An issue was discovered in LibVNCServer before 0.9.13. An improperly closed TCP connection causes an infinite loop in libvncclient/sockets.c. Upstream commit: https://github.com/LibVNC/libvncserver/commit/57433015f856cc12753378254ce4f1c78f5d9c7b
Created libvncserver tracking bugs for this issue: Affects: epel-7 [bug 1860350] Affects: fedora-all [bug 1860349]
Statement: This flaw does not affect versions of vino shipped with Red Hat Enterprise Linux 6, 7, or 8 because libvncclient is not included in the package.
This flaw affects libvncclient, which is shipped with libvncserver. It can be triggered by killing the process, cutting powerful, or another means of ungraceful shutdown causing the TCP connection to be improperly closed.