The one place for your designs
To enable design management, you'll need to meet the requirements. If you need help, reach out to our support team for assistance.
[3.7] libvncserver: Improper input sanitization in rfbProcessClientNormalMessage in rfbserver.c ((CVE-2018-7225)
An issue was discovered in LibVNCServer through 0.9.11.
rfbProcessClientNormalMessage() in rfbserver.c does not sanitize
msg.cct.length, leading to access
to uninitialized and potentially sensitive data or possibly unspecified
other impact (e.g., an integer overflow) via specially crafted VNC
packets.
References:
https://github.com/LibVNC/libvncserver/issues/218
http://www.openwall.com/lists/oss-security/2018/02/18/1
(from redmine: issue id 8558, created on 2018-02-23, closed on 2018-08-09)
- Relations:
- parent #8556 (closed)
- Changesets:
- Revision 3eddf551 by prs pkt on 2018-08-08T15:44:31Z:
main/libvncserver: fix CVE-2018-7225
fixes #8558