Accepted libvncserver 0.9.11+dfsg-1.3~deb9u5 (source amd64) into oldstable
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Fri, 28 Aug 2020 21:22:58 +0200
Source: libvncserver
Binary: libvncclient1 libvncserver1 libvncserver-dev libvncserver-config libvncclient1-dbg libvncserver1-dbg
Architecture: source amd64
Version: 0.9.11+dfsg-1.3~deb9u5
Distribution: stretch-security
Urgency: medium
Maintainer: Peter Spiess-Knafl <dev@spiessknafl.at>
Changed-By: Mike Gabriel <sunweaver@debian.org>
Description:
libvncclient1 - API to write one's own VNC server - client library
libvncclient1-dbg - debugging symbols for libvncclient
libvncserver-config - API to write one's own VNC server - library utility
libvncserver-dev - API to write one's own VNC server - development files
libvncserver1 - API to write one's own VNC server
libvncserver1-dbg - debugging symbols for libvncserver
Changes:
libvncserver (0.9.11+dfsg-1.3~deb9u5) stretch-security; urgency=medium
.
* CVE-2019-20839: libvncclient: bail out if unix socket name would overflow.
* CVE-2020-14397: libvncserver: add missing NULL pointer checks.
* CVE-2020-14399: libvncclient: fix pointer aliasing/alignment issue.
* CVE-2020-14400: libvncserver: fix pointer aliasing/alignment issue.
* CVE-2020-14401: libvncserver: scale: cast to 64 bit before shifting.
* CVE-2020-14402, CVE-2020-14403, CVE-2020-14404: libvncserver: encodings:
prevent OOB accesses.
* CVE-2020-14405: libvncclient/rfbproto: limit max textchat size.
Checksums-Sha1:
40ea8dfe68c6175f9d21a0c1ce55380f9560522d 2463 libvncserver_0.9.11+dfsg-1.3~deb9u5.dsc
bd42abab1860bd92890b580453d9865fc9d8e229 525748 libvncserver_0.9.11+dfsg.orig.tar.gz
54e973aa2cb9e907d1111c9e1479921abba011e0 26196 libvncserver_0.9.11+dfsg-1.3~deb9u5.debian.tar.xz
c6ff5c818a77cc4b46521e2ef9d910609bcf9536 221196 libvncclient1-dbg_0.9.11+dfsg-1.3~deb9u5_amd64.deb
c493d975721576848be02d97220fcd1d5a6997f7 141790 libvncclient1_0.9.11+dfsg-1.3~deb9u5_amd64.deb
002c0dfca7f1aa9b1141be4037669aad5fddb807 109588 libvncserver-config_0.9.11+dfsg-1.3~deb9u5_amd64.deb
eee6bb7a9058ccc734a6f3afabeb404781b4e5eb 297482 libvncserver-dev_0.9.11+dfsg-1.3~deb9u5_amd64.deb
47748fa9d15ad38f4af103405d173bf6128b85e1 462158 libvncserver1-dbg_0.9.11+dfsg-1.3~deb9u5_amd64.deb
3db4ddf04f93aa6d719fde6886b7e35c68335813 210440 libvncserver1_0.9.11+dfsg-1.3~deb9u5_amd64.deb
3026de380a108bb8afbe6cf3b5f54404b7bf1283 8468 libvncserver_0.9.11+dfsg-1.3~deb9u5_amd64.buildinfo
Checksums-Sha256:
3ebc41a67c546692b99173dbe4bd5cdb1b8c50773a1339adc97f99475b5b976f 2463 libvncserver_0.9.11+dfsg-1.3~deb9u5.dsc
ea27be2b923cc5e89fb2d93415fdc2373c90cdd2379cf9c671fa234482c69509 525748 libvncserver_0.9.11+dfsg.orig.tar.gz
0fca71325e048d6b61dc0c370c2eb2bc0cc3f70663ce8d6af1b3e9b5e9af6dc9 26196 libvncserver_0.9.11+dfsg-1.3~deb9u5.debian.tar.xz
83b4d52bb508afa4c8625bca05de0c4371067e1e512f843fc48f95c0ab32ec32 221196 libvncclient1-dbg_0.9.11+dfsg-1.3~deb9u5_amd64.deb
ee1b6d356e072c83c80231d1a9ff1d9312a4498ce9776d3c23a8a774064d2030 141790 libvncclient1_0.9.11+dfsg-1.3~deb9u5_amd64.deb
8a1ec0a0a19795f1abf1f5691809d6d4b4ab036e88a7d59239beef484497b9fc 109588 libvncserver-config_0.9.11+dfsg-1.3~deb9u5_amd64.deb
02cfaf15b7b70ab17ee3fb12cb3e77baa4be4629ee1193a338f48a651abc6e83 297482 libvncserver-dev_0.9.11+dfsg-1.3~deb9u5_amd64.deb
e5155ccf5602a77f4a2af7bab4a41a57cb8eca38002fb4a325732f806ac70b4d 462158 libvncserver1-dbg_0.9.11+dfsg-1.3~deb9u5_amd64.deb
9599bf2b514d60df8a14c57eb96386d5a7e51c45cfa24452b381aa46f04e4615 210440 libvncserver1_0.9.11+dfsg-1.3~deb9u5_amd64.deb
698902c611e852ba2811a26f2b2cf3195037f31e97e1d702e6d0660c96674074 8468 libvncserver_0.9.11+dfsg-1.3~deb9u5_amd64.buildinfo
Files:
54f3923a95cc69163aaf612c51c6da2d 2463 libs optional libvncserver_0.9.11+dfsg-1.3~deb9u5.dsc
192d76504c82a2b6a1a0eb979b2b0733 525748 libs optional libvncserver_0.9.11+dfsg.orig.tar.gz
4276ce54389e74a73149e9fc7b932eef 26196 libs optional libvncserver_0.9.11+dfsg-1.3~deb9u5.debian.tar.xz
0c38bd5ab0aab5d315655ca497085758 221196 debug extra libvncclient1-dbg_0.9.11+dfsg-1.3~deb9u5_amd64.deb
1f00145e495267798eb3c0b43ea51fb2 141790 libs optional libvncclient1_0.9.11+dfsg-1.3~deb9u5_amd64.deb
7897190eca1b9ae53ea0b3f2725cf0cc 109588 libdevel optional libvncserver-config_0.9.11+dfsg-1.3~deb9u5_amd64.deb
a7926737d6410dbee4812a84aa10d1ab 297482 libdevel optional libvncserver-dev_0.9.11+dfsg-1.3~deb9u5_amd64.deb
aa695ae08cca69c95891e671edc3736e 462158 debug extra libvncserver1-dbg_0.9.11+dfsg-1.3~deb9u5_amd64.deb
44601be3500f6aaeec30120db8b5c88b 210440 libs optional libvncserver1_0.9.11+dfsg-1.3~deb9u5_amd64.deb
6a8f2b5962849d5a3ae2c5178d7779ca 8468 libs optional libvncserver_0.9.11+dfsg-1.3~deb9u5_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----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=XF4V
-----END PGP SIGNATURE-----