ALT-PU-2016-1404-1
Closed vulnerabilities
Published: 2017-02-28
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2016-10207
The Xvnc server in TigerVNC allows remote attackers to cause a denial of service (invalid memory access and crash) by terminating a TLS handshake early.
Severity: HIGH (7.5)
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References:
- openSUSE-SU-2017:0444
- openSUSE-SU-2017:0444
- RHSA-2017:0630
- RHSA-2017:0630
- [oss-security] 20170202 CVE request tigervnc: vnc server can crash when TLS handshake terminates early
- [oss-security] 20170202 CVE request tigervnc: vnc server can crash when TLS handshake terminates early
- [oss-security] 20170204 Re: CVE request tigervnc: vnc server can crash when TLS handshake terminates early
- [oss-security] 20170204 Re: CVE request tigervnc: vnc server can crash when TLS handshake terminates early
- 96012
- 96012
- RHSA-2017:2000
- RHSA-2017:2000
- https://bugzilla.suse.com/show_bug.cgi?id=1023012
- https://bugzilla.suse.com/show_bug.cgi?id=1023012
- https://github.com/TigerVNC/tigervnc/commit/8aa4bc53206c2430bbf0c8f4b642f59a379ee649
- https://github.com/TigerVNC/tigervnc/commit/8aa4bc53206c2430bbf0c8f4b642f59a379ee649
- GLSA-201801-13
- GLSA-201801-13
Closed bugs
Просьба собрать новую версию