[Secure-testing-commits] r30413 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Nov 28 19:17:17 UTC 2014
Author: carnil
Date: 2014-11-28 19:17:17 +0000 (Fri, 28 Nov 2014)
New Revision: 30413
Modified:
data/CVE/list
Log:
Add fixed version for libvncserver issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-11-28 12:18:24 UTC (rev 30412)
+++ data/CVE/list 2014-11-28 19:17:17 UTC (rev 30413)
@@ -7652,13 +7652,13 @@
CVE-2014-6056
RESERVED
CVE-2014-6055 (Multiple stack-based buffer overflows in the File Transfer feature in ...)
- - libvncserver <unfixed> (bug #762745)
+ - libvncserver 0.9.9+dfsg-6.1 (bug #762745)
NOTE: https://github.com/newsoft/libvncserver/commit/06ccdf016154fde8eccb5355613ba04c59127b2e
NOTE: https://github.com/newsoft/libvncserver/commit/f528072216dec01cee7ca35d94e171a3b909e677
NOTE: https://github.com/newsoft/libvncserver/commit/256964b884c980038cd8b2f0d180fbb295b1c748 (improvement)
NOTE: check for possible ABI break: https://bugzilla.redhat.com/show_bug.cgi?id=1144293#c2
CVE-2014-6054 (The rfbProcessClientNormalMessage function in libvncserver/rfbserver.c ...)
- - libvncserver <unfixed> (bug #762745)
+ - libvncserver 0.9.9+dfsg-6.1 (bug #762745)
NOTE: https://github.com/newsoft/libvncserver/commit/05a9bd41a8ec0a9d580a8f420f41718bdd235446
NOTE: https://github.com/newsoft/libvncserver/commit/f18f24ce65f5cac22ddcf3ed51417e477f9bad09 (hardening)
NOTE: https://github.com/newsoft/libvncserver/commit/5dee1cbcd83920370a487c4fd2718aa4d3eba548 (required for sparc)
@@ -7666,14 +7666,14 @@
NOTE: https://github.com/newsoft/libvncserver/commit/e5d9b6a07257c12bf3b6242ddea79ea1c95353a8 (hardening)
CVE-2014-6053 [Server crash on a very large ClientCutText message]
RESERVED
- - libvncserver <unfixed> (bug #762745)
+ - libvncserver 0.9.9+dfsg-6.1 (bug #762745)
NOTE: https://github.com/newsoft/libvncserver/commit/6037a9074d52b1963c97cb28ea1096c7c14cbf28
CVE-2014-6052 [Lack of malloc() return value checking on client side]
RESERVED
- - libvncserver <unfixed> (bug #762745)
+ - libvncserver 0.9.9+dfsg-6.1 (bug #762745)
NOTE: https://github.com/newsoft/libvncserver/commit/85a778c0e45e87e35ee7199f1f25020648e8b812
CVE-2014-6051 (Integer overflow in the MallocFrameBuffer function in vncviewer.c in ...)
- - libvncserver <unfixed> (bug #762745)
+ - libvncserver 0.9.9+dfsg-6.1 (bug #762745)
NOTE: https://github.com/newsoft/libvncserver/commit/045a044e8ae79db9244593fbce154cdf6e843273
CVE-2014-6050
RESERVED
More information about the Secure-testing-commits
mailing list