Search for packages
Package details: pkg:deb/debian/vnc4@4.1.1%2BX4.3.0-21%2Betch1
purl pkg:deb/debian/vnc4@4.1.1%2BX4.3.0-21%2Betch1
Next non-vulnerable version 4.1.1+X4.3.0+t-1
Latest non-vulnerable version 4.1.1+X4.3.0+t-1
Risk 4.5
Vulnerabilities affecting this package (3)
Vulnerability Summary Fixed by
VCID-1qu8-fzp6-aaab
Aliases:
CVE-2014-0011
Multiple heap-based buffer overflows in the ZRLE_DECODE function in common/rfb/zrleDecode.h in TigerVNC before 1.3.1, when NDEBUG is enabled, allow remote VNC servers to cause a denial of service (vncviewer crash) and possibly execute arbitrary code via vectors related to screen image rendering.
4.1.1+X4.3.0+t-1
Affected by 0 other vulnerabilities.
VCID-3c18-v2g4-aaaf
Aliases:
CVE-2015-2305
Integer overflow in the regcomp implementation in the Henry Spencer BSD regex library (aka rxspencer) alpha3.8.g5 on 32-bit platforms, as used in NetBSD through 6.1.5 and other products, might allow context-dependent attackers to execute arbitrary code via a large regular expression that leads to a heap-based buffer overflow.
4.1.1+X4.3.0+t-1
Affected by 0 other vulnerabilities.
VCID-kmft-crm4-aaaf
Aliases:
CVE-2008-4770
The CMsgReader::readRect function in the VNC Viewer component in RealVNC VNC Free Edition 4.0 through 4.1.2, Enterprise Edition E4.0 through E4.4.2, and Personal Edition P4.0 through P4.4.2 allows remote VNC servers to execute arbitrary code via crafted RFB protocol data, related to "encoding type."
4.1.1+X4.3.0-31
Affected by 2 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-21T14:50:20.300407+00:00 Debian Oval Importer Affected by VCID-3c18-v2g4-aaaf https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T13:42:54.065181+00:00 Debian Oval Importer Affected by VCID-1qu8-fzp6-aaab https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T13:40:06.474607+00:00 Debian Oval Importer Affected by VCID-kmft-crm4-aaaf https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T00:19:34.059295+00:00 Debian Oval Importer Affected by VCID-3c18-v2g4-aaaf None 36.1.3
2025-06-20T21:17:34.906888+00:00 Debian Oval Importer Affected by VCID-kmft-crm4-aaaf None 36.1.3
2025-06-20T20:56:16.282536+00:00 Debian Oval Importer Affected by VCID-1qu8-fzp6-aaab None 36.1.3
2025-06-08T07:43:42.200733+00:00 Debian Oval Importer Affected by VCID-3c18-v2g4-aaaf https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T06:37:06.492958+00:00 Debian Oval Importer Affected by VCID-1qu8-fzp6-aaab https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T06:34:21.573029+00:00 Debian Oval Importer Affected by VCID-kmft-crm4-aaaf https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-07T17:42:29.750612+00:00 Debian Oval Importer Affected by VCID-3c18-v2g4-aaaf None 36.1.0
2025-06-07T14:41:20.338014+00:00 Debian Oval Importer Affected by VCID-kmft-crm4-aaaf None 36.1.0
2025-06-07T14:24:19.480916+00:00 Debian Oval Importer Affected by VCID-1qu8-fzp6-aaab None 36.1.0
2025-04-08T06:16:11.709511+00:00 Debian Oval Importer Affected by VCID-3c18-v2g4-aaaf https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T05:09:28.669898+00:00 Debian Oval Importer Affected by VCID-1qu8-fzp6-aaab https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T05:06:38.562428+00:00 Debian Oval Importer Affected by VCID-kmft-crm4-aaaf https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-07T16:18:00.496490+00:00 Debian Oval Importer Affected by VCID-3c18-v2g4-aaaf None 36.0.0
2025-04-07T13:13:22.213678+00:00 Debian Oval Importer Affected by VCID-kmft-crm4-aaaf None 36.0.0
2025-04-07T12:56:46.631660+00:00 Debian Oval Importer Affected by VCID-1qu8-fzp6-aaab None 36.0.0