CVE-2018-20019

CRITICAL9.8

LibVNC before commit a83439b9fbe0f03c48eb94ed05729cb016f8b72f contains multiple heap out-of-bound write vulnerabilities in VNC client code that can result remote code execution

Published Dec 19, 2018

Modified 1 years ago

Details

LibVNC before commit a83439b9fbe0f03c48eb94ed05729cb016f8b72f contains multiple heap out-of-bound write vulnerabilities in VNC client code that can result remote code execution

References

WEB

https://cert-portal.siemens.com/productcert/pdf/ssa-390195.pdf

WEB

https://ics-cert.kaspersky.com/advisories/klcert-advisories/2018/12/19/klcert-18-029-libvnc-multiple-heap-out-of-bound-vulnerabilities/

WEB

https://lists.debian.org/debian-lts-announce/2018/12/msg00017.html

WEB

https://lists.debian.org/debian-lts-announce/2019/10/msg00042.html

ADVISORY

https://security.gentoo.org/glsa/201908-05

ADVISORY