MGASA-2020-0042

See a problem?
Please try reporting it to the source first.

Source

https://advisories.mageia.org/MGASA-2020-0042.html

Import Source

https://advisories.mageia.org/MGASA-2020-0042.json

JSON Data

https://api.osv.dev/v1/vulns/MGASA-2020-0042

Related

Published

2020-01-19T10:11:05Z

Modified

2020-01-19T09:46:03Z

Summary

Updated tigervnc packages fix security vulnerabilities

Details

Updated tigervnc packages fix security vulnerabilities:

The tigervnc package has been updated to version 1.10.1 to fix multiple unspecified security issues. These issues affect both the client and server and could theoretically allow an malicious peer to take control over the software on the other side. No working exploit is known at this time, and the issues require the peer to first be authenticated (CVE-2019-15691, CVE-2019-15692, CVE-2019-15693, CVE-2019-15694, CVE-2019-15695).

References

Credits

- Mageia - COORDINATOR
- - https://wiki.mageia.org/en/Packages_Security_Team

Affected packages

Mageia:7 / tigervnc

Package

Name: tigervnc
Purl: pkg:rpm/mageia/tigervnc?arch=source&distro=mageia-7

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.10.1-1.mga7

Ecosystem specific

{
    "section": "core"
}