Ramin Farajpour Cami

**Name of the Vulnerable Software and Affected Versions** libvncclient version 0.9.13 **Description** The issue is related to a memory leak in the `rfbClientCleanup()` function of the libvncclient component. This memory leak can be exploited by a remote attacker to cause a denial of service. **Recommendations** For libvncclient version 0.9.13, consider disabling the `rfbClientCleanup()` function as a temporary workaround until a patch is available.

**Name of the Vulnerable Software and Affected Versions** LibVNCServer versions prior to 0.9.13 **Description** The issue is related to a buffer overflow in the libvncclient/sockets.c component of LibVNCServer. This buffer overflow can occur via a long socket filename. Exploitation of this issue may allow a remote attacker to cause a denial of service. **Recommendations** For versions prior to 0.9.13, update to version 0.9.13 or later to resolve the issue. As a temporary workaround, consider restricting access to the libvncclient/sockets.c component to minimize the risk of exploitation.