SUSE Package Hub - SUSE-SLE-Module-Packagehub-Subpackages-15-SP1-2020-1164

Update Info

SUSE-SLE-Module-Packagehub-Subpackages-15-SP1-2020-1164

Security update for LibVNCServer

Type: security

Severity: important

Issued: 2020-07-07

Description:

This update for LibVNCServer fixes the following issues:

- CVE-2019-15690: Fixed a heap buffer overflow (bsc#1160471).
- CVE-2019-15681: Fixed a memory leak which could have allowed to a remote attacker to read stack memory (bsc#1155419).
- CVE-2019-20788: Fixed a integer overflow and heap-based buffer overflow via a large height or width value (bsc#1170441).

References

Packages

LibVNCServer-0.9.10-4.14.1