Back to rdesktop PTS page

Accepted rdesktop 1.8.4-1 (source amd64) into unstable

To: debian-devel-changes@lists.debian.org
Subject: Accepted rdesktop 1.8.4-1 (source amd64) into unstable
From: Laszlo Boszormenyi (GCS) <gcs@debian.org>
Date: Tue, 08 Jan 2019 00:50:17 +0000
Mail-followup-to: debian-devel@lists.debian.org
Message-id: <E1ggfaz-000H2U-Hz@fasolo.debian.org>
Reply-to: debian-devel@lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Mon, 07 Jan 2019 23:03:14 +0000
Source: rdesktop
Binary: rdesktop
Architecture: source amd64
Version: 1.8.4-1
Distribution: unstable
Urgency: high
Maintainer: Laszlo Boszormenyi (GCS) <gcs@debian.org>
Changed-By: Laszlo Boszormenyi (GCS) <gcs@debian.org>
Description:
 rdesktop   - RDP client for Windows NT/2000 Terminal Server and Windows Server
Changes:
 rdesktop (1.8.4-1) unstable; urgency=high
 .
   * New upstream release, including many security fixes:
     - fix possible integer overflow in s_check_rem() on 32bit arch,
     - CVE-2018-8791: fix minor information leak in rdpdr_process(),
     - CVE-2018-8792: fix denial of service in cssp_read_tsrequest(),
     - CVE-2018-8793: fix remote code execution in cssp_read_tsrequest(),
     - CVE-2018-8794: fix memory corruption in process_bitmap_data(),
     - CVE-2018-8795: fix remote code execution in process_bitmap_data(),
     - CVE-2018-8796: fix denial of service in process_bitmap_data(),
     - CVE-2018-8797: fix remote code execution in process_plane(),
     - CVE-2018-8798: fix minor information leak in rdpsnd_process_ping(),
     - CVE-2018-8799: fix denial of service in process_secondary_order(),
     - CVE-2018-8800: fix remote code execution in ui_clip_handle_data(),
     - CVE-2018-20174: fix major information leak in ui_clip_handle_data(),
     - CVE-2018-20175: fix denial of service in mcs_recv_connect_response()
       and in mcs_parse_domain_params(),
     - CVE-2018-20176: fix denial of service in sec_parse_crypt_info() and
       in sec_recv(),
     - CVE-2018-20177: fix memory corruption in rdp_in_unistr(),
     - CVE-2018-20178: fix denial of service in process_demand_active(),
     - CVE-2018-20179: fix remote code execution in lspci_process(),
     - CVE-2018-20180: fix remote code execution in rdpsnddbg_process(),
     - CVE-2018-20181: fix remote code execution in seamless_process(),
     - CVE-2018-20182: fix remote code execution in seamless_process_line().
   * Update debhelper level to 11 .
   * Update Standards-Version to 4.3.0 .
Checksums-Sha1:
 447e356d0c4949f472fab0b291f6c65067ead464 1869 rdesktop_1.8.4-1.dsc
 b937573e3f76a494a2b9092a440c9ea3e862d1f3 321448 rdesktop_1.8.4.orig.tar.gz
 438f0d6d766d6fbd5d0d8484e88451d85695ec53 10016 rdesktop_1.8.4-1.debian.tar.xz
 5f768110798aaa5ea8904b12360ff1d05f5c070e 7508 rdesktop_1.8.4-1_amd64.buildinfo
 13bf21cb5063c1664c7d89a4af287a80ea3bd889 161856 rdesktop_1.8.4-1_amd64.deb
Checksums-Sha256:
 7c1103675d036e7fda480d3aa5750eff02ddfb97947706cf9bd1be8dc7fc0be4 1869 rdesktop_1.8.4-1.dsc
 9b98b8e73aa83e93aa1d9ae82ce38c08395f64b67799edc24821bb26a84dcd2d 321448 rdesktop_1.8.4.orig.tar.gz
 db0939716200426021463ea5907ee5d57ebf4b7a3c9309585714f487ee54fd73 10016 rdesktop_1.8.4-1.debian.tar.xz
 674abe881006b4909c42919e62ffec770c4170eb6d7c1830ae70c9a02647ef53 7508 rdesktop_1.8.4-1_amd64.buildinfo
 52a9e3a0fa7f2cab9c6915b9710a4e97a15dead1cbab0f8c187f669049abb5c8 161856 rdesktop_1.8.4-1_amd64.deb
Files:
 969f2d478cf4a0ae24adb23d8679e6d9 1869 x11 optional rdesktop_1.8.4-1.dsc
 7273f9dad833f6899a3e5b39d7fdd6f2 321448 x11 optional rdesktop_1.8.4.orig.tar.gz
 d8c0f8e76b2bac444b1368bb44ab0180 10016 x11 optional rdesktop_1.8.4-1.debian.tar.xz
 6f5d42d499bf3091976ac28b1d5bd02e 7508 x11 optional rdesktop_1.8.4-1_amd64.buildinfo
 9993fe1d252e25eb3b4ba7da394c5351 161856 x11 optional rdesktop_1.8.4-1_amd64.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEEfYh9yLp7u6e4NeO63OMQ54ZMyL8FAlwz7R8ACgkQ3OMQ54ZM
yL+M+w/7BvHy7yOzGg8GjekcmY4pCcrhM6Ufbb2uU8F/gVQD/WJlspQrtKNrLlzK
PGYlVXGtix0P/5fLMPtjrGKP7MkpfPyW/23WAdbNbOcI2CP+MFWNB+AOJsia6NUP
B082d9FyQgjkBN4U5yOVbIVBPdiwMc+/A/NX2eTmgpwc3en8Q9yvxwXZ8/PlX4ny
loZ/Ipjgk5d5BPRumuTL5M+qpnMSL18L2TPfoY/9GOPrbWEQtw4UG1oQGm/OOtzI
RBAqp0cFz//PJaFasHOH7Ps3R2JaPTBpL6z/FX1YXGaEKRWecIfavy5TasLWL7FF
jlzNDt7yoqByTxj2Kg/nsgtkz9Rc2DDUtedAEglxRJw2cWEcOCTQLTHcHOifLZoS
y1qIhz955/3elyInoN2ZsR9i1ncyQqnixEIXecWOTdfmwBzTkz/RQXiX3i9ZTMP3
c6Rr1y3DoA9J9PLmXYpPmSccU4GJ7zD8+dhaVAwuX7qHKfSMgxPHQjRoZav2eKbQ
9N166t9WWRim+BUyuO9P79ms6s83cRm0QZIgs1Zb5acibOACh18CemPc8I10b4d7
12I9ytrO0zCWkkGibTtW59b484PlePjWZH35SJ7zGIGWq7LABIkFee0fNMBRnAfB
CU5b1Emw5wKI/yw4vaLqMdq8aa+SyysPAM9IqaNF46Hf+A4Z7dI=
=cSLv
-----END PGP SIGNATURE-----