pkg:Debian/libvncserver

59 total CVEsCRITICAL19HIGH27MEDIUM5

✅ Check your installed version

All known vulnerabilities

  • CRITICAL9.8CVE-2017-18922It was discovered that websockets.c in LibVNCServer prior to 0.9.12 did not properly decode certain WebSocket frames.
    from 0, < 0.9.12+dfsg-3
  • CRITICAL9.8CVE-2019-20788libvncclient/cursor.c in LibVNCServer through 0.9.12 has a HandleCursorShape integer overflow and heap-based buffer overflow via a large he…
    from 0, < 0.9.12+dfsg-9
  • CRITICAL9.8CVE-2018-20750LibVNC through 0.9.12 contains a heap out-of-bounds write vulnerability in libvncserver/rfbserver.c.
    from 0, < 0.9.11+dfsg-1.3
  • CRITICAL9.8CVE-2018-20749LibVNC before 0.9.12 contains a heap out-of-bounds write vulnerability in libvncserver/rfbserver.c.
    from 0, < 0.9.11+dfsg-1.3
  • CRITICAL9.8CVE-2018-20748LibVNC before 0.9.12 contains multiple heap out-of-bounds write vulnerabilities in libvncclient/rfbproto.c.
    from 0, < 0.9.11+dfsg-1.3
  • CRITICAL9.8CVE-2018-20020ssvnc - security update
    from 0, < 0.9.11+dfsg-1.2
  • CRITICAL9.8CVE-2018-20019LibVNC before commit a83439b9fbe0f03c48eb94ed05729cb016f8b72f contains multiple heap out-of-bound write vulnerabilities in VNC client code…
    from 0, < 0.9.11+dfsg-1.2
  • CRITICAL9.8CVE-2018-15127libvncserver - security update
    from 0, < 0.9.11+dfsg-1.2
  • CRITICAL9.8CVE-2018-15127libvncserver - security update
    from 0, < 0.9.9+dfsg2-6.1+deb8u4
  • CRITICAL9.8CVE-2018-15126libvncserver - security update
    from 0, < 0.9.11+dfsg-1.2
  • CRITICAL9.8CVE-2018-15126libvncserver - security update
    from 0, < 0.9.11+dfsg-1.3~deb9u1
  • CRITICAL9.8CVE-2018-15126libvncserver - security update
    from 0, < 0.9.9+dfsg2-6.1+deb8u5
  • CRITICAL9.8CVE-2018-7225libvncserver - security update
    from 0, < 0.9.9+dfsg-1+deb7u3
  • CRITICAL9.8CVE-2018-7225libvncserver - security update
    from 0, < 0.9.9+dfsg2-6.1+deb8u3
  • CRITICAL9.8CVE-2018-7225libvncserver - security update
    from 0, < 0.9.11+dfsg-1.1
  • CRITICAL9.8CVE-2016-9942Heap-based buffer overflow in ultra.c in LibVNCClient in LibVNCServer before 0.9.11 allows remote servers to cause a denial of service (app…
    from 0, < 0.9.11+dfsg-1
  • CRITICAL9.8CVE-2016-9941libvncserver - security update
    from 0, < 0.9.9+dfsg-1+deb7u2
  • CRITICAL9.8CVE-2016-9941libvncserver - security update
    from 0, < 0.9.9+dfsg2-6.1+deb8u2
  • CRITICAL9.8CVE-2016-9941libvncserver - security update
    from 0, < 0.9.11+dfsg-1
  • HIGH8.8CVE-2026-44988LibVNCClient is a library for easy implementation of a VNC client.
    from 0
  • HIGH8.8CVE-2019-15690libvncserver - security update
    from 0, < 0.9.12+dfsg-9
  • HIGH8.8CVE-2019-15690libvncserver - security update
    from 0, < 0.9.9+dfsg2-6.1+deb8u7
  • HIGH8.1CVE-2026-32853LibVNCServer versions 0.9.15 and prior (fixed in commit 009008e) contain a heap out-of-bounds read vulnerability in the UltraZip encoding h…
    from 0
  • HIGH8.1CVE-2018-6307LibVNC before commit ca2a5ac02fbbadd0a21fabba779c1ea69173d10b contains heap use-after-free vulnerability in server code of file transfer ex…
    from 0, < 0.9.11+dfsg-1.2
  • HIGH7.5CVE-2026-32854LibVNCServer versions 0.9.15 and prior (fixed in commit dc78dee) contain null pointer dereference vulnerabilities in the HTTP proxy handler…
    from 0
  • HIGH7.5CVE-2020-29260libvncclient v0.9.13 was discovered to contain a memory leak via the function rfbClientCleanup().
    from 0, < 0.9.13+dfsg-2+deb11u1
  • HIGH7.5CVE-2020-25708libvncserver - security update
    from 0, < 0.9.11+dfsg-1.3~deb9u6
  • HIGH7.5CVE-2020-25708libvncserver - security update
    from 0, < 0.9.11+dfsg-1.3+deb10u5
  • HIGH7.5CVE-2020-25708libvncserver - security update
    from 0, < 0.9.13+dfsg-1
  • HIGH7.5CVE-2020-14400An issue was discovered in LibVNCServer before 0.9.13.
    from 0, < 0.9.13+dfsg-1
  • HIGH7.5CVE-2020-14399An issue was discovered in LibVNCServer before 0.9.13.
    from 0, < 0.9.13+dfsg-1
  • HIGH7.5CVE-2020-14398An issue was discovered in LibVNCServer before 0.9.13.
    from 0, < 0.9.13+dfsg-1
  • HIGH7.5CVE-2020-14397An issue was discovered in LibVNCServer before 0.9.13.
    from 0, < 0.9.13+dfsg-1
  • HIGH7.5CVE-2020-14396An issue was discovered in LibVNCServer before 0.9.13.
    from 0, < 0.9.13+dfsg-1
  • HIGH7.5CVE-2019-20840An issue was discovered in LibVNCServer before 0.9.13.
    from 0, < 0.9.13+dfsg-1
  • HIGH7.5CVE-2019-20839libvncserver - security update
    from 0, < 0.9.9+dfsg2-6.1+deb8u8
  • HIGH7.5CVE-2019-20839libvncserver - security update
    from 0, < 0.9.13+dfsg-1
  • HIGH7.5CVE-2019-20839libvncserver - security update
    from 0, < 0.9.11+dfsg-1.3~deb9u5
  • HIGH7.5CVE-2018-21247An issue was discovered in LibVNCServer before 0.9.13.
    from 0, < 0.9.11+dfsg-1.2
  • HIGH7.5CVE-2019-15681libvncserver - security update
    from 0, < 0.9.9+dfsg2-6.1+deb8u6
  • HIGH7.5CVE-2019-15681libvncserver - security update
    from 0, < 0.9.12+dfsg-3
  • HIGH7.5CVE-2019-15680TightVNC code version 1.3.10 contains null pointer dereference in HandleZlibBPP function, which results Denial of System (DoS).
    from 0
  • HIGH7.5CVE-2018-20024LibVNC before commit 4a21bbd097ef7c44bb000c3bd0907f96a10e4ce7 contains null pointer dereference in VNC client code that can result DoS.
    from 0, < 0.9.11+dfsg-1.2
  • HIGH7.5CVE-2018-20023LibVNC before 8b06f835e259652b0ff026898014fc7297ade858 contains CWE-665: Improper Initialization vulnerability in VNC Repeater client code…
    from 0, < 0.9.11+dfsg-1.2
  • HIGH7.5CVE-2018-20022LibVNC before 2f5b2ad1c6c99b1ac6482c95844a84d66bb52838 contains multiple weaknesses CWE-665: Improper Initialization vulnerability in VNC c…
    from 0, < 0.9.11+dfsg-1.2
  • HIGH7.5CVE-2018-20021LibVNC before commit c3115350eb8bb635d0fdb4dbbb0d0541f38ed19c contains a CWE-835: Infinite loop vulnerability in VNC client code.
    from 0, < 0.9.11+dfsg-1.2
  • MEDIUM6.5CVE-2020-14405An issue was discovered in LibVNCServer before 0.9.13.
    from 0, < 0.9.13+dfsg-1
  • MEDIUM6.5CVE-2020-14401An issue was discovered in LibVNCServer before 0.9.13.
    from 0, < 0.9.13+dfsg-1
  • MEDIUM5.4CVE-2020-14404An issue was discovered in LibVNCServer before 0.9.13.
    from 0, < 0.9.13+dfsg-1
  • MEDIUM5.4CVE-2020-14403An issue was discovered in LibVNCServer before 0.9.13.
    from 0, < 0.9.13+dfsg-1
  • MEDIUM5.4CVE-2020-14402An issue was discovered in LibVNCServer before 0.9.13.
    from 0, < 0.9.13+dfsg-1
  • CVE-2014-6053tightvnc - security update
    from 0, < 0.9.9+dfsg-6.1
  • CVE-2014-6052The HandleRFBServerMessage function in libvncclient/rfbproto.c in LibVNCServer 0.9.9 and earlier does not check certain malloc return value…
    from 0, < 0.9.9+dfsg-6.1
  • CVE-2014-6054The rfbProcessClientNormalMessage function in libvncserver/rfbserver.c in LibVNCServer 0.9.9 and earlier allows remote attackers to cause a…
    from 0, < 0.9.9+dfsg-6.1
  • CVE-2014-6055Multiple stack-based buffer overflows in the File Transfer feature in rfbserver.c in LibVNCServer 0.9.9 and earlier allow remote authentica…
    from 0, < 0.9.9+dfsg-6.1
  • CVE-2014-6051libvncserver - security update
    from 0, < 0.9.9+dfsg-1+deb7u1
  • CVE-2014-6051libvncserver - security update
    from 0, < 0.9.7-2+deb6u1
  • CVE-2014-6051libvncserver - security update
    from 0, < 0.9.9+dfsg-6.1
  • CVE-2006-2450auth.c in LibVNCServer 0.7.1 allows remote attackers to bypass authentication via a request in which the client specifies an insecure secur…
    from 0, < 0.8.2-1