Debian: DLA-2045-1 Critical: TightVNC Denial Of Service Issues
debian lts
December 21, 2019
Several vulnerabilities have recently been discovered in TightVNC 1.x, an X11 based VNC server/viewer application for Windows and Unix
Summary
CVE-2014-6053
The rfbProcessClientNormalMessage function in rfbserver.c in TightVNC
server did not properly handle attempts to send a large amount of
ClientCutText data, which allowed remote attackers to cause a denial
of service (memory consumption or daemon crash) via a crafted message
that was processed by using a single unchecked malloc.
CVE-2018-7225
rfbProcessClientNormalMessage() in rfbserver.c did not sanitize
msg.cct.length, leading to access to uninitialized and potentially
sensitive data or possibly unspecified other impact (e.g., an integer
overflow) via specially crafted VNC packets.
CVE-2019-8287
TightVNC code contained global buffer overflow in HandleCoRREBBP
macro function, which could potentially have result in code
execution. This attack appeared to be exploitable via network
connectivity.
(aka CVE-2018-20020/libvncserver)
CVE-2018-20021
TightVNC in vncviewer/rfbproto.c contained a CWE-835: Infinite loop
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
<pre><font face="Courier">Package: tightvnc
Version: 1.3.9-6.5+deb8u1
CVE ID: CVE-2014-6053 CVE-2018-7225 CVE-2019-8287 CVE-2018-20021
Debian Bug: 945364
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!