An issue was discovered in LibVNCServer before 0.9.13. libvncserver/rfbregion.c has a NULL pointer dereference.
{ "vanir_signatures": [ { "source": "https://github.com/libvnc/libvncserver/commit/38e98ee61d74f5f5ab4aa4c77146faad1962d6d0", "digest": { "length": 564.0, "function_hash": "297202612131400419264101244022029335570" }, "target": { "file": "libvncserver/rfbserver.c", "function": "rfbClientIteratorNext" }, "signature_version": "v1", "signature_type": "Function", "deprecated": false, "id": "CVE-2020-14397-57138274" }, { "source": "https://github.com/libvnc/libvncserver/commit/38e98ee61d74f5f5ab4aa4c77146faad1962d6d0", "digest": { "length": 129.0, "function_hash": "35943597304556728290599649561873686848" }, "target": { "file": "libvncserver/rfbregion.c", "function": "sraSpanRemove" }, "signature_version": "v1", "signature_type": "Function", "deprecated": false, "id": "CVE-2020-14397-62fecc1c" }, { "source": "https://github.com/libvnc/libvncserver/commit/38e98ee61d74f5f5ab4aa4c77146faad1962d6d0", "digest": { "length": 177.0, "function_hash": "13375577804589520980869365028992005452" }, "target": { "file": "libvncserver/rfbregion.c", "function": "sraSpanInsertBefore" }, "signature_version": "v1", "signature_type": "Function", "deprecated": false, "id": "CVE-2020-14397-7db584a1" }, { "source": "https://github.com/libvnc/libvncserver/commit/38e98ee61d74f5f5ab4aa4c77146faad1962d6d0", "digest": { "length": 177.0, "function_hash": "308180803968003756632479985064601731480" }, "target": { "file": "libvncserver/rfbregion.c", "function": "sraSpanInsertAfter" }, "signature_version": "v1", "signature_type": "Function", "deprecated": false, "id": "CVE-2020-14397-b286e04f" }, { "source": "https://github.com/libvnc/libvncserver/commit/38e98ee61d74f5f5ab4aa4c77146faad1962d6d0", "digest": { "line_hashes": [ "129789622784888703049761371788375090829", "192021373110556373924439968139735438884", "61072920218535349534747548085317793870", "290028638275504518166892205271637573622", "309529031156275530272242272036928506489", "63814239015190438186515325761625769582", "305345191105789934771957096566624699162", "164856137291477852452065722557293518470", "258276280196864558935373940393721172142", "260530719255116134297278517836890348386", "219211903808393606215952572397156439919", "164379770128048257586355656012362062922", "49864376157076557018843636422687187024", "326415775950170687086498577993376834425", "176015776013475282985826867223578781969", "188226683699824686304425512567088681309", "87338811101464322177305173082397686098", "338038670024466485237077130119798763896", "200654883490875339150761829742367690988" ], "threshold": 0.9 }, "target": { "file": "libvncserver/rfbregion.c" }, "signature_version": "v1", "signature_type": "Line", "deprecated": false, "id": "CVE-2020-14397-c6e68006" }, { "source": "https://github.com/libvnc/libvncserver/commit/38e98ee61d74f5f5ab4aa4c77146faad1962d6d0", "digest": { "line_hashes": [ "188611924461224704302489486341034162652", "45100662802048171843781279201327666989", "228183687346468758546468784391674645379", "112246271884870165818073004635834463683", "322962774470696617483175220566020184863", "276446598387385854228408982083396903462", "318670290681636359680857980044567325665", "28880945584438269491008089576739099616" ], "threshold": 0.9 }, "target": { "file": "libvncserver/rfbserver.c" }, "signature_version": "v1", "signature_type": "Line", "deprecated": false, "id": "CVE-2020-14397-dcee1ebf" }, { "source": "https://github.com/libvnc/libvncserver/commit/38e98ee61d74f5f5ab4aa4c77146faad1962d6d0", "digest": { "length": 105.0, "function_hash": "57427340694778193739664377224873694190" }, "target": { "file": "libvncserver/rfbserver.c", "function": "rfbReleaseClientIterator" }, "signature_version": "v1", "signature_type": "Function", "deprecated": false, "id": "CVE-2020-14397-ddcdae11" } ] }