First published: Thu Apr 07 2011(Updated: )
An out of bounds read flaw was found in the way vino, remote desktop system for GNOME processed certain framebuffer update requests from VNC client, when raw encoding was used. An attacker could use this flaw to send a specially-crafted request to vino, causing it to crash. Upstream bug report: [1] <a href="https://bugzilla.gnome.org/show_bug.cgi?id=641802">https://bugzilla.gnome.org/show_bug.cgi?id=641802</a> Relevant upstream commits (for gnome-2-28, gnome-2-30, gnome-2-32, gnome-3-0 and master branches): [2] <a href="http://git.gnome.org/browse/vino/commit/?id=dff52694a384fe95195f2211254026b752d63ec4">http://git.gnome.org/browse/vino/commit/?id=dff52694a384fe95195f2211254026b752d63ec4</a> [3] <a href="http://git.gnome.org/browse/vino/commit/?id=0c2c9175963fc56bf2af10e42867181332f96ce0">http://git.gnome.org/browse/vino/commit/?id=0c2c9175963fc56bf2af10e42867181332f96ce0</a> [4] <a href="http://git.gnome.org/browse/vino/commit/?id=e17bd4e369f90748654e31a4867211dc7610975d">http://git.gnome.org/browse/vino/commit/?id=e17bd4e369f90748654e31a4867211dc7610975d</a> [5] <a href="http://git.gnome.org/browse/vino/commit/?id=456dadbb5c5971d3448763a44c05b9ad033e522f">http://git.gnome.org/browse/vino/commit/?id=456dadbb5c5971d3448763a44c05b9ad033e522f</a> [6] <a href="http://git.gnome.org/browse/vino/commit/?id=8beefcf7792d343c10c919ee0c928c81f73b1279">http://git.gnome.org/browse/vino/commit/?id=8beefcf7792d343c10c919ee0c928c81f73b1279</a>
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
David King Vino | =2.23.5 | |
David King Vino | =2.21.92 | |
David King Vino | =2.23 | |
David King Vino | =2.17.92 | |
David King Vino | =2.19.5 | |
David King Vino | =2.32.0 | |
David King Vino | =2.19 | |
David King Vino | =2.27.5 | |
David King Vino | =3.0.1 | |
David King Vino | =2.22 | |
David King Vino | =2.32.1 | |
David King Vino | =2.25.91 | |
David King Vino | =2.23.92 | |
David King Vino | =2.21.2 | |
David King Vino | =2.25.3 | |
David King Vino | =2.18 | |
David King Vino | =2.21.1 | |
David King Vino | =2.10 | |
David King Vino | =2.7.92 | |
David King Vino | =2.24.1 | |
David King Vino | =2.7.4.91 | |
David King Vino | =2.28.2 | |
David King Vino | =2.26.2 | |
David King Vino | =2.7.3.1 | |
David King Vino | =2.19.92 | |
David King Vino | =2.11 | |
David King Vino | =2.25.92 | |
David King Vino | =3.0.0 | |
David King Vino | =2.20.1 | |
David King Vino | =2.27.90 | |
David King Vino | =2.27 | |
David King Vino | =2.16 | |
David King Vino | =3.1 | |
David King Vino | =2.7.3 | |
David King Vino | =2.7.4 | |
David King Vino | =2.13.5 | |
David King Vino | =2.24 | |
David King Vino | =2.28.1 | |
David King Vino | =2.7.4.90 | |
David King Vino | =2.23.91 | |
David King Vino | =2.26 | |
David King Vino | =2.17.4 | |
David King Vino | =2.25.4 | |
David King Vino | =2.27.92 | |
David King Vino | =2.14 | |
David King Vino | =2.9 | |
David King Vino | =2.13 | |
David King Vino | =2.21 | |
David King Vino | =2.26.1 | |
David King Vino | =2.28 | |
David King Vino | =2.17 | |
David King Vino | =2.7 | |
David King Vino | =2.25.90 | |
David King Vino | =2.9.2 | |
David King Vino | =2.12 | |
David King Vino | =2.21.91 | |
David King Vino | =2.20 | |
David King Vino | =2.21.3 | |
David King Vino | =2.17.5 | |
David King Vino | =2.25 | |
David King Vino | =2.27.91 | |
David King Vino | =2.8 | |
David King Vino | =2.25.5 | |
David King Vino | =2.22.2 | |
David King Vino | =2.21.90 | |
David King Vino | =2.18.1 | |
David King Vino | =2.17.2 | |
David King Vino | =2.22.1 | |
David King Vino | =2.23.90 | |
David King Vino | =2.19.90 | |
David King Vino | =2.15 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.