A buffer overflow vulnerability in ModifiablePixelBuffer::fillRect in vncviewer was found allowing malicious VNC server to send crafted RRE message and possibly take control of the TigerVNC viewer. Upstream patch: https://github.com/TigerVNC/tigervnc/commit/18c020124ff1b2441f714da2017f63dba50720ba PR: https://github.com/TigerVNC/tigervnc/pull/399 Reference: http://seclists.org/oss-sec/2017/q1/166
*** This bug has been marked as a duplicate of bug 606998 ***
Freeing CVE to assign it to original bug.