Showing 1 - 2 of 2

CVE-2017-7394

Status Candidate

Overview

In TigerVNC 1.7.1 (SSecurityPlain.cxx SSecurityPlain::processMsg), unauthenticated users can crash the server by sending long usernames.

Gentoo Linux Security Advisory 201801-13: Posted Jan 12, 2018; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 201801-13 - Multiple vulnerabilities have been found in TigerVNC, the worst of which may lead to arbitrary code execution. Versions less than 1.8.0 are affected.; tags | advisory, arbitrary, vulnerability, code execution; systems | linux, gentoo; advisories | CVE-2016-10207, CVE-2017-7392, CVE-2017-7393, CVE-2017-7394, CVE-2017-7395, CVE-2017-7396; SHA-256 | c2d4767acb8b67851054ab3f12d2a5d768e55e88325493134fe5e51c65c6693e; Download | Favorite | View

Red Hat Security Advisory 2017-2000-01: Posted Aug 2, 2017; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2017-2000-01 - Virtual Network Computing is a remote display system which allows users to view a computing desktop environment not only on the machine where it is running, but from anywhere on the Internet and from a wide variety of machine architectures. TigerVNC is a suite of VNC servers and clients which allows users to connect to other desktops running a VNC server. FLTK is a cross-platform C++ GUI toolkit. It provides modern GUI functionality without the bloat, and supports 3D graphics via OpenGL and its built-in GLUT emulation. The following packages have been upgraded to a later upstream version: tigervnc, fltk.; tags | advisory, remote; systems | linux, redhat; advisories | CVE-2016-10207, CVE-2017-5581, CVE-2017-7392, CVE-2017-7393, CVE-2017-7394, CVE-2017-7395, CVE-2017-7396; SHA-256 | 6d67f6e14d6c56a2db76fe794e4c7332dfcb2b7d03070b8668c376d0c4d9e904; Download | Favorite | View

Page 1 of 1 Back 1 Next