ALSA-2020:3385

Source
https://errata.almalinux.org/8/ALSA-2020-3385.html
Import Source
https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2020:3385.json
JSON Data
https://api.test.osv.dev/v1/vulns/ALSA-2020:3385
Related
Published
2020-08-10T13:51:34Z
Modified
2021-08-11T08:54:00Z
Summary
Important: libvncserver security update
Details

LibVNCServer is a C library that enables you to implement VNC server functionality into own programs.

Security Fix(es):

  • libvncserver: websocket decoding buffer overflow (CVE-2017-18922)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References

Affected packages

AlmaLinux:8 / libvncserver-devel

Package

Name
libvncserver-devel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
0.9.11-15.el8_2.1