VulnerableCode Package Details - pkg:deb/debian/libvncserver@0.9.13%2Bdfsg-2%2Bdeb11u1

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-1mc5-8kc9-r7fh	An issue was discovered in LibVNCServer before 0.9.13. libvncserver/ws_decode.c can lead to a crash because of unaligned accesses in hybiReadAndDecode.	CVE-2019-20840
VCID-21gw-wymt-j3gb	An issue was discovered in LibVNCServer before 0.9.13. libvncserver/hextile.c allows out-of-bounds access via encodings.	CVE-2020-14403
VCID-2anm-wxtf-ubgq	A divide by zero issue was found to occur in libvncserver-0.9.12. A malicious client could use this flaw to send a specially crafted message that, when processed by the VNC server, would lead to a floating point exception, resulting in a denial of service.	CVE-2020-25708
VCID-34tt-yamf-xbdy	It was discovered that websockets.c in LibVNCServer prior to 0.9.12 did not properly decode certain WebSocket frames. A malicious attacker could exploit this by sending specially crafted WebSocket frames to a server, causing a heap-based buffer overflow.	CVE-2017-18922
VCID-3qks-1d5s-u7a8	An issue was discovered in LibVNCServer before 0.9.13. An improperly closed TCP connection causes an infinite loop in libvncclient/sockets.c.	CVE-2020-14398
VCID-66b8-2ss6-wkgz	An issue was discovered in LibVNCServer before 0.9.13. libvncserver/corre.c allows out-of-bounds access via encodings.	CVE-2020-14402
VCID-7azw-g7z2-pkdu	An issue was discovered in LibVNCServer before 0.9.13. Byte-aligned data is accessed through uint16_t pointers in libvncserver/translate.c. NOTE: Third parties do not consider this to be a vulnerability as there is no known path of exploitation or cross of a trust boundary	CVE-2020-14400
VCID-7xhu-p1a5-qbg1	An issue was discovered in LibVNCServer before 0.9.13. libvncserver/rre.c allows out-of-bounds access via encodings.	CVE-2020-14404
VCID-9gdb-hqgj-jfcm	LibVNCServer 0.9.12 release and earlier contains heap buffer overflow vulnerability within the HandleCursorShape() function in libvncclient/cursor.c. An attacker sends cursor shapes with specially crafted dimensions, which can result in remote code execution.	CVE-2019-15690
VCID-ak8c-schu-zfe3	libvncclient/sockets.c in LibVNCServer before 0.9.13 has a buffer overflow via a long socket filename.	CVE-2019-20839
VCID-amtn-98yp-s3d3	An issue was discovered in LibVNCServer before 0.9.13. Byte-aligned data is accessed through uint32_t pointers in libvncclient/rfbproto.c. NOTE: there is reportedly "no trust boundary crossed.	CVE-2020-14399
VCID-ftsu-ebmx-dufv	An issue was discovered in LibVNCServer before 0.9.13. libvncserver/scale.c has a pixel_value integer overflow.	CVE-2020-14401
VCID-jhre-6uje-5kbc	An issue was discovered in LibVNCServer before 0.9.13. libvncclient/rfbproto.c does not limit TextChat size.	CVE-2020-14405
VCID-mxf4-fbu7-t7ga	libvncclient v0.9.13 was discovered to contain a memory leak via the function rfbClientCleanup().	CVE-2020-29260
VCID-t53m-423e-p7dv	libvncclient/cursor.c in LibVNCServer through 0.9.12 has a HandleCursorShape integer overflow and heap-based buffer overflow via a large height or width value. NOTE: this may overlap CVE-2019-15690.	CVE-2019-20788
VCID-tbqp-mj6s-17ha	An issue was discovered in LibVNCServer before 0.9.13. libvncserver/rfbregion.c has a NULL pointer dereference.	CVE-2020-14397
VCID-vjz6-kw2t-cucm	LibVNC commit before d01e1bb4246323ba6fcee3b82ef1faa9b1dac82a contains a memory leak (CWE-655) in VNC server code, which allow an attacker to read stack memory and can be abused for information disclosure. Combined with another vulnerability, it can be used to leak stack memory and bypass ASLR. This attack appear to be exploitable via network connectivity. These vulnerabilities have been fixed in commit d01e1bb4246323ba6fcee3b82ef1faa9b1dac82a.	CVE-2019-15681
VCID-z1m2-xav4-hbgg	An issue was discovered in LibVNCServer before 0.9.13. libvncclient/tls_openssl.c has a NULL pointer dereference.	CVE-2020-14396

Vulnerability

Summary

Aliases

VCID-1mc5-8kc9-r7fh

An issue was discovered in LibVNCServer before 0.9.13. libvncserver/ws_decode.c can lead to a crash because of unaligned accesses in hybiReadAndDecode.

CVE-2019-20840

VCID-21gw-wymt-j3gb

An issue was discovered in LibVNCServer before 0.9.13. libvncserver/hextile.c allows out-of-bounds access via encodings.

CVE-2020-14403

VCID-2anm-wxtf-ubgq

A divide by zero issue was found to occur in libvncserver-0.9.12. A malicious client could use this flaw to send a specially crafted message that, when processed by the VNC server, would lead to a floating point exception, resulting in a denial of service.

CVE-2020-25708

VCID-34tt-yamf-xbdy

It was discovered that websockets.c in LibVNCServer prior to 0.9.12 did not properly decode certain WebSocket frames. A malicious attacker could exploit this by sending specially crafted WebSocket frames to a server, causing a heap-based buffer overflow.

