Vulnerability & Exploit Database

Displaying all 10 entries

Results for: CVE-2018-7225 Back to search

Ubuntu: USN-3618-1 (CVE-2018-7225): LibVNCServer vulnerability Vulnerability

  • Severity: 8
  • Published: February 19, 2018

An issue was discovered in LibVNCServer through 0.9.11. rfbProcessClientNormalMessage() in rfbserver.c does not sanitize msg.cct.length, leading to access to uninitialized and potentially sensitive data or possibly unspecified other impact (e.g., an integer overflow) via specially crafted VNC packets.

SUSE: CVE-2018-7225: SUSE Linux Security Advisory Vulnerability

  • Severity: 8
  • Published: February 19, 2018

An issue was discovered in LibVNCServer through 0.9.11. rfbProcessClientNormalMessage() in rfbserver.c does not sanitize msg.cct.length, leading to access to uninitialized and potentially sensitive data or possibly unspecified other impact (e.g., an integer overflow) via specially crafted VNC packets.

Red Hat: CVE-2018-7225: Moderate: libvncserver security update (RHSA-2018:1055) Vulnerability

  • Severity: 8
  • Published: February 19, 2018

An issue was discovered in LibVNCServer through 0.9.11. rfbProcessClientNormalMessage() in rfbserver.c does not sanitize msg.cct.length, leading to access to uninitialized and potentially sensitive data or possibly unspecified other impact (e.g., an integer overflow) via specially crafted VNC packets.

Oracle Linux: (CVE-2018-7225) ELSA-2018-1055: libvncserver security update Vulnerability

  • Severity: 8
  • Published: February 19, 2018

An issue was discovered in LibVNCServer through 0.9.11. rfbProcessClientNormalMessage() in rfbserver.c does not sanitize msg.cct.length, leading to access to uninitialized and potentially sensitive data or possibly unspecified other impact (e.g., an integer overflow) via specially crafted VNC packets.

Huawei EulerOS: CVE-2018-7225: libvncserver security update Vulnerability

  • Severity: 8
  • Published: February 19, 2018

An issue was discovered in LibVNCServer through 0.9.11. rfbProcessClientNormalMessage() in rfbserver.c does not sanitize msg.cct.length, leading to access to uninitialized and potentially sensitive data or possibly unspecified other impact (e.g., an integer overflow) via specially crafted VNC packets.

Huawei EulerOS: CVE-2018-7225: libvncserver security update Vulnerability

  • Severity: 8
  • Published: February 19, 2018

An issue was discovered in LibVNCServer through 0.9.11. rfbProcessClientNormalMessage() in rfbserver.c does not sanitize msg.cct.length, leading to access to uninitialized and potentially sensitive data or possibly unspecified other impact (e.g., an integer overflow) via specially crafted VNC packets.

Debian: CVE-2018-7225: libvncserver -- security update Vulnerability

  • Severity: 8
  • Published: February 19, 2018

An issue was discovered in LibVNCServer through 0.9.11. rfbProcessClientNormalMessage() in rfbserver.c does not sanitize msg.cct.length, leading to access to uninitialized and potentially sensitive data or possibly unspecified other impact (e.g., an integer overflow) via specially crafted VNC packets.

CentOS: (CVE-2018-7225) CESA-2018:1055: libvncserver Vulnerability

  • Severity: 8
  • Published: February 19, 2018

An issue was discovered in LibVNCServer through 0.9.11. rfbProcessClientNormalMessage() in rfbserver.c does not sanitize msg.cct.length, leading to access to uninitialized and potentially sensitive data or possibly unspecified other impact (e.g., an integer overflow) via specially crafted VNC packets.

SUSE: CVE-2017-7225: SUSE Linux Security Advisory Vulnerability

  • Severity: 5
  • Published: March 22, 2017

The find_nearest_line function in addr2line in GNU Binutils 2.28 does not handle the case where the main file name and the directory name are both empty, triggering a NULL pointer dereference and an invalid write, and leading to a program crash.