vino: denial of service

Package(s):

vino

CVE #(s):

CVE-2011-0904 CVE-2011-0905

Created:

May 3, 2011

Updated:

January 22, 2013

Description:

From the Ubuntu advisory:

Kevin Chen discovered that Vino incorrectly handled certain client framebuffer requests. A remote attacker could use this flaw to cause Vino to crash, leading to a denial of service.

Alerts:

Gentoo	201412-09	racer-bin, fmod, PEAR-Mail, lvm2, gnucash, xine-lib, lastfmplayer, webkit-gtk, shadow, PEAR-PEAR, unixODBC, resource-agents, mrouted, rsync, xmlsec, xrdb, vino, oprofile, syslog-ng, sflowtool, gdm, libsoup, ca-certificates, gitolite, qt-creator	2014-12-11
Oracle	ELSA-2014-1826	libvncserver	2014-11-11
Oracle	ELSA-2013-0169	vino	2013-01-22
Scientific Linux	SL-vino-20130122	vino	2013-01-22
CentOS	CESA-2013:0169	vino	2013-01-22
Red Hat	RHSA-2013:0169-01	vino	2013-01-21
Ubuntu	USN-1128-1	vino	2011-05-02
Fedora	FEDORA-2011-6773	vino	2011-05-09
Fedora	FEDORA-2011-6778	vino	2011-05-09
SUSE	SUSE-SR:2011:009	mailman, openssl, tgt, rsync, vsftpd, libzip1/libzip-devel, otrs, libtiff, kdelibs4, libwebkit, libpython2_6-1_0, perl, pure-ftpd, collectd, vino, aaa_base, exim	2011-05-17
openSUSE	openSUSE-SU-2011:0481-1	vino	2011-05-13
Debian	DSA-2238-1	vino	2011-05-19
Mandriva	MDVSA-2011:087	vino	2011-05-16