Search CVE reports
1 – 10 of 47 results
LibVNCServer versions 0.9.15 and prior (fixed in commit dc78dee) contain null pointer dereference vulnerabilities in the HTTP proxy handlers within httpProcessInput() in httpd.c that allow remote attackers to cause a denial of...
6 affected packages
libvncserver, vino, x11vnc, veyon, italc, tightvnc
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libvncserver | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| vino | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| x11vnc | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| veyon | Needs evaluation | Needs evaluation | Needs evaluation | — |
| italc | Not in release | Not in release | — | Needs evaluation |
| tightvnc | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
LibVNCServer versions 0.9.15 and prior (fixed in commit 009008e) contain a heap out-of-bounds read vulnerability in the UltraZip encoding handler that allows a malicious VNC server to cause information disclosure or application...
6 affected packages
veyon, libvncserver, vino, x11vnc, italc, tightvnc
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| veyon | Needs evaluation | Needs evaluation | Needs evaluation | — |
| libvncserver | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| vino | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| x11vnc | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| italc | Not in release | Not in release | — | Needs evaluation |
| tightvnc | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
libvncclient v0.9.13 was discovered to contain a memory leak via the function rfbClientCleanup().
6 affected packages
libvncserver, tightvnc, veyon, x11vnc, italc, vino
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libvncserver | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| tightvnc | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| veyon | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
| x11vnc | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| italc | — | Not in release | Not in release | Needs evaluation |
| vino | Not affected | Not affected | Not affected | Not affected |
Some fixes available 17 of 53
A divide by zero issue was found to occur in libvncserver-0.9.12. A malicious client could use this flaw to send a specially crafted message that, when processed by the VNC server, would lead to a floating point exception,...
6 affected packages
x11vnc, libvncserver, vino, italc, tightvnc, veyon
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| x11vnc | Not affected | Not affected | Not affected | Not affected |
| libvncserver | Not affected | Not affected | Fixed | Fixed |
| vino | Fixed | Fixed | Fixed | Fixed |
| italc | Not in release | Not in release | Not in release | Needs evaluation |
| tightvnc | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
| veyon | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
Some fixes available 4 of 25
It was discovered that websockets.c in LibVNCServer prior to 0.9.12 did not properly decode certain WebSocket frames. A malicious attacker could exploit this by sending specially crafted WebSocket frames to a server, causing a...
3 affected packages
libvncserver, veyon, x11vnc
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libvncserver | Not affected | Not affected | Fixed | Fixed |
| veyon | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
| x11vnc | Not affected | Not affected | Not affected | Not affected |
Some fixes available 3 of 25
An issue was discovered in LibVNCServer before 0.9.13. libvncclient/rfbproto.c does not limit TextChat size.
3 affected packages
veyon, x11vnc, libvncserver
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| veyon | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
| x11vnc | Not affected | Not affected | Not affected | Not affected |
| libvncserver | Not affected | Not affected | Fixed | Fixed |
Some fixes available 17 of 39
An issue was discovered in LibVNCServer before 0.9.13. libvncserver/rre.c allows out-of-bounds access via encodings.
4 affected packages
veyon, x11vnc, libvncserver, vino
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| veyon | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
| x11vnc | Not affected | Not affected | Not affected | Not affected |
| libvncserver | Not affected | Not affected | Fixed | Fixed |
| vino | Fixed | Fixed | Fixed | Fixed |
Some fixes available 17 of 39
An issue was discovered in LibVNCServer before 0.9.13. libvncserver/hextile.c allows out-of-bounds access via encodings.
4 affected packages
x11vnc, libvncserver, veyon, vino
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| x11vnc | Not affected | Not affected | Not affected | Not affected |
| libvncserver | Not affected | Not affected | Fixed | Fixed |
| veyon | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
| vino | Fixed | Fixed | Fixed | Fixed |
Some fixes available 17 of 39
An issue was discovered in LibVNCServer before 0.9.13. libvncserver/corre.c allows out-of-bounds access via encodings.
4 affected packages
libvncserver, vino, veyon, x11vnc
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libvncserver | Not affected | Not affected | Fixed | Fixed |
| vino | Fixed | Fixed | Fixed | Fixed |
| veyon | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
| x11vnc | Not affected | Not affected | Not affected | Not affected |
Some fixes available 3 of 25
An issue was discovered in LibVNCServer before 0.9.13. libvncserver/scale.c has a pixel_value integer overflow.
3 affected packages
veyon, x11vnc, libvncserver
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| veyon | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
| x11vnc | Not affected | Not affected | Not affected | Not affected |
| libvncserver | Not affected | Not affected | Fixed | Fixed |