FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

krfb -- Multiple security issues in bundled libvncserver

Affected packages
krfb < 4.12.5_4


VuXML ID fb25333d-442f-11e4-98f3-5453ed2e2b49
Discovery 2014-09-23
Entry 2014-09-25

Martin Sandsmark reports:

krfb 4.14 [and earlier] embeds libvncserver which has had several security issues.

Several remotely exploitable security issues have been uncovered in libvncserver, some of which might allow a remote authenticated user code execution or application crashes.


CVE Name CVE-2014-6055