CVE-2017-18922

VCID-3qks-1d5s-u7a8

An issue was discovered in LibVNCServer before 0.9.13. An improperly closed TCP connection causes an infinite loop in libvncclient/sockets.c.

CVE-2020-14398

VCID-66b8-2ss6-wkgz

An issue was discovered in LibVNCServer before 0.9.13. libvncserver/corre.c allows out-of-bounds access via encodings.

CVE-2020-14402

VCID-7azw-g7z2-pkdu

An issue was discovered in LibVNCServer before 0.9.13. Byte-aligned data is accessed through uint16_t pointers in libvncserver/translate.c. NOTE: Third parties do not consider this to be a vulnerability as there is no known path of exploitation or cross of a trust boundary

CVE-2020-14400

VCID-7xhu-p1a5-qbg1

An issue was discovered in LibVNCServer before 0.9.13. libvncserver/rre.c allows out-of-bounds access via encodings.

CVE-2020-14404

VCID-9gdb-hqgj-jfcm

LibVNCServer 0.9.12 release and earlier contains heap buffer overflow vulnerability within the HandleCursorShape() function in libvncclient/cursor.c. An attacker sends cursor shapes with specially crafted dimensions, which can result in remote code execution.

CVE-2019-15690

VCID-ak8c-schu-zfe3

libvncclient/sockets.c in LibVNCServer before 0.9.13 has a buffer overflow via a long socket filename.

CVE-2019-20839

VCID-amtn-98yp-s3d3

An issue was discovered in LibVNCServer before 0.9.13. Byte-aligned data is accessed through uint32_t pointers in libvncclient/rfbproto.c. NOTE: there is reportedly "no trust boundary crossed.

CVE-2020-14399

VCID-ftsu-ebmx-dufv

An issue was discovered in LibVNCServer before 0.9.13. libvncserver/scale.c has a pixel_value integer overflow.

CVE-2020-14401

VCID-jhre-6uje-5kbc

An issue was discovered in LibVNCServer before 0.9.13. libvncclient/rfbproto.c does not limit TextChat size.

CVE-2020-14405

VCID-mxf4-fbu7-t7ga

libvncclient v0.9.13 was discovered to contain a memory leak via the function rfbClientCleanup().

CVE-2020-29260

VCID-t53m-423e-p7dv

libvncclient/cursor.c in LibVNCServer through 0.9.12 has a HandleCursorShape integer overflow and heap-based buffer overflow via a large height or width value. NOTE: this may overlap CVE-2019-15690.

CVE-2019-20788

VCID-tbqp-mj6s-17ha

An issue was discovered in LibVNCServer before 0.9.13. libvncserver/rfbregion.c has a NULL pointer dereference.

CVE-2020-14397

VCID-vjz6-kw2t-cucm

LibVNC commit before d01e1bb4246323ba6fcee3b82ef1faa9b1dac82a contains a memory leak (CWE-655) in VNC server code, which allow an attacker to read stack memory and can be abused for information disclosure. Combined with another vulnerability, it can be used to leak stack memory and bypass ASLR. This attack appear to be exploitable via network connectivity. These vulnerabilities have been fixed in commit d01e1bb4246323ba6fcee3b82ef1faa9b1dac82a.

CVE-2019-15681

VCID-z1m2-xav4-hbgg

An issue was discovered in LibVNCServer before 0.9.13. libvncclient/tls_openssl.c has a NULL pointer dereference.

CVE-2020-14396

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-08-01T19:29:09.024709+00:00	Debian Oval Importer	Fixing	VCID-amtn-98yp-s3d3	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T17:41:34.874212+00:00	Debian Oval Importer	Fixing	VCID-vjz6-kw2t-cucm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T17:26:36.014243+00:00	Debian Oval Importer	Fixing	VCID-34tt-yamf-xbdy	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T16:30:05.906610+00:00	Debian Oval Importer	Fixing	VCID-3qks-1d5s-u7a8	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T16:29:35.616031+00:00	Debian Oval Importer	Fixing	VCID-7xhu-p1a5-qbg1	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T16:07:54.083088+00:00	Debian Oval Importer	Fixing	VCID-1mc5-8kc9-r7fh	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T16:01:36.477818+00:00	Debian Oval Importer	Fixing	VCID-2anm-wxtf-ubgq	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T15:51:23.320117+00:00	Debian Oval Importer	Fixing	VCID-21gw-wymt-j3gb	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T15:42:42.911089+00:00	Debian Oval Importer	Fixing	VCID-66b8-2ss6-wkgz	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T14:57:43.919759+00:00	Debian Oval Importer	Fixing	VCID-z1m2-xav4-hbgg	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T14:30:01.735580+00:00	Debian Oval Importer	Fixing	VCID-jhre-6uje-5kbc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T14:22:22.816558+00:00	Debian Oval Importer	Fixing	VCID-tbqp-mj6s-17ha	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T13:47:30.779033+00:00	Debian Oval Importer	Fixing	VCID-t53m-423e-p7dv	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T13:35:58.490841+00:00	Debian Oval Importer	Fixing	VCID-7azw-g7z2-pkdu	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T13:17:18.765318+00:00	Debian Oval Importer	Fixing	VCID-ak8c-schu-zfe3	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T13:04:44.011250+00:00	Debian Oval Importer	Fixing	VCID-9gdb-hqgj-jfcm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T12:51:49.257463+00:00	Debian Oval Importer	Fixing	VCID-ftsu-ebmx-dufv	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T12:46:19.781277+00:00	Debian Oval Importer	Fixing	VCID-mxf4-fbu7-t7ga	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0