LibVNC through 0.9.12 contains a heap out-of-bounds write vulnerability in libvncserver/rfbserver.c. The fix for CVE-2018-15127 was incomplete.
{ "vanir_signatures": [ { "source": "https://github.com/libvnc/libvncserver/commit/09e8fc02f59f16e2583b34fe1a270c238bd9ffec", "deprecated": false, "target": { "file": "libvncserver/rfbserver.c" }, "signature_version": "v1", "digest": { "line_hashes": [ "208450598643815690107221870743096516411", "188468696327442976591528711100647299430", "339810309386704794107010451385675606359", "325020323779306967113667985277008054327", "252246010401280782980771499642649312175", "331557240631615908433514250914876982357", "326762681830792334858650571106630307146", "75410939976826082944537545891517174339" ], "threshold": 0.9 }, "signature_type": "Line", "id": "CVE-2018-20750-936cab71" }, { "source": "https://github.com/libvnc/libvncserver/commit/09e8fc02f59f16e2583b34fe1a270c238bd9ffec", "deprecated": false, "target": { "file": "libvncserver/rfbserver.c", "function": "rfbProcessFileTransferReadBuffer" }, "signature_version": "v1", "digest": { "length": 639.0, "function_hash": "7250474722688794593813454546579474339" }, "signature_type": "Function", "id": "CVE-2018-20750-a5a2e1bb" } ] }