CVE-2018-7225

CRITICAL9.8EPSS 3.3%

libvncserver - security update

發布日:2018/2/19修改日:2026/4/28

描述

An issue was discovered in LibVNCServer through 0.9.11. rfbProcessClientNormalMessage() in rfbserver.c does not sanitize msg.cct.length, leading to access to uninitialized and potentially sensitive data or possibly unspecified other impact (e.g., an integer overflow) via specially crafted VNC packets.

受影響套件(6)

Alpine/libvncserverfrom 0, < 0.9.11-r2
Debian/libvncserverfrom 0, < 0.9.11+dfsg-1.1
Debian/libvncserverfrom 0, < 0.9.9+dfsg-1+deb7u3
Debian/libvncserverfrom 0, < 0.9.9+dfsg2-6.1+deb8u3
Debian/tightvncfrom 0, < 1:1.3.9-9.1
Debian/vinofrom 0, < 3.22.0-6

CVSS 分數

來源	版本	嚴重程度	向量
osv	CVSS 3.1	CRITICAL9.8	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

參考連結(2)

ADVISORYhttps://security.alpinelinux.org/vuln/CVE-2018-7225
ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2018-7225