Overview

File _patchinfo of Package patchinfo.3921

<patchinfo incident="3921">
  <issue id="1017712" tracker="bnc">VUL-0: CVE-2016-9942: LibVNCServer,x11vnc: Heap-based buffer overflow via crafted FramebufferUpdate message with the Ultra type tile</issue>
  <issue id="1017711" tracker="bnc">VUL-0: CVE-2016-9941: LibVNCServer,x11vnc: Heap-based buffer overflow via crafted FramebufferUpdate message containing a subrectangle outside of the client drawing area</issue>
  <issue id="1081493" tracker="bnc" />
  <issue id="2016-9942" tracker="cve" />
  <issue id="2016-9941" tracker="cve" />
  <issue id="2018-7225" tracker="cve" />
  <category>security</category>
  <rating>important</rating>
  <packager>pgajdos</packager>
  <description>
LibVNCServer was updated to fix two security issues.

These security issues were fixed:

- CVE-2018-7225: Missing input sanitization inside rfbserver.c rfbProcessClientNormalMessage() (bsc#1081493).
- CVE-2016-9942: Heap-based buffer overflow in ultra.c allowed remote servers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted FramebufferUpdate message with the Ultra type tile, such that the LZO payload decompressed length exceeds what is specified by the tile dimensions (bsc#1017712).
- CVE-2016-9941: Heap-based buffer overflow in rfbproto.c allowed remote servers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted FramebufferUpdate message containing a subrectangle outside of the client drawing area (bsc#1017711).
  </description>
  <summary>Security update for LibVNCServer</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places