Revision Date: | 2020-12-01 | Version: | 1 |
Title: | Security update for LibVNCServer (Important) |
Description: |
This update for LibVNCServer fixes the following issues:
Security issues fixed:
- CVE-2018-15126: Fixed use-after-free in file transfer extension (bsc#1120114) - CVE-2018-6307: Fixed use-after-free in file transfer extension server code (bsc#1120115) - CVE-2018-20020: Fixed heap out-of-bound write inside structure in VNC client code (bsc#1120116) - CVE-2018-15127: Fixed heap out-of-bounds write in rfbserver.c (bsc#1120117) - CVE-2018-20019: Fixed multiple heap out-of-bound writes in VNC client code (bsc#1120118) - CVE-2018-20023: Fixed information disclosure through improper initialization in VNC Repeater client code (bsc#1120119) - CVE-2018-20022: Fixed information disclosure through improper initialization in VNC client code (bsc#1120120) - CVE-2018-20024: Fixed NULL pointer dereference in VNC client code (bsc#1120121) - CVE-2018-20021: Fixed infinite loop in VNC client code (bsc#1120122)
|
Family: | unix | Class: | patch |
Status: | | Reference(s): | 1005091 1012677 1024014 1024017 1024030 1024034 1024062 1052829 1086730 1088004 1088009 1090638 1106989 1106996 1107609 1116574 1120114 1120115 1120116 1120117 1120118 1120119 1120120 1120121 1120122 1120381 1122033 1124365 1124366 1124368 1128649 1130330 1130840 1131317 1132053 1132054 1132060 1132549 1132664 1141670 1141853 1149955 1153238 1153332 1162423 1163933 1166751 1171252 1171254 1173160 1173274 1173948 1174091 1174120 1174538 1174701 995964 CVE-2015-9542 CVE-2016-10198 CVE-2016-10199 CVE-2016-7098 CVE-2017-17833 CVE-2017-5840 CVE-2017-5841 CVE-2017-5845 CVE-2017-7753 CVE-2017-7779 CVE-2017-7782 CVE-2017-7784 CVE-2017-7785 CVE-2017-7786 CVE-2017-7787 CVE-2017-7791 CVE-2017-7792 CVE-2017-7798 CVE-2017-7800 CVE-2017-7801 CVE-2017-7802 CVE-2017-7803 CVE-2017-7804 CVE-2017-7807 CVE-2018-1000140 CVE-2018-13785 CVE-2018-14647 CVE-2018-15126 CVE-2018-15127 CVE-2018-16301 CVE-2018-16412 CVE-2018-16413 CVE-2018-16644 CVE-2018-20019 CVE-2018-20020 CVE-2018-20021 CVE-2018-20022 CVE-2018-20023 CVE-2018-20024 CVE-2018-20467 CVE-2018-20852 CVE-2018-3136 CVE-2018-3139 CVE-2018-3149 CVE-2018-3169 CVE-2018-3180 CVE-2018-3183 CVE-2018-3214 CVE-2018-6307 CVE-2019-10650 CVE-2019-11007 CVE-2019-11008 CVE-2019-11009 CVE-2019-11234 CVE-2019-11235 CVE-2019-15165 CVE-2019-16056 CVE-2019-16935 CVE-2019-20907 CVE-2019-7175 CVE-2019-7395 CVE-2019-7397 CVE-2019-7398 CVE-2019-9947 CVE-2019-9956 CVE-2020-0556 CVE-2020-10745 CVE-2020-12653 CVE-2020-12654 CVE-2020-14422 CVE-2020-15652 CVE-2020-15653 CVE-2020-15654 CVE-2020-15655 CVE-2020-15656 CVE-2020-15657 CVE-2020-15658 CVE-2020-15659 CVE-2020-6463 CVE-2020-6514 SUSE-SU-2016:3268-1 SUSE-SU-2017:1010-1 SUSE-SU-2017:2589-1 SUSE-SU-2018:0828-1 SUSE-SU-2018:2779-2 SUSE-SU-2019:0060-1 SUSE-SU-2019:2669-1 SUSE-SU-2020:1117-1 SUSE-SU-2020:2100-1 SUSE-SU-2020:2312-1 SUSE-SU-2020:2699-1 SUSE-SU-2020:3516-1
|
Platform(s): | openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8
| Product(s): | |
