High severity8.8NVD Advisory· Published Apr 1, 2017· Updated Jun 17, 2026
CVE-2017-7393
CVE-2017-7393
Description
In TigerVNC 1.7.1 (VNCSConnectionST.cxx VNCSConnectionST::fence), an authenticated client can cause a double free, leading to denial of service or potentially code execution.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
8- osv-coords7 versionspkg:rpm/suse/tigervnc&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP1pkg:rpm/suse/tigervnc&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP2pkg:rpm/suse/tigervnc&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1pkg:rpm/suse/tigervnc&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2pkg:rpm/suse/tigervnc&distro=SUSE%20Linux%20Enterprise%20Server%20for%20Raspberry%20Pi%2012%20SP2pkg:rpm/suse/tigervnc&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1pkg:rpm/suse/tigervnc&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP2
< 1.4.3-24.1+ 6 more
- (no CPE)range: < 1.4.3-24.1
- (no CPE)range: < 1.6.0-18.11.1
- (no CPE)range: < 1.4.3-24.1
- (no CPE)range: < 1.6.0-18.11.1
- (no CPE)range: < 1.6.0-18.11.1
- (no CPE)range: < 1.4.3-24.1
- (no CPE)range: < 1.6.0-18.11.1
Patches
Vulnerability mechanics
References
4- github.com/TigerVNC/tigervnc/pull/438nvdIssue TrackingPatchThird Party Advisory
- www.securityfocus.com/bid/97305nvd
- access.redhat.com/errata/RHSA-2017:2000nvd
- security.gentoo.org/glsa/201801-13nvd
News mentions
0No linked articles in our index yet.