SUSE-SU-2015:2110-1 -- SLES LibVNCServerID: oval:org.secpod.oval:def:89045457 | Date: (C)2021-08-04 (M)2022-09-09 |
Class: PATCH | Family: unix |
The libvncserver package was updated to fix the following security issues: - bsc#897031: fix several security issues: * CVE-2014-6051: Integer overflow in MallocFrameBuffer on client side. * CVE-2014-6052: Lack of malloc return value checking on client side. * CVE-2014-6053: Server crash on a very large ClientCutText message. * CVE-2014-6054: Server crash when scaling factor is set to zero. * CVE-2014-6055: Multiple stack overflows in File Transfer feature.
Platform: |
SUSE Linux Enterprise Server 11 SP4 |