GLSA
Advocate
Joined: 12 May 2004
Posts: 2663
|
 Posted: Sat Jun 13, 2020 3:26 am Post subject: [ GLSA 202006-06 ] ssvnc |
 |
|
Gentoo Linux Security Advisory
Title: ssvnc: Multiple vulnerabilities (GLSA 202006-06)
Severity: normal
Exploitable: remote
Date: 2020-06-13
Bug(s): #701820
ID: 202006-06
Synopsis
Multiple vulnerabilities have been found in ssvnc, the worst of
which could result in the arbitrary execution of code.
Background
The Enhanced TightVNC Viewer, SSVNC, adds encryption security to VNC
connections.
Affected Packages
Package: net-misc/ssvnc
Vulnerable: <= 1.0.29-r2
Architectures: All supported architectures
Description
Multiple vulnerabilities have been discovered in ssvnc. Please review
the CVE identifiers referenced below for details.
Impact
Please review the referenced CVE identifiers for details.
Workaround
There is no known workaround at this time.
Resolution
Gentoo has discontinued support for ssvnc. We recommend that users
unmerge ssvnc:
| Code: | # emerge --unmerge "net-misc/ssvnc"
|
NOTE: The Gentoo developer(s) maintaining ssvnc have discontinued
support at this time. It may be possible that a new Gentoo developer will
update ssvnc at a later date. An alternative may be a manual SSH tunnel.
References
CVE-2018-20020
CVE-2018-20021
CVE-2018-20022
CVE-2018-20024 |
|
News & Announcements