Definition Synopsis |
openSUSE Leap 15.0 is installed AND w3m-0.5.3+git20180125-lp150.1 is installed
|
Definition Synopsis |
openSUSE Leap 15.1 is installed
AND Package Information
irssi-1.1.3-33 is installed
OR irssi-devel-1.1.3-33 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP2 is installed
AND wget-1.14-17 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP2-BCL is installed
AND Package Information
openslp-2.0.0-18.15 is installed
OR openslp-32bit-2.0.0-18.15 is installed
OR openslp-server-2.0.0-18.15 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
AND Package Information
java-1_8_0-ibm-1.8.0_sr5.25-30.39 is installed
OR java-1_8_0-ibm-alsa-1.8.0_sr5.25-30.39 is installed
OR java-1_8_0-ibm-devel-1.8.0_sr5.25-30.39 is installed
OR java-1_8_0-ibm-plugin-1.8.0_sr5.25-30.39 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP2-LTSS is installed
AND Package Information
libpcap-1.8.1-10.3 is installed
OR libpcap1-1.8.1-10.3 is installed
OR tcpdump-4.9.2-14.14 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP3 is installed
AND Package Information
libXfixes3-5.0.1-7 is installed
OR libXfixes3-32bit-5.0.1-7 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP3-BCL is installed
AND Package Information
glibc-2.22-62.22 is installed
OR glibc-32bit-2.22-62.22 is installed
OR glibc-devel-2.22-62.22 is installed
OR glibc-devel-32bit-2.22-62.22 is installed
OR glibc-html-2.22-62.22 is installed
OR glibc-i18ndata-2.22-62.22 is installed
OR glibc-info-2.22-62.22 is installed
OR glibc-locale-2.22-62.22 is installed
OR glibc-locale-32bit-2.22-62.22 is installed
OR glibc-profile-2.22-62.22 is installed
OR glibc-profile-32bit-2.22-62.22 is installed
OR nscd-2.22-62.22 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
AND Package Information
LibVNCServer-0.9.9-17.19 is installed
OR libvncclient0-0.9.9-17.19 is installed
OR libvncserver0-0.9.9-17.19 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP3-LTSS is installed
AND Package Information
kgraft-patch-4_4_175-94_79-default-6-2 is installed
OR kgraft-patch-SLE12-SP3_Update_23-6-2 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
AND Package Information
libwsman1-2.4.11-21.8 is installed
OR libwsman_clientpp1-2.4.11-21.8 is installed
OR openwsman-2.4.11-21.8 is installed
OR openwsman-server-2.4.11-21.8 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP4 is installed
AND Package Information
libFLAC++6-1.3.0-11 is installed
OR libFLAC8-1.3.0-11 is installed
OR libFLAC8-32bit-1.3.0-11 is installed
|
Definition Synopsis |
SUSE OpenStack Cloud 7 is installed
AND Package Information
LibVNCServer-0.9.9-17.8 is installed
OR libvncclient0-0.9.9-17.8 is installed
OR libvncserver0-0.9.9-17.8 is installed
|
Definition Synopsis |
SUSE OpenStack Cloud 8 is installed
AND Package Information
bzip2-1.0.6-30.8 is installed
OR bzip2-doc-1.0.6-30.8 is installed
OR libbz2-1-1.0.6-30.8 is installed
OR libbz2-1-32bit-1.0.6-30.8 is installed
|
Definition Synopsis |
SUSE OpenStack Cloud Crowbar 8 is installed
AND python-Django-1.11.23-3.12 is installed
|