RSS   Vulnerabilities for 'Gtk-vnc'   RSS

2017-07-17
 
CVE-2017-1000044

 

 
gtk-vnc 0.4.2 and older doesn't check framebuffer boundaries correctly when updating framebuffer which may lead to memory corruption when rendering

 
2017-02-28
 
CVE-2017-5885

CWE-190
 

 
Multiple integer overflows in the (1) vnc_connection_server_message and (2) vnc_color_map_set functions in gtk-vnc before 0.7.0 allow remote servers to cause a denial of service (crash) or possibly execute arbitrary code via vectors involving SetColorMapEntries, which triggers a buffer overflow.

 
 
CVE-2017-5884

CWE-118
 

 
gtk-vnc before 0.7.0 does not properly check boundaries of subrectangle-containing tiles, which allows remote servers to execute arbitrary code via the src x, y coordinates in a crafted (1) rre, (2) hextile, or (3) copyrect tile.

 

 >>> Vendor: Gnome 89 Products
Gnumeric
GDM
Gnome libs
Gnome-lokkit
Esound
Gnorpm
Libgtop daemon
Nautilus
Evolution
Bonobo
Gnome-terminal
Gtkhtml
EOG
Balsa
Batalla naval
Gdkpixbuf
GPDF
Libvte4
Libzvt2
Epiphany
Gedit
Networkmanager
Libgda2
DIA
Dwarf http server
Screensaver
Dhcdbd
Libgsf
Libsoup
Gconf
Power manager
Ekiga
Gnome-vfs
Gnome
YELP
GLIB
ORCA
Vinagre
Rhythmbox
Nautilus-python
Evolution-data-server
Gupnp
Gmime
Evince
Gnome-shell
Tomboy
Ifcfg-rh plug-in
Empathy
Update-manager-core
Gdk-pixbuf
Libgdata
At-spi2-atk
Librsvg
Libsocialweb
Gnome-keyring
Gnome display manager
Gnome online accounts
Geary
GCAB
VALA
Byzanz
Eye of gnome
Shotwell
Gtk-vnc
Libcroco
Gnome-session
Libgxps
Librest
Gthumb
Seahorse
GVFS
Gnome-desktop
Evolution-ews
Network manager vpnc
Gnome-system-log
Gnome-font-viewer
Gnome keyring
Evolution data server
File-roller
Glib-networking
Gnome-autoar
Libgrss
Libgda
Libgfbgraph
Grilo
Evolution-rss
Libzapojit
Ocrfeeder
Caribou


Copyright 2024, cxsecurity.com

 

Back to Top