pkg:Debian/tigervnc

17 total CVEsCRITICAL3HIGH12MEDIUM1

✅ Check your installed version

All known vulnerabilities

  • CRITICAL9.8CVE-2026-34352In TigerVNC before 1.16.2, Image.cxx in x0vncserver allows other users to observe or manipulate the screen contents, or cause an applicatio…
    from 0
  • CRITICAL9.8CVE-2017-5581Buffer overflow in the ModifiablePixelBuffer::fillRect function in TigerVNC before 1.7.1 allows remote servers to execute arbitrary code vi…
    from 0, < 1.7.0+dfsg-3
  • CRITICAL9.8CVE-2014-8241XRegion in TigerVNC allows remote VNC servers to cause a denial of service (NULL pointer dereference) by leveraging failure to check a mall…
    from 0, < 1.7.0-2
  • HIGH8.8CVE-2017-7393In TigerVNC 1.7.1 (VNCSConnectionST.cxx VNCSConnectionST::fence), an authenticated client can cause a double free, leading to denial of ser…
    from 0, < 1.7.0+dfsg-7
  • HIGH8.1CVE-2020-26117tigervnc - security update
    from 0, < 1.10.1+dfsg-9
  • HIGH8.1CVE-2020-26117tigervnc - security update
    from 0, < 1.7.0+dfsg-7+deb9u2
  • HIGH7.5CVE-2017-7396In TigerVNC 1.7.1 (CConnection.cxx CConnection::CConnection), an unauthenticated client can cause a small memory leak in the server.
    from 0, < 1.7.0+dfsg-7
  • HIGH7.5CVE-2017-7394In TigerVNC 1.7.1 (SSecurityPlain.cxx SSecurityPlain::processMsg), unauthenticated users can crash the server by sending long usernames.
    from 0, < 1.7.0+dfsg-7
  • HIGH7.5CVE-2017-7392In TigerVNC 1.7.1 (SSecurityVeNCrypt.cxx SSecurityVeNCrypt::SSecurityVeNCrypt), an unauthenticated client can cause a small memory leak in…
    from 0, < 1.7.0+dfsg-7
  • HIGH7.5CVE-2016-10207The Xvnc server in TigerVNC allows remote attackers to cause a denial of service (invalid memory access and crash) by terminating a TLS han…
    from 0, < 1.7.0-1
  • HIGH7.2CVE-2019-15695TigerVNC version prior to 1.10.1 is vulnerable to stack buffer overflow, which could be triggered from CMsgReader::readSetCursor.
    from 0, < 1.10.1+dfsg-1
  • HIGH7.2CVE-2019-15694TigerVNC version prior to 1.10.1 is vulnerable to heap buffer overflow, which could be triggered from DecodeManager::decodeRect.
    from 0, < 1.10.1+dfsg-1
  • HIGH7.2CVE-2019-15693TigerVNC version prior to 1.10.1 is vulnerable to heap buffer overflow, which occurs in TightDecoder::FilterGradient.
    from 0, < 1.10.1+dfsg-1
  • HIGH7.2CVE-2019-15692TigerVNC version prior to 1.10.1 is vulnerable to heap buffer overflow.
    from 0, < 1.10.1+dfsg-1
  • HIGH7.2CVE-2019-15691TigerVNC version prior to 1.10.1 is vulnerable to stack use-after-return, which occurs due to incorrect usage of stack memory in ZRLEDecode…
    from 0, < 1.10.1+dfsg-1
  • MEDIUM6.5CVE-2017-7395In TigerVNC 1.7.1 (SMsgReader.cxx SMsgReader::readClientCutText), by causing an integer overflow, an authenticated client can crash the ser…
    from 0, < 1.7.0+dfsg-7
  • CVE-2014-8240Integer overflow in TigerVNC allows remote VNC servers to cause a denial of service (crash) and possibly execute arbitrary code via vectors…
    from 0, < 1.7.0-1