[Git][security-tracker-team/security-tracker][master] Add CVE-2018-20023/libvncserver

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
13e7efc2 by Salvatore Bonaccorso at 2018-12-19T20:35:53Z
Add CVE-2018-20023/libvncserver

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3506,7 +3506,10 @@ CVE-2018-20024 (LibVNC before commit 
4a21bbd097ef7c44bb000c3bd0907f96a10e4ce7 co
        NOTE:  
https://github.com/LibVNC/libvncserver/commit/4a21bbd097ef7c44bb000c3bd0907f96a10e4ce7
        NOTE: 
https://ics-cert.kaspersky.com/advisories/klcert-advisories/2018/12/19/klcert-18-034-libvnc-null-pointer-dereference/
 CVE-2018-20023 (LibVNC before 8b06f835e259652b0ff026898014fc7297ade858 
contains ...)
-       TODO: check
+       - libvncserver <unfixed>
+       NOTE: https://github.com/LibVNC/libvncserver/issues/253
+       NOTE: 
https://github.com/LibVNC/libvncserver/commit/8b06f835e259652b0ff026898014fc7297ade858
+       NOTE: 
https://ics-cert.kaspersky.com/advisories/klcert-advisories/2018/12/19/klcert-18-033-libvnc-memory-leak/
 CVE-2018-20022 (LibVNC before 2f5b2ad1c6c99b1ac6482c95844a84d66bb52838 
contains ...)
        TODO: check
 CVE-2018-20021 (LibVNC before commit c3115350eb8bb635d0fdb4dbbb0d0541f38ed19c 
contains ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/13e7efc2969ac6cc28aeb8ace4efa5ed52d783e3

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/13e7efc2969ac6cc28aeb8ace4efa5ed52d783e3
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits