[Pkg-tigervnc-devel] pkg-tigervnc.git - master (branch) updated: debian/1.6.0+dfsg-2-85-g979803f

Joachim Falk jfalk-guest at moszumanska.debian.org
Fri Apr 7 21:46:40 UTC 2017 

The branch, master has been updated
       via  979803f0c147230be6d305d45ab1c62f7ce34830 (commit)
       via  ce3fd0f0ed2942e75362b8e3f39fa25c0bfec110 (commit)
       via  9959cef7954052a0bb05e6f00935304e48cf1325 (commit)
       via  427055c93237028725a24b17efdbf048a1b331bb (commit)
      from  056a3c51be0c4255e48f99302886a868eaaa8000 (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit 979803f0c147230be6d305d45ab1c62f7ce34830
Author: Joachim Falk <joachim.falk at gmx.de>
Date:   Fri Apr 7 23:24:43 2017 +0200

    Small tweak to debian/gbp.conf

commit ce3fd0f0ed2942e75362b8e3f39fa25c0bfec110
Author: Joachim Falk <joachim.falk at gmx.de>
Date:   Fri Apr 7 23:24:22 2017 +0200

    Refreshed dependencies for Xtigervnc server build from xorg-server-1.19.2 used in stretch.

commit 9959cef7954052a0bb05e6f00935304e48cf1325
Author: Joachim Falk <joachim.falk at gmx.de>
Date:   Fri Apr 7 23:08:06 2017 +0200

    Increased Xtigervnc server bringup timeout to 30 seconds. (Closes: #859141)

commit 427055c93237028725a24b17efdbf048a1b331bb
Author: Joachim Falk <joachim.falk at gmx.de>
Date:   Fri Apr 7 22:54:36 2017 +0200

    Fixed CVE-2017-7392, CVE-2017-7393, CVE-2017-7394, CVE-2017-7395, and CVE-2017-7396

-----------------------------------------------------------------------

Summary of changes:
 debian/changelog                                   |  26 ++++
 debian/control                                     |  55 ++++----
 debian/gbp.conf                                    |   1 +
 debian/helpers/usr/bin/tigervncserver              |   2 +-
 ...underlying-ssecurity-in-SSecurityVeNCrypt.patch |  26 ++++
 ...393-Prevent-double-free-by-crafted-fences.patch |  41 ++++++
 ...1-Fix-checkNoWait-logic-in-SSecurityPlain.patch |  29 ++++
 ...-username-password-size-in-SSecurityPlain.patch |  55 ++++++++
 ...rom-integer-overflow-in-SMsgReader-readCl.patch |  30 +++++
 ...t-leak-of-SecurityServer-and-ClientServer.patch | 148 +++++++++++++++++++++
 debian/patches/series                              |   6 +
 11 files changed, 394 insertions(+), 25 deletions(-)
 create mode 100644 debian/patches/CVE-2017-7392-Delete-underlying-ssecurity-in-SSecurityVeNCrypt.patch
 create mode 100644 debian/patches/CVE-2017-7393-Prevent-double-free-by-crafted-fences.patch
 create mode 100644 debian/patches/CVE-2017-7394-0001-Fix-checkNoWait-logic-in-SSecurityPlain.patch
 create mode 100644 debian/patches/CVE-2017-7394-0002-Limit-max-username-password-size-in-SSecurityPlain.patch
 create mode 100644 debian/patches/CVE-2017-7395-Fix-crash-from-integer-overflow-in-SMsgReader-readCl.patch
 create mode 100644 debian/patches/CVE-2017-7396-Prevent-leak-of-SecurityServer-and-ClientServer.patch


hooks/post-receive
-- 
pkg-tigervnc.git (Git repository for pkg-tigervnc)

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "pkg-tigervnc.git" (Git repository for pkg-tigervnc).

More information about the Pkg-tigervnc-devel mailing list