CVE-2014-8241
published 2016-12-14CVE-2014-8241: XRegion in TigerVNC allows remote VNC servers to cause a denial of service (NULL pointer dereference) by leveraging failure to check a malloc return value, a…
critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
XRegion in TigerVNC allows remote VNC servers to cause a denial of service (NULL pointer dereference) by leveraging failure to check a malloc return value, a similar issue to CVE-2014-6052.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | tigervnc | < tigervnc 1.7.0-2 (bookworm) | tigervnc 1.7.0-2 (bookworm) |
| redhat | enterprise_linux_desktop | — | — |
| redhat | enterprise_linux_hpc_node | — | — |
| redhat | enterprise_linux_server | — | — |
| redhat | enterprise_linux_workstation | — | — |
| tigervnc | tigervnc | >= 0 < 1.7.0-2 | 1.7.0-2 |
| tigervnc | tigervnc | >= 0 < 1.7.0-2 | 1.7.0-2 |
| tigervnc | tigervnc | >= 0 < 1.7.0-2 | 1.7.0-2 |
| tigervnc | tigervnc | >= 0 < 1.7.0-2 | 1.7.0-2 |
CVSS provenance
nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
osv7.5HIGH