Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 701820 - net-misc/ssvnc: multiple vulnerabilities (CVE-2018-{20020,20021,20022,20024})
Summary: net-misc/ssvnc: multiple vulnerabilities (CVE-2018-{20020,20021,20022,20024})
Status: IN_PROGRESS
Alias: None
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal minor (vote)
Assignee: Gentoo Security
URL:
Whiteboard: B3 [upstream/ebuild]
Keywords:
Depends on:
Blocks: CVE-2018-20020, CVE-2018-20021, CVE-2018-20022, CVE-2018-20024
  Show dependency tree
 
Reported: 2019-12-02 22:34 UTC by GLSAMaker/CVETool Bot
Modified: 2019-12-02 22:35 UTC (History)
0 users

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description GLSAMaker/CVETool Bot gentoo-dev 2019-12-02 22:34:38 UTC
CVE-2018-20020 (https://nvd.nist.gov/vuln/detail/CVE-2018-20020):
  LibVNC before commit 7b1ef0ffc4815cab9a96c7278394152bdc89dc4d contains heap
  out-of-bound write vulnerability inside structure in VNC client code that
  can result remote code execution

CVE-2018-20021 (https://nvd.nist.gov/vuln/detail/CVE-2018-20021):
  LibVNC before commit c3115350eb8bb635d0fdb4dbbb0d0541f38ed19c contains a
  CWE-835: Infinite loop vulnerability in VNC client code. Vulnerability
  allows attacker to consume excessive amount of resources like CPU and RAM

CVE-2018-20022 (https://nvd.nist.gov/vuln/detail/CVE-2018-20022):
  LibVNC before 2f5b2ad1c6c99b1ac6482c95844a84d66bb52838 contains multiple
  weaknesses CWE-665: Improper Initialization vulnerability in VNC client code
  that allows attacker to read stack memory and can be abuse for information
  disclosure. Combined with another vulnerability, it can be used to leak
  stack memory layout and in bypassing ASLR

CVE-2018-20024 (https://nvd.nist.gov/vuln/detail/CVE-2018-20024):
  LibVNC before commit 4a21bbd097ef7c44bb000c3bd0907f96a10e4ce7 contains null
  pointer dereference in VNC client code that can result DoS.