ALT-PU-2017-1039-1

Package update tigervnc in branch sisyphus

Version1.7.0-alt1

Published2017-01-13

Max severityCRITICAL

Severity:

Closed issues (1)

CRITICAL9.8

Buffer overflow in the ModifiablePixelBuffer::fillRect function in TigerVNC before 1.7.1 allows remote servers to execute arbitrary code via an RRE message with subrectangle outside framebuffer boundaries.

Published: 2017-02-28Modified: 2025-04-20

CVSS 2.0MEDIUM 6.8

CVSS:2.0/AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS 3.xCRITICAL 9.8

CVSS:3.x/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References

Closed bugs (2)

просьба собрать новую версию 1.7

Добавить зависимость /usr/bin/vncpasswd