Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a043fd81 by Salvatore Bonaccorso at 2020-06-29T15:50:46+02:00
CVE-2018-21247/libvncserver fixed already in 0.9.11+dfsg-1.2
- - - - -
b8129f55 by Salvatore Bonaccorso at 2020-06-29T15:50:47+02:00
Track fixes for CVE-2018-21247 (fixed with same commit as CVE-2018-20023)
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/DSA/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2713,7 +2713,7 @@ CVE-2019-20839 (libvncclient/sockets.c in LibVNCServer
before 0.9.13 has a buffe
- libvncserver <unfixed>
NOTE:
https://github.com/LibVNC/libvncserver/commit/3fd03977c9b35800d73a865f167338cb4d05b0c1
CVE-2018-21247 (An issue was discovered in LibVNCServer before 0.9.13. There
is an inf ...)
- - libvncserver 0.9.12+dfsg-3
+ - libvncserver 0.9.11+dfsg-1.2
NOTE: https://github.com/LibVNC/libvncserver/issues/253
NOTE:
https://github.com/LibVNC/libvncserver/commit/8b06f835e259652b0ff026898014fc7297ade858
CVE-2020-14215
=====================================
data/DLA/list
=====================================
@@ -1991,7 +1991,7 @@
{CVE-2017-8361 CVE-2017-8362 CVE-2017-8363 CVE-2017-8365 CVE-2017-14245
CVE-2017-14246 CVE-2017-14634 CVE-2018-13139 CVE-2018-19432 CVE-2018-19661
CVE-2018-19662}
[jessie] - libsndfile 1.0.25-9.1+deb8u2
[25 Dec 2018] DLA-1617-1 libvncserver - security update
- {CVE-2018-6307 CVE-2018-15127 CVE-2018-20019 CVE-2018-20020
CVE-2018-20021 CVE-2018-20022 CVE-2018-20023 CVE-2018-20024}
+ {CVE-2018-6307 CVE-2018-15127 CVE-2018-20019 CVE-2018-20020
CVE-2018-20021 CVE-2018-20022 CVE-2018-20023 CVE-2018-20024 CVE-2018-21247}
[jessie] - libvncserver 0.9.9+dfsg2-6.1+deb8u4
[24 Dec 2018] DLA-1616-1 libextractor - security update
{CVE-2018-20430 CVE-2018-20431}
=====================================
data/DSA/list
=====================================
@@ -1142,7 +1142,7 @@
{CVE-2019-6977 CVE-2019-6978}
[stretch] - libgd2 2.2.4-2+deb9u4
[03 Feb 2019] DSA-4383-1 libvncserver - security update
- {CVE-2018-6307 CVE-2018-15126 CVE-2018-15127 CVE-2018-20019
CVE-2018-20020 CVE-2018-20021 CVE-2018-20022 CVE-2018-20023 CVE-2018-20024}
+ {CVE-2018-6307 CVE-2018-15126 CVE-2018-15127 CVE-2018-20019
CVE-2018-20020 CVE-2018-20021 CVE-2018-20022 CVE-2018-20023 CVE-2018-20024
CVE-2018-21247}
[stretch] - libvncserver 0.9.11+dfsg-1.3~deb9u1
[02 Feb 2019] DSA-4382-1 rssh - security update
{CVE-2019-3463 CVE-2019-3464}
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/a7cd14c32fea5e8abe896ca1dbfdd3a9e4fe045d...b8129f5518de15d3e449359ef0c085214a112a8e
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/compare/a7cd14c32fea5e8abe896ca1dbfdd3a9e4fe045d...b8129f5518de15d3e449359ef0c085214a112a8e
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
