CVE-2017-7393 tigervnc

Metadata

medium
6.5
tigervnc
CVE-2017-7393
2017-06-18 07:50
ALAS-2017-879
CVE-2017-7393
2017-06-16 19:22
2017-04-12 05:03
2017-04-09 23:03
2017-04-06 05:03
2017-04-02 05:03
2017-04-01 19:41
2017-04-01 11:03

Description

In TigerVNC 1.7.1 (VNCSConnectionST.cxx VNCSConnectionST::fence), an authenticated client can cause a double free, leading to denial of service or potentially code execution.

Am I vulnerable?

The constraints below list the versions that this vulnerability is patched in, and versions that are unaffected. If a patch is ready but unrealeased, then it is pending.

Or, you can just let us figure it out for you! Appcanary continously monitor your installed packages, and tell you if any of them are vulnerable.

Sign up for monitoring

Affected package information

Release Package Patched in
buster tigervnc 1.7.0+dfsg-7
sid tigervnc 1.7.0+dfsg-7
stretch tigervnc 1.7.0+dfsg-7