[Pkg-tigervnc-devel] Bug#852213: tigervnc: Buffer overflow in ModifiablePixelBuffer::fillRect
Salvatore Bonaccorso
carnil at debian.org
Wed Jan 25 09:52:58 UTC 2017
Control: retitle -1 tigervnc: CVE-2017-5581: Buffer overflow in ModifiablePixelBuffer::fillRect
On Sun, Jan 22, 2017 at 04:25:22PM +0100, Salvatore Bonaccorso wrote:
> Source: tigervnc
> Version: 1.7.0+dfsg-2
> Severity: grave
> Tags: patch security upstream
> Justification: user security hole
> Forwarded: https://github.com/TigerVNC/tigervnc/pull/399
>
> Hi
>
> Cf. http://www.openwall.com/lists/oss-security/2017/01/22/1 where as
> well a CVE was requested for this issue.
>
> Upstream bug: https://github.com/TigerVNC/tigervnc/pull/399
> Commit: https://github.com/TigerVNC/tigervnc/commit/18c020124ff1b2441f714da2017f63dba50720ba
This has been assigned CVE-2017-5581.
Regards,
Salvatore
More information about the Pkg-tigervnc-devel
mailing list