[Git][security-tracker-team/security-tracker][master] CVE-2022-23967/tightvnc <undetermined>
Neil Williams (@codehelp)
codehelp at debian.org
Mon Mar 14 11:47:48 GMT 2022
Neil Williams pushed to branch master at Debian Security Tracker / security-tracker
Commits:
917da552 by Neil Williams at 2022-03-14T11:47:32+00:00
CVE-2022-23967/tightvnc <undetermined>
Needs to be checked to see if the Debian patch for
CVE-2019-15679 is sufficient to fix the newly reported
CVE-2022-23967 in vncviewer/rfbproto.c @ line 307
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -8894,7 +8894,9 @@ CVE-2022-23969
CVE-2022-23968 (Xerox VersaLink devices on specific versions of firmware before 2022-0 ...)
NOT-FOR-US: Xerox
CVE-2022-23967 (In TightVNC 1.3.10, there is an integer signedness error and resultant ...)
- TODO: check
+ - tightvnc <undetermined>
+ TODO: check if debian/patches/CVE-2019-15679.patch is sufficient
+ NOTE: https://github.com/MaherAzzouzi/CVE-2022-23967
CVE-2022-23966
RESERVED
CVE-2022-23965
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/917da552ba6ff4dc0ad0b56f2efb79e20aa04abb
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/917da552ba6ff4dc0ad0b56f2efb79e20aa04abb
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220314/288a2c3d/attachment.htm>
More information about the debian-security-tracker-commits
mailing list