First published: Fri Feb 03 2017(Updated: )
It was found that vnc_connection_server_message() and vnc_color_map_set() functions do not check for integer overflow properly, leading to a malicious server being able to overwrite parts of the client memory, possibly leading to remote code execution under privileges of user running the VNC client. Upstream bug: <a href="https://bugzilla.gnome.org/show_bug.cgi?id=778050">https://bugzilla.gnome.org/show_bug.cgi?id=778050</a> Upstream patch: <a href="https://git.gnome.org/browse/gtk-vnc/commit/?id=c8583fd3783c5b811590">https://git.gnome.org/browse/gtk-vnc/commit/?id=c8583fd3783c5b811590</a>
Credit: secalert@redhat.com
Affected Software | Affected Version | How to fix |
---|---|---|
Fedoraproject Fedora | =25 | |
Gnome Gtk-vnc | <=0.6.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.