VulnerableCode Package Details - pkg:deb/debian/ssvnc@1.0.29-5

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-1fm2-8xwe-aaar	LibVNC before commit 7b1ef0ffc4815cab9a96c7278394152bdc89dc4d contains heap out-of-bound write vulnerability inside structure in VNC client code that can result remote code execution	CVE-2018-20020
VCID-6wch-1dap-aaar	LibVNC before commit c3115350eb8bb635d0fdb4dbbb0d0541f38ed19c contains a CWE-835: Infinite loop vulnerability in VNC client code. Vulnerability allows attacker to consume excessive amount of resources like CPU and RAM	CVE-2018-20021
VCID-wnd7-4qex-aaab	LibVNC before 2f5b2ad1c6c99b1ac6482c95844a84d66bb52838 contains multiple weaknesses CWE-665: Improper Initialization vulnerability in VNC client code that allows attacker to read stack memory and can be abuse for information disclosure. Combined with another vulnerability, it can be used to leak stack memory layout and in bypassing ASLR	CVE-2018-20022
VCID-wsm6-97pr-aaag	LibVNC before commit 4a21bbd097ef7c44bb000c3bd0907f96a10e4ce7 contains null pointer dereference in VNC client code that can result DoS.	CVE-2018-20024

Vulnerability

Summary

Aliases

VCID-1fm2-8xwe-aaar

LibVNC before commit 7b1ef0ffc4815cab9a96c7278394152bdc89dc4d contains heap out-of-bound write vulnerability inside structure in VNC client code that can result remote code execution

CVE-2018-20020

VCID-6wch-1dap-aaar

LibVNC before commit c3115350eb8bb635d0fdb4dbbb0d0541f38ed19c contains a CWE-835: Infinite loop vulnerability in VNC client code. Vulnerability allows attacker to consume excessive amount of resources like CPU and RAM

CVE-2018-20021

VCID-wnd7-4qex-aaab

LibVNC before 2f5b2ad1c6c99b1ac6482c95844a84d66bb52838 contains multiple weaknesses CWE-665: Improper Initialization vulnerability in VNC client code that allows attacker to read stack memory and can be abuse for information disclosure. Combined with another vulnerability, it can be used to leak stack memory layout and in bypassing ASLR

CVE-2018-20022

VCID-wsm6-97pr-aaag

LibVNC before commit 4a21bbd097ef7c44bb000c3bd0907f96a10e4ce7 contains null pointer dereference in VNC client code that can result DoS.

CVE-2018-20024

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-06-21T19:00:23.657600+00:00	Debian Oval Importer	Fixing	VCID-1fm2-8xwe-aaar	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.1.3
2025-06-21T05:23:58.377920+00:00	Debian Oval Importer	Fixing	VCID-6wch-1dap-aaar	None	36.1.3
2025-06-21T04:15:09.500096+00:00	Debian Oval Importer	Fixing	VCID-wsm6-97pr-aaag	None	36.1.3
2025-06-21T03:33:38.130440+00:00	Debian Oval Importer	Fixing	VCID-1fm2-8xwe-aaar	None	36.1.3
2025-06-21T03:10:46.084034+00:00	Debian Oval Importer	Fixing	VCID-wnd7-4qex-aaab	None	36.1.3
2025-06-08T13:00:04.778303+00:00	Debian Oval Importer	Fixing	VCID-6wch-1dap-aaar	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.1.0
2025-06-08T12:26:23.624230+00:00	Debian Oval Importer	Fixing	VCID-wsm6-97pr-aaag	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.1.0
2025-06-08T12:05:10.970735+00:00	Debian Oval Importer	Fixing	VCID-wnd7-4qex-aaab	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.1.0
2025-06-08T11:29:42.637746+00:00	Debian Oval Importer	Fixing	VCID-1fm2-8xwe-aaar	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.1.0
2025-06-07T23:01:42.198823+00:00	Debian Oval Importer	Fixing	VCID-6wch-1dap-aaar	None	36.1.0
2025-06-07T21:51:01.046186+00:00	Debian Oval Importer	Fixing	VCID-wsm6-97pr-aaag	None	36.1.0
2025-06-07T21:07:20.752787+00:00	Debian Oval Importer	Fixing	VCID-1fm2-8xwe-aaar	None	36.1.0
2025-06-07T20:43:40.519159+00:00	Debian Oval Importer	Fixing	VCID-wnd7-4qex-aaab	None	36.1.0
2025-04-12T18:47:26.447581+00:00	Debian Oval Importer	Fixing	VCID-6wch-1dap-aaar	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T18:12:35.072837+00:00	Debian Oval Importer	Fixing	VCID-wsm6-97pr-aaag	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T17:50:37.932460+00:00	Debian Oval Importer	Fixing	VCID-wnd7-4qex-aaab	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-12T17:14:00.615611+00:00	Debian Oval Importer	Fixing	VCID-1fm2-8xwe-aaar	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	36.0.0
2025-04-07T21:33:44.093691+00:00	Debian Oval Importer	Fixing	VCID-6wch-1dap-aaar	None	36.0.0
2025-04-07T20:21:16.094485+00:00	Debian Oval Importer	Fixing	VCID-wsm6-97pr-aaag	None	36.0.0
2025-04-07T19:37:34.783160+00:00	Debian Oval Importer	Fixing	VCID-1fm2-8xwe-aaar	None	36.0.0
2025-04-07T19:14:06.822243+00:00	Debian Oval Importer	Fixing	VCID-wnd7-4qex-aaab	None	36.0.0