Wind River Support Network

HomeDefectsLIN1019-3876
Acknowledged

LIN1019-3876 : Security Advisory - tigervnc - CVE-2019-15692

Created: Dec 31, 2019    Updated: Jan 13, 2020
Found In Version: 10.19.45.1
Severity: Standard
Applicable for: Wind River Linux LTS 19
Component/s: Userspace

Description

TigerVNC version prior to 1.10.1 is vulnerable to heap buffer overflow. Vulnerability could be triggered from CopyRectDecoder due to incorrect value checks. Exploitation of this vulnerability could potentially result into remote code execution. This attack appear to be exploitable via network connectivity.

CREATE(Triage):(User=admin) [CVE-2019-15692|https://nvd.nist.gov/vuln/detail/CVE-2019-15692]

CVEs


Live chat
Online