1libvncserver-debuginfo-0.9.7-7.el6_5.1.s390.rpm
RedHat6s390xlibvncserver-debuginfo< 0.9.7-7.el6_5.1libvncserver-debuginfo-0.9.7-7.el6_5.1.s390x.rpm
RedHat6i686libvncserver-debuginfo< 0.9.7-7.el6_5.1libvncserver-debuginfo-0.9.7-7.el6_5.1.i686.rpm
RedHat6ppc64libvncserver< 0.9.7-7.el6_5.1libvncserver-0.9.7-7.el6_5.1.ppc64.rpm
RedHat6x86_64libvncserver< 0.9.7-7.el6_5.1libvncserver-0.9.7-7.el6_5.1.x86_64.rpm
RedHat6s390libvncserver-devel< 0.9.7-7.el6_5.1libvncserver-devel-0.9.7-7.el6_5.1.s390.rpm
RedHat6i686libvncserver< 0.9.7-7.el6_5.1libvncserver-0.9.7-7.el6_5.1.i686.rpm
RedHat6ppclibvncserver-debuginfo< 0.9.7-7.el6_5.1libvncserver-debuginfo-0.9.7-7.el6_5.1.ppc.rpm
RedHat6x86_64libvncserver-devel< 0.9.7-7.el6_5.1libvncserver-devel-0.9.7-7.el6_5.1.x86_64.rpm
Rows per page:
1-10 of 191

Related

nessus 30
ubuntucve 3
veracode 4
cvelist 3
debiancve 3
freebsd 2
cve 3
openvas 23
debian 3
prion 3
nvd 3
osv 4
redhat 2
securityvulns 2
mageia 3
archlinux 1
gentoo 2
ubuntu 2
centos 2
fedora 4
oraclelinux 2
nessus
nessus
RHEL 6 : libvncserver (RHSA-2015:0113)
2015-02-03 00:00:00
SUSE SLED11 / SLES11 Security Update : LibVNCServer (SUSE-SU-2015:2110-1)
2015-11-30 00:00:00
Scientific Linux Security Update : libvncserver on SL6.x, SL7.x i386/x86_64 (20141111)
2014-11-13 00:00:00
ubuntucve
ubuntucve
CVE-2014-6055
2014-09-24 00:00:00
CVE-2014-6051
2014-09-24 00:00:00
CVE-2014-6052
2014-09-24 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:02:54
Denial Of Service (DoS) Through Divide By Zero
2019-05-02 05:04:38
Arbitrary Code Execution
2019-05-02 05:04:38
cvelist
cvelist
CVE-2014-6051
2014-09-30 16:00:00
CVE-2014-6055
2014-09-30 16:00:00
CVE-2014-8240
2014-10-16 19:00:00
debiancve
debiancve
CVE-2014-6051
2014-09-30 16:55:07
CVE-2014-6055
2014-09-30 16:55:07
CVE-2014-8240
2014-10-16 19:55:14
freebsd
freebsd
krfb -- Multiple security issues in bundled libvncserver
2014-09-23 00:00:00
libvncserver -- multiple security vulnerabilities
2014-09-23 00:00:00
cve
cve
CVE-2014-6055
2014-09-30 16:55:07
CVE-2014-6051
2014-09-30 16:55:07
CVE-2014-8240
2014-10-16 19:55:14
openvas
openvas
Debian Security Advisory DSA 3081-1 (libvncserver - security update)
2014-11-29 00:00:00
SUSE: Security Advisory (SUSE-SU-2015:2110-1)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2015:2088-1)
2021-04-19 00:00:00
debian
debian
[SECURITY] [DSA 3081-1] libvncserver security update
2014-11-29 15:21:35
[SECURITY] [DLA 197-1] libvncserver security update
2015-04-14 16:05:48
[SECURITY] [DLA 1979-1] italc security update
2019-10-30 22:21:35
prion
prion
Integer overflow
2014-09-30 16:55:00
Stack overflow
2014-09-30 16:55:00
Integer overflow
2014-10-16 19:55:00
nvd
nvd
CVE-2014-6051
2014-09-30 16:55:07
CVE-2014-6055
2014-09-30 16:55:07
CVE-2014-8240
2014-10-16 19:55:14
osv
osv
libvncserver - security update
2015-04-14 00:00:00
libvncserver - security update
2014-11-29 00:00:00
italc vulnerabilities
2020-10-20 16:35:20
redhat
redhat
(RHSA-2014:1826) Moderate: libvncserver security update
2014-11-11 00:00:00
(RHSA-2014:1827) Moderate: kdenetwork security update
2014-11-11 14:45:20
securityvulns
securityvulns
libvncserver multiple security vulnerabilities
2014-09-29 00:00:00
[oCERT-2014-007] libvncserver multiple issues
2014-09-29 00:00:00
mageia
mageia
Updated libvncserver & remmina packages fix security vulnerabilities
2014-10-07 13:22:51
Updated kdenetwork4 packages fix security vulnerabilities in krfb
2014-11-21 15:44:16
Updated KDE 4 and related packages move to KDE 4.12.5
2014-10-29 14:30:40
archlinux
archlinux
libvncserver: remote code execution, denial of service
2014-10-24 00:00:00
gentoo
gentoo
LibVNCServer: Multiple vulnerabilities
2015-07-07 00:00:00
TigerVNC: Integer overflow
2016-12-13 00:00:00
ubuntu
ubuntu
LibVNCServer vulnerabilities
2014-09-29 00:00:00
iTALC vulnerabilities
2020-10-20 00:00:00
centos
centos
libvncserver security update
2014-11-11 18:36:28
kdenetwork security update
2014-11-12 09:44:41
fedora
fedora
[SECURITY] Fedora 21 Update: libvncserver-0.9.10-0.6.20140718git9453be42.fc21
2014-10-01 04:23:42
[SECURITY] Fedora 20 Update: libvncserver-0.9.10-0.6.20140718git9453be42.fc20
2014-09-29 04:06:45
[SECURITY] Fedora 19 Update: libvncserver-0.9.10-0.6.20140718git9453be42.fc19
2014-10-04 03:25:16
oraclelinux
oraclelinux
libvncserver security update
2014-11-11 00:00:00
kdenetwork security update
2014-11-11 00:00:00

EPSS

0.022

Percentile

89.5%

JSON
Related for RHSA-2015:0113
nessus30ubuntucve3veracode4cvelist3debiancve3freebsd2cve3openvas23debian3prion3nvd3osv4redhat2securityvulns2mageia3archlinux1gentoo2ubuntu2centos2fedora4oraclelinux2