CVE-2014-8240
16.10.2014, 19:55
Integer overflow in TigerVNC allows remote VNC servers to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to screen size handling, which triggers a heap-based buffer overflow, a similar issue to CVE-2014-6051.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| tigervnc | tigervnc | 0.0.90 |
| tigervnc | tigervnc | 0.0.91 |
| tigervnc | tigervnc | 1.0.0 |
| tigervnc | tigervnc | 1.0.1 |
| tigervnc | tigervnc | 1.1.0 |
𝑥
= Vulnerable software versions
Debian Releases
openSUSE / SLES Releases
openSUSE Product | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| libXvnc1 |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| tigervnc |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| xorg-x11-Xvnc |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| xorg-x11-Xvnc-module |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| xorg-x11-Xvnc-novnc |
|
Red Hat Enterprise Linux Releases
Red Hat Product | |||
|---|---|---|---|
| tigervnc |
| ||
| tigervnc-icons |
| ||
| tigervnc-license |
| ||
| tigervnc-server |
| ||
| tigervnc-server-applet |
| ||
| tigervnc-server-minimal |
| ||
| tigervnc-server-module |
|
Common Weakness Enumeration
References