FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

krfb -- Multiple security issues in bundled libvncserver

Affected packages
krfb < 4.12.5_4

Details

VuXML ID fb25333d-442f-11e4-98f3-5453ed2e2b49
Discovery 2014-09-23
Entry 2014-09-25

Martin Sandsmark reports:

krfb 4.14 [and earlier] embeds libvncserver which has had several security issues.

Several remotely exploitable security issues have been uncovered in libvncserver, some of which might allow a remote authenticated user code execution or application crashes.

References

CVE Name CVE-2014-6055
Message http://lists.kde.org/?l=kde-announce&m=141153917319769&w=2