UbuntuUpdates.org

Bugs fixes in "vino"

Origin Bug number Title Date fixed
CVE CVE-2020-14402 An issue was discovered in LibVNCServer before 0.9.13. libvncserver/corre.c allows out-of-bounds access via encodings. 2020-10-07
CVE CVE-2020-1440 A tampering vulnerability exists when Microsoft SharePoint Server fails to properly handle profile data, aka 'Microsoft SharePoint Server Tampering V 2020-10-07
CVE CVE-2020-14397 An issue was discovered in LibVNCServer before 0.9.13. libvncserver/rfbregion.c has a NULL pointer dereference. 2020-10-07
CVE CVE-2019-15681 LibVNC commit before d01e1bb4246323ba6fcee3b82ef1faa9b1dac82a contains a memory leak (CWE-655) in VNC server code, which allow an attacker to read st 2020-10-07
CVE CVE-2018-7225 An issue was discovered in LibVNCServer through 0.9.11. rfbProcessClientNormalMessage() in rfbserver.c does not sanitize msg.cct.length, leading to a 2020-10-07
CVE CVE-2014-6053 Server crash on a very large ClientCutText message 2020-10-07
CVE CVE-2020-14404 An issue was discovered in LibVNCServer before 0.9.13. libvncserver/rre.c allows out-of-bounds access via encodings. 2020-10-07
CVE CVE-2020-14403 An issue was discovered in LibVNCServer before 0.9.13. libvncserver/hextile.c allows out-of-bounds access via encodings. 2020-10-07
CVE CVE-2020-14402 An issue was discovered in LibVNCServer before 0.9.13. libvncserver/corre.c allows out-of-bounds access via encodings. 2020-10-07
CVE CVE-2020-1440 A tampering vulnerability exists when Microsoft SharePoint Server fails to properly handle profile data, aka 'Microsoft SharePoint Server Tampering V 2020-10-07
CVE CVE-2020-14397 An issue was discovered in LibVNCServer before 0.9.13. libvncserver/rfbregion.c has a NULL pointer dereference. 2020-10-07
CVE CVE-2019-15681 LibVNC commit before d01e1bb4246323ba6fcee3b82ef1faa9b1dac82a contains a memory leak (CWE-655) in VNC server code, which allow an attacker to read st 2020-10-07
CVE CVE-2018-7225 An issue was discovered in LibVNCServer through 0.9.11. rfbProcessClientNormalMessage() in rfbserver.c does not sanitize msg.cct.length, leading to a 2020-10-07
CVE CVE-2014-6053 Server crash on a very large ClientCutText message 2020-10-07
Launchpad 1607663 vino-server does not autostart on Ubuntu-GNOME 2017-05-24
Launchpad 1607663 vino-server does not autostart on Ubuntu-GNOME 2016-10-05
Launchpad 1610547 Cannot connect to remote desktop, vino eating cpu and not answering 2016-08-22
Launchpad 1610547 Cannot connect to remote desktop, vino eating cpu and not answering 2016-08-12



About   -   Send Feedback to @ubuntu_updates