libvncserver 0.9.10+dfsg-3ubuntu0.16.04.4 source package in Ubuntu
Changelog
libvncserver (0.9.10+dfsg-3ubuntu0.16.04.4) xenial-security; urgency=medium
* SECURITY UPDATE: null pointer dereference in HandleZlibBPP function which
results in DoS
- debian/patches/CVE-2019-15680.patch: prevent dereferencing of null
pointers during decoding in libvncclient/zlib.c and libvncclient/zrle.c.
- CVE-2019-15680
* SECURITY UPDATE: memory leak allows an attacker to read stack memory
resulting in possible information disclosure
- debian/patches/CVE-2019-15681.patch: clear a block of memory for the sct
variable in libvncserver/rfbserver.c.
- CVE-2019-15681
* SECURITY UPDATE: heap buffer overflow caused by large cursor sizes
- debian/patches/CVE-2019-15690_CVE-2019-20788.patch: limit the size of
cursor in libvncclient/cursor.c.
- CVE-2019-15690
- CVE-2019-20788
* SECURITY UPDATE: heap-based buffer overflow which allowed easy modification
of a return address via an overwritten function pointer
- debian/patches/CVE-2017-18922.patch: fix buffer overflow within the
websocket decoding functionality in libvncserver/websockets.c.
- debian/patches/encode_decode_buffers.patch: split codeBuf variable into
encode and decode variables, allowing CVE patch to apply.
- CVE-2017-18922
-- Avital Ostromich <email address hidden> Tue, 30 Jun 2020 11:11:21 -0400
Upload details
- Uploaded by:
- Avital Ostromich
- Uploaded to:
- Xenial
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any
- Section:
- libs
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| libvncserver_0.9.10+dfsg.orig.tar.xz | 379.3 KiB | 583f28869b82aec57768d7d18cd7ff81bf092ecbbc1209b587c2c2cd68330250 |
| libvncserver_0.9.10+dfsg-3ubuntu0.16.04.4.debian.tar.xz | 42.2 KiB | ddbbc4e62d80337de149916d0c9233c270fbecc493af79a1572bdaa36634fded |
| libvncserver_0.9.10+dfsg-3ubuntu0.16.04.4.dsc | 2.3 KiB | ec2fc98e6c80497aa94d47276e10dc469bcd4235bc66c7bcd82e55c5bec18393 |
Available diffs
Binary packages built by this source
- libvncclient1: API to write one's own VNC server - client library
LibVNCServer makes writing a VNC server (or more correctly, a program
exporting a framebuffer via the Remote Frame Buffer protocol) easy. It hides
the programmer from the tedious task of managing clients and compression.
.
This package provides the client library.
- libvncclient1-dbg: debugging symbols for libvncclient
LibVNCServer makes writing a VNC server (or more correctly, a program
exporting a framebuffer via the Remote Frame Buffer protocol) easy. It hides
the programmer from the tedious task of managing clients and compression.
.
This package contains the debugging symbols for libvncclient.
- libvncclient1-dbgsym: debug symbols for package libvncclient1
LibVNCServer makes writing a VNC server (or more correctly, a program
exporting a framebuffer via the Remote Frame Buffer protocol) easy. It hides
the programmer from the tedious task of managing clients and compression.
.
This package provides the client library.
- libvncserver-config: API to write one's own VNC server - library utility
LibVNCServer makes writing a VNC server (or more correctly, a program
exporting a framebuffer via the Remote Frame Buffer protocol) easy. It hides
the programmer from the tedious task of managing clients and compression.
.
This package provides libvncserver-config utility, needed to obtain some
option of the libvncserver library.
- libvncserver-config-dbgsym: debug symbols for package libvncserver-config
LibVNCServer makes writing a VNC server (or more correctly, a program
exporting a framebuffer via the Remote Frame Buffer protocol) easy. It hides
the programmer from the tedious task of managing clients and compression.
.
This package provides libvncserