SUSE SLES11 Security Update : LibVNCServer (SUSE-SU-2017:0104-1)

This script is Copyright (C) 2017 Tenable Network Security, Inc.


Synopsis :

The remote SUSE host is missing one or more security updates.

Description :

LibVNCServer was updated to fix two security issues. These security
issues were fixed :

- CVE-2016-9941: Heap-based buffer overflow in rfbproto.c
allowed remote servers to cause a denial of service
(application crash) or possibly execute arbitrary code
via a crafted FramebufferUpdate message containing a
subrectangle outside of the client drawing area
(bsc#1017711)

- CVE-2016-9942: Heap-based buffer overflow in ultra.c
allowed remote servers to cause a denial of service
(application crash) or possibly execute arbitrary code
via a crafted FramebufferUpdate message with the Ultra
type tile, such that the LZO payload decompressed length
exceeds what is specified by the tile dimensions
(bsc#1017712)

Note that Tenable Network Security has extracted the preceding
description block directly from the SUSE security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.

See also :

https://bugzilla.suse.com/1017711
https://bugzilla.suse.com/1017712
https://www.suse.com/security/cve/CVE-2016-9941.html
https://www.suse.com/security/cve/CVE-2016-9942.html
http://www.nessus.org/u?52e6e941

Solution :

To install this SUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product :

SUSE Linux Enterprise Software Development Kit 11-SP4:zypper in -t
patch sdksp4-LibVNCServer-12932=1

SUSE Linux Enterprise Server 11-SP4:zypper in -t patch
slessp4-LibVNCServer-12932=1

SUSE Linux Enterprise Debuginfo 11-SP4:zypper in -t patch
dbgsp4-LibVNCServer-12932=1

To bring your system up-to-date, use 'zypper patch'.

Risk factor :

High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)
CVSS Temporal Score : 5.9
(CVSS2#E:POC/RL:OF/RC:ND)
Public Exploit Available : true

Family: SuSE Local Security Checks

Nessus Plugin ID: 96429 ()

Bugtraq ID:

CVE ID: CVE-2016-9941
CVE-2016-9942

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now