Medium severity6.5NVD Advisory· Published Jun 17, 2020· Updated Jun 17, 2026
CVE-2020-14405
CVE-2020-14405
Description
An issue was discovered in LibVNCServer before 0.9.13. libvncclient/rfbproto.c does not limit TextChat size.
Affected products
4- LibVNCServer/LibVNCServerdescription
- Range: <0.9.13
- osv-coords2 versions
< 0.9.11-17.el8+ 1 more
- (no CPE)range: < 0.9.11-17.el8
- (no CPE)range: < 0.9.11-17.el8
Patches
Vulnerability mechanics
References
6- cert-portal.siemens.com/productcert/pdf/ssa-390195.pdfnvdPatchThird Party Advisory
- github.com/LibVNC/libvncserver/commit/8937203441ee241c4ace85da687b7d6633a12365nvdPatchThird Party Advisory
- github.com/LibVNC/libvncserver/compare/LibVNCServer-0.9.12...LibVNCServer-0.9.13nvdRelease NotesThird Party Advisory
- lists.debian.org/debian-lts-announce/2020/06/msg00035.htmlnvdMailing ListThird Party Advisory
- lists.debian.org/debian-lts-announce/2020/08/msg00045.htmlnvdMailing ListThird Party Advisory
- usn.ubuntu.com/4434-1/nvdThird Party Advisory
News mentions
0No linked articles in our index yet.