AXSA:2020-247:01

リリース日: 
2020/07/29 Wednesday - 11:46
題名: 
libvncserver-0.9.11-9.el8.2
影響のあるチャネル: 
Asianux Server 8 for x86_64
Severity: 
High
Description: 

LibVNCServer is a C library that enables you to implement VNC server functionality into own programs.

Security Fix(es):

* libvncserver: HandleCursorShape() integer overflow resulting in heap-based buffer overflow (CVE-2019-15690)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2019-15690
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

解決策: 

Update packages.

追加情報: 

N/A

ダウンロード: 

SRPMS
  1. libvncserver-0.9.11-9.el8.2.src.rpm
    MD5: 3adc20e596881f87aafad9b0957e7768
    SHA-256: 751a66dfe96ab74e3c1cf6a3fa2dca184f5baece39cb7dd99cc006244e03976a
    Size: 1.37 MB

Asianux Server 8 for x86_64
  1. libvncserver-0.9.11-9.el8.2.x86_64.rpm
    MD5: 61c341a1575afbfdb8d9774c41739f0c
    SHA-256: c9ca94c464e582e3aa7b306c8c01e5fdf0522ff2e43f70543af23d328de56744
    Size: 272.90 kB
Copyright© 2007-2015 Asianux. All rights reserved.