Back to libvncserver PTS page

Accepted libvncserver 0.9.9+dfsg2-6.1+deb8u4 (source amd64) into oldstable

To: dispatch@tracker.debian.org, debian-lts-changes@lists.debian.org
Subject: Accepted libvncserver 0.9.9+dfsg2-6.1+deb8u4 (source amd64) into oldstable
From: Abhijith PA <abhijith@debian.org>
Date: Tue, 25 Dec 2018 16:50:17 +0000
Mail-followup-to: debian-lts@lists.debian.org
Message-id: <E1gbpuL-0000oF-Dp@seger.debian.org>
Reply-to: debian-lts@lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sun, 23 Dec 2018 16:21:23 +0530
Source: libvncserver
Binary: libvncclient0 libvncserver0 libvncserver-dev libvncserver-config libvncclient0-dbg libvncserver0-dbg linuxvnc
Architecture: source amd64
Version: 0.9.9+dfsg2-6.1+deb8u4
Distribution: jessie-security
Urgency: medium
Maintainer: Peter Spiess-Knafl <dev@spiessknafl.at>
Changed-By: Abhijith PA <abhijith@debian.org>
Description:
 libvncclient0 - API to write one's own vnc server - client library
 libvncclient0-dbg - debugging symbols for libvncclient
 libvncserver-config - API to write one's own vnc server - library utility
 libvncserver-dev - API to write one's own vnc server - development files
 libvncserver0 - API to write one's own vnc server
 libvncserver0-dbg - debugging symbols for libvncserver
 linuxvnc   - VNC server to allow remote access to a tty
Closes: 916941
Changes:
 libvncserver (0.9.9+dfsg2-6.1+deb8u4) jessie-security; urgency=medium
 .
   * Non-maintainer upload by the Debian LTS Team.
   * CVE-2018-15127: heap out-of-bound write vulnerability (Closes: #916941)
   * CVE-2018-20019: multiple heap out-of-bound write vulnerabilities
   * CVE-2018-20020: heap out-of-bound write vulnerability inside structure
     in VNC client code
   * CVE-2018-20021: CWE-835: Infinite loop vulnerability in VNC client code.
   * CVE-2018-20022: CWE-665: Improper Initialization vulnerability
   * CVE-2018-20023:Improper Initialization vulnerability in VNC Repeater client
     code
   * CVE-2018-20024: null pointer dereference that can result DoS
   * CVE-2018-6307: heap use-after-free vulnerability in server code of
     file transfer extension
Checksums-Sha1:
 c7d0a473e43889eccaf42eb2395580a9ad02cac5 2486 libvncserver_0.9.9+dfsg2-6.1+deb8u4.dsc
 fdcb79c2a22530241550da6bc42bfdbd8335b8d4 31708 libvncserver_0.9.9+dfsg2-6.1+deb8u4.debian.tar.xz
 e368ac8ce72e952c916753285c7e48aee3c1eab0 125118 libvncclient0_0.9.9+dfsg2-6.1+deb8u4_amd64.deb
 561ff7020a4ce20075025972989bc0e7780bdc30 191946 libvncserver0_0.9.9+dfsg2-6.1+deb8u4_amd64.deb
 2b163b99495707f8cead3585649f17a516233801 275142 libvncserver-dev_0.9.9+dfsg2-6.1+deb8u4_amd64.deb
 ccc684c9870b56a2ffbe7c82a8817c1158f787d1 90666 libvncserver-config_0.9.9+dfsg2-6.1+deb8u4_amd64.deb
 5255af7a3e832d65b7476b3ad3ce1e2ff16cb694 183368 libvncclient0-dbg_0.9.9+dfsg2-6.1+deb8u4_amd64.deb
 134a560aaf08e5c910cf52db534a4a652a0774c6 382860 libvncserver0-dbg_0.9.9+dfsg2-6.1+deb8u4_amd64.deb
 ea810ab7a3f1aa8f9fb7ed682cb5189344467593 86734 linuxvnc_0.9.9+dfsg2-6.1+deb8u4_amd64.deb
Checksums-Sha256:
 f13a646095ac477b1096003fd496cb1ebab2cae5649a688d671ad6fd10c8c933 2486 libvncserver_0.9.9+dfsg2-6.1+deb8u4.dsc
 c0defc4f56571bee8a0365f970d30bd75ddafd18ebb887df5f9d898e1ac0fd0c 31708 libvncserver_0.9.9+dfsg2-6.1+deb8u4.debian.tar.xz
 5d564347e8b9a6d9ac8877b90a22e57b2cd54c382bff10166f9a9167a36095a2 125118 libvncclient0_0.9.9+dfsg2-6.1+deb8u4_amd64.deb
 84c549bda6f3e84958ed1a19c73a3a617c192160f89421e497e5acfc8c16c47e 191946 libvncserver0_0.9.9+dfsg2-6.1+deb8u4_amd64.deb
 1b755fa21e598925d3a2f8c374fde98d19a886618d0335cb8079ff987b14d26a 275142 libvncserver-dev_0.9.9+dfsg2-6.1+deb8u4_amd64.deb
 95e441bc724565ac90979443838424791aff672a1edb4493d13d7bf8dc610cfd 90666 libvncserver-config_0.9.9+dfsg2-6.1+deb8u4_amd64.deb
 1c3b416e3e8cd7fc3f41d8f9a8d77940313000d1a908ef89faf81ee9660f94f1 183368 libvncclient0-dbg_0.9.9+dfsg2-6.1+deb8u4_amd64.deb
 acb2394e01e6822e90516fb8ec1d48401737b358e1fbc376fa29c848c84e3ef9 382860 libvncserver0-dbg_0.9.9+dfsg2-6.1+deb8u4_amd64.deb
 2a4be15b0f506bb368fdbff4145c35bedafa8fc64cd41561833b0a5aee0be05d 86734 linuxvnc_0.9.9+dfsg2-6.1+deb8u4_amd64.deb
Files:
 fe2c4b1de647a2acff671040ce88070e 2486 libs optional libvncserver_0.9.9+dfsg2-6.1+deb8u4.dsc
 670c950701a68035098c12259cfd0bcc 31708 libs optional libvncserver_0.9.9+dfsg2-6.1+deb8u4.debian.tar.xz
 6ed74e751f3cd25d20ff45d3cf1ecd0f 125118 libs optional libvncclient0_0.9.9+dfsg2-6.1+deb8u4_amd64.deb
 a6920a8c8f39c3b3c33637f0af7acac1 191946 libs optional libvncserver0_0.9.9+dfsg2-6.1+deb8u4_amd64.deb
 8bc04e10d769c8928d021d29e916ee4e 275142 libdevel optional libvncserver-dev_0.9.9+dfsg2-6.1+deb8u4_amd64.deb
 6d8fe2fea18b82e05c76ce2930dd14d7 90666 libdevel optional libvncserver-config_0.9.9+dfsg2-6.1+deb8u4_amd64.deb
 ae84e6b492c1d36b76636d86c8df6f99 183368 debug extra libvncclient0-dbg_0.9.9+dfsg2-6.1+deb8u4_amd64.deb
 76d87baa107cec2491323b931a9548fb 382860 debug extra libvncserver0-dbg_0.9.9+dfsg2-6.1+deb8u4_amd64.deb
 af5ef6c9f8dd9dafedf3d650c0ed20f0 86734 net optional linuxvnc_0.9.9+dfsg2-6.1+deb8u4_amd64.deb

-----BEGIN PGP SIGNATURE-----
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=afZH
-----END PGP SIGNATURE-----