Total vulnerabilities in the database
An issue was discovered in LibVNCServer before 0.9.13. There is an information leak (of uninitialized memory contents) in the libvncclient/rfbproto.c ConnectToRFBRepeater function.
| Software | From | Fixed in |
|---|---|---|
| libvnc_project / libvncserver | - | 0.9.12.x |
| canonical / ubuntu_linux | 16.04 | 16.04.x |
| canonical / ubuntu_linux | 14.04 | 14.04.x |
| canonical / ubuntu_linux | 18.04 | 18.04.x |
| canonical / ubuntu_linux | 18.10 | 18.10.x |
| debian / debian_linux | 8.0 | 8.0.x |
| debian / debian_linux | 9.0 | 9.0.x |
| siemens / simatic_itc1500_firmware | 3.0.0.0 | 3.2.1.0 |
| siemens / simatic_itc1500_pro_firmware | 3.0.0.0 | 3.2.1.0 |
| siemens / simatic_itc1900_firmware | 3.0.0.0 | 3.2.1.0 |
| siemens / simatic_itc1900_pro_firmware | 3.0.0.0 | 3.2.1.0 |
| siemens / simatic_itc2200_firmware | 3.0.0.0 | 3.2.1.0 |
| siemens / simatic_itc2200_pro_firmware | 3.0.0.0 | 3.2.1.0 |
| opensuse / leap | 15.2 | 15.2.x |