[Git][security-tracker-team/security-tracker][master] Add CVE-2018-20024/libvncserver

Salvatore Bonaccorso carnil at debian.org
Wed Dec 19 20:34:57 GMT 2018


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
16b18cc7 by Salvatore Bonaccorso at 2018-12-19T20:34:01Z
Add CVE-2018-20024/libvncserver

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3501,7 +3501,10 @@ CVE-2018-20026
 CVE-2018-20025
 	RESERVED
 CVE-2018-20024 (LibVNC before commit 4a21bbd097ef7c44bb000c3bd0907f96a10e4ce7 contains ...)
-	TODO: check
+	- libvncserver <unfixed>
+	NOTE: https://github.com/LibVNC/libvncserver/issues/254
+	NOTE:  https://github.com/LibVNC/libvncserver/commit/4a21bbd097ef7c44bb000c3bd0907f96a10e4ce7
+	NOTE: https://ics-cert.kaspersky.com/advisories/klcert-advisories/2018/12/19/klcert-18-034-libvnc-null-pointer-dereference/
 CVE-2018-20023 (LibVNC before 8b06f835e259652b0ff026898014fc7297ade858 contains ...)
 	TODO: check
 CVE-2018-20022 (LibVNC before 2f5b2ad1c6c99b1ac6482c95844a84d66bb52838 contains ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/16b18cc74691dfd2adc2a561617ccef1467f3fd5

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/16b18cc74691dfd2adc2a561617ccef1467f3fd5
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181219/333700fc/attachment.html>


More information about the debian-security-tracker-commits mailing list