CVE-2018-7226

NameCVE-2018-7226
DescriptionAn issue was discovered in vcSetXCutTextProc() in VNConsole.c in LinuxVNC and VNCommand from the LibVNC/vncterm distribution through 0.9.10. Missing sanitization of the client-specified message length may cause integer overflow or possibly have unspecified other impact via a specially crafted VNC packet.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)
NVD severityhigh (attack range: remote)
Debian Bugs898453

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
vncterm (PTS)sid, stretch0.9.10-2vulnerable

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
vnctermsource(unstable)(unfixed)low898453

Notes

[stretch] - vncterm <no-dsa> (Minor issue)
https://github.com/LibVNC/vncterm/issues/6

Search for package or bug name: Reporting problems