Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 525
Alerts This Week
Warning Icon 1 525

SciLinux SL7 Important: SLSA-2019-0059-1 Critical Code Execution Threat

Scientific Large Esm H446
libvncserver: Heap out-of-bounds write in rfbserver.c in rfbProcessFileTransferReadBuffer() allows for potential code execution (CVE-2018-15127) SL7 x86_64 libvncserver-0.9.9-13.el7_6.i686.rpm libvncserver-0.9.9-13.el7_6.x86_64.rpm libvncserver-debuginfo-0.9.9-13.el7_6.i686.rpm libvncserver-debuginfo-0.9.9-13.el7_6.x86_64.rpm libvncserver-devel-0.9.9-13.el7_6.i686.rpm [More...]
Synopsis: Important: libvncserver security update
Advisory ID:       SLSA-2019:0059-1
Issue Date:        2019-01-15
CVE Numbers:       CVE-2018-15127
--

Security Fix(es):

* libvncserver: Heap out-of-bounds write in rfbserver.c in
rfbProcessFileTransferReadBuffer() allows for potential code execution
(CVE-2018-15127)
--

SL7
  x86_64
    libvncserver-0.9.9-13.el7_6.i686.rpm
    libvncserver-0.9.9-13.el7_6.x86_64.rpm
    libvncserver-debuginfo-0.9.9-13.el7_6.i686.rpm
    libvncserver-debuginfo-0.9.9-13.el7_6.x86_64.rpm
    libvncserver-devel-0.9.9-13.el7_6.i686.rpm
    libvncserver-devel-0.9.9-13.el7_6.x86_64.rpm

- Scientific Linux Development Team