Stay Connected:

ELSA-2014-1826

ELSA-2014-1826 - libvncserver security update

Type:SECURITY
Severity:MODERATE
Release Date:2014-11-11

Description


[0.9.7-7.1]
- Fix CVE-2014-6051 (integer overflow in screen size handling) (bug #1157668)
- Fix CVE-2014-6052 (NULL pointer dereference in framebuffer setup)
(bug #1157668)
- Fix CVE-2014-6053 (NULL pointer dereference in ClientCutText message
handling) (bug #1157668)
- Fix CVE-2014-6054 (server divide-by-zero in scaling factor handling)
(bug #1157668)
- Fix CVE-2014-6055 (server stacked-based buffer overflow in file transfer
handling) (bug #1157668)

[0.9.7-7]
- Revert CVE-2011-0904 and CVE-2011-0905 patch because libvncserver is not
vulnerable (bug #696767)

[0.9.7-6]
- Fix CVE-2011-0904 and CVE-2011-0905 in more generic way (bug #696767)

[0.9.7-5]
- Fix CVE-2011-0904 (bug #696767)
- Fix CVE-2011-0905 (bug #696767)


Related CVEs


CVE-2014-6051
CVE-2014-6052
CVE-2014-6053
CVE-2014-6054
CVE-2014-6055

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 6 (i386) libvncserver-0.9.7-7.el6_6.1.src.rpm3726455f66f11360b7ac449a31ff6813-
libvncserver-0.9.7-7.el6_6.1.i686.rpm21ba39451864226a7599625fa0c26d87-
libvncserver-devel-0.9.7-7.el6_6.1.i686.rpm23f7638cf522463cfbdd4400b188b9ab-
Oracle Linux 6 (x86_64) libvncserver-0.9.7-7.el6_6.1.src.rpm3726455f66f11360b7ac449a31ff6813-
libvncserver-0.9.7-7.el6_6.1.i686.rpm21ba39451864226a7599625fa0c26d87-
libvncserver-0.9.7-7.el6_6.1.x86_64.rpme3efa6a0bd61d9dd8bdc03ea8c3e98f1-
libvncserver-devel-0.9.7-7.el6_6.1.i686.rpm23f7638cf522463cfbdd4400b188b9ab-
libvncserver-devel-0.9.7-7.el6_6.1.x86_64.rpm197bc5d37906287bd3ea92a61e867c4e-
Oracle Linux 7 (aarch64) libvncserver-0.9.9-9.el7_0.1.src.rpm19784ad933c0eb94ceda68809266b370ELSA-2020-3281
libvncserver-0.9.9-9.el7_0.1.aarch64.rpm30e4ffaccedf9028db86c2d81e2a4e35ELSA-2020-3281
libvncserver-devel-0.9.9-9.el7_0.1.aarch64.rpme692ef867ffa23c00ae5fd440705b87fELSA-2020-3281
Oracle Linux 7 (x86_64) libvncserver-0.9.9-9.el7_0.1.src.rpm19784ad933c0eb94ceda68809266b370ELSA-2020-3281
libvncserver-0.9.9-9.el7_0.1.i686.rpmccf950a4878943514d4378ef7b7d6370ELSA-2020-3281
libvncserver-0.9.9-9.el7_0.1.x86_64.rpm515dcd8587195a41ddde84f7ff065065ELSA-2020-3281
libvncserver-devel-0.9.9-9.el7_0.1.i686.rpm29a8e2c8109ec566ce88fdc8a04e9c52ELSA-2020-3281
libvncserver-devel-0.9.9-9.el7_0.1.x86_64.rpm54426c65c9993ff88697f79957e0bf7cELSA-2020-3281



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights