CVE-2017-5885

Priority
Description
Multiple integer overflows in the (1) vnc_connection_server_message and (2)
vnc_color_map_set functions in gtk-vnc before 0.7.0 allow remote servers to
cause a denial of service (crash) or possibly execute arbitrary code via
vectors involving SetColorMapEntries, which triggers a buffer overflow.
Assigned-to
mdeslaur
More Information

Updated: 2019-03-19 12:29:35 UTC (commit 15472795df7e9de45b82f2d36b8b419b939f97b2)