SUSE Package Hub - SUSE-SLE-Module-Packagehub-Subpackages-15-2019-283

Update Info

SUSE-SLE-Module-Packagehub-Subpackages-15-2019-283

Security update for LibVNCServer

Type: security

Severity: critical

Issued: 2019-02-07

Description:

This update for LibVNCServer fixes the following issues:

Security issues fixed:

- CVE-2018-20749: Fixed a heap out of bounds write vulnerability in rfbserver.c (bsc#1123828)
- CVE-2018-20750: Fixed a heap out of bounds write vulnerability in rfbserver.c (bsc#1123832)
- CVE-2018-20748: Fixed multiple heap out-of-bound writes in VNC client code (bsc#1123823)

References

Packages

LibVNCServer-0.9.10-4.6.1