CVE-2014-8240

Related Files

Gentoo Linux Security Advisory 201612-36

Posted Dec 13, 2016

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201612-36 - An integer overflow in TigerVNC might allow remote attackers to execute arbitrary code. Versions less than 1.4.2 are affected.

tags | advisory, remote, overflow, arbitrary

systems | linux, gentoo

advisories | CVE-2014-6051, CVE-2014-8240

SHA-256 | de2be4c8a739a6b7369d1f2d453dde7517e57259399fcd05a135a099cc8932a0

Download | Favorite | View

Red Hat Security Advisory 2015-2233-03

Posted Nov 20, 2015

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2015-2233-03 - Virtual Network Computing is a remote display system which allows users to view a computing desktop environment not only on the machine where it is running, but from anywhere on the Internet and from a wide variety of machine architectures. TigerVNC is a suite of VNC servers and clients. The tigervnc packages contain a client which allows users to connect to other desktops running a VNC server. An integer overflow flaw, leading to a heap-based buffer overflow, was found in the way TigerVNC handled screen sizes. A malicious VNC server could use this flaw to cause a client to crash or, potentially, execute arbitrary code on the client.

tags | advisory, remote, overflow, arbitrary

systems | linux, redhat

advisories | CVE-2014-8240, CVE-2014-8241

SHA-256 | 5ccada7c34caaf958800cfea1e733ad5e87e737bb36e29a0e87a6d0b2f1b64bc

Download | Favorite | View