A flaw was found in the QEMU built-in VNC server while processing ClientCutText messages. A wrong exit condition may lead to an infinite loop when inflating an attacker controlled zlib buffer in the `inflate_buffer` function. This could allow a remote authenticated client who is able to send a clipboard to the VNC server to trigger a denial of service.
References
Link | Resource |
---|---|
https://access.redhat.com/errata/RHSA-2024:2135 | |
https://access.redhat.com/errata/RHSA-2024:2962 | |
https://access.redhat.com/security/cve/CVE-2023-3255 | Third Party Advisory |
https://bugzilla.redhat.com/show_bug.cgi?id=2218486 | Issue Tracking Patch Third Party Advisory |
https://security.netapp.com/advisory/ntap-20231020-0008/ | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2023-09-13T16:12:52.294Z
Updated: 2024-05-29T22:14:09.966Z
Reserved: 2023-06-14T21:08:31.376Z
Link: CVE-2023-3255
JSON object: View
NVD Information
Status : Modified
Published: 2023-09-13T17:15:09.877
Modified: 2024-05-22T17:16:03.847
Link: CVE-2023-3255
JSON object: View
Redhat Information
No data.
CWE