[Git][security-tracker-team/security-tracker][master] Expand references for CVE-2018-15126/libvncserver

Salvatore Bonaccorso carnil at debian.org
Wed Jan 2 08:35:41 GMT 2019 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
d17c194d by Salvatore Bonaccorso at 2019-01-02T08:33:36Z
Expand references for CVE-2018-15126/libvncserver

Split up the merge commit for upstream issue #242 in its individual
single commits.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -21100,8 +21100,13 @@ CVE-2018-15127 (LibVNC before commit 502821828ed00b4a2c4bef90683d0fd88ce495de co
 CVE-2018-15126 (LibVNC before commit 73cb96fec028a576a5a24417b57723b55854ad7b contains ...)
 	- libvncserver <not-affected> (Vulnerable code introduced after 0.9.11 release)
 	NOTE: https://github.com/LibVNC/libvncserver/issues/242
-	NOTE: Fixed by: https://github.com/LibVNC/libvncserver/commit/162d716b4c095a87aab2261857d583d68e3b3ea6
-	NOTE: main part of the fix: https://github.com/LibVNC/libvncserver/commit/73cb96fec028a576a5a24417b57723b55854ad7b
+	NOTE: Fixed by: https://github.com/LibVNC/libvncserver/commit/162d716b4c095a87aab2261857d583d68e3b3ea6 (merge of fix-#242)
+	NOTE: Individual commits:
+	NOTE: https://github.com/LibVNC/libvncserver/commit/89419fb1a0cef42b63528e6930f4e545cfef4c95
+	NOTE: https://github.com/LibVNC/libvncserver/commit/f8912fee5a58fb3975eda2589f6d4686f0c1ae68
+	NOTE: https://github.com/LibVNC/libvncserver/commit/73cb96fec028a576a5a24417b57723b55854ad7b (main part of the fix)
+	NOTE: https://github.com/LibVNC/libvncserver/commit/2d939267a176bf4976dbad36399638956ad8cc34
+	NOTE: https://github.com/LibVNC/libvncserver/commit/495ffa3f3a213ab058eee1d7da48fa5ef71914d8
 	NOTE: https://ics-cert.kaspersky.com/advisories/klcert-advisories/2018/12/19/klcert-18-027-libvnc-heap-use-after-free/
 CVE-2018-15125 (Sensitive Information Disclosure in Zipato Zipabox Smart Home ...)
 	NOT-FOR-US: Zipato



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d17c194df30d506016ad8e8dd6a70fba9af0b3fc

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/d17c194df30d506016ad8e8dd6a70fba9af0b3fc
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190102/86171bf3/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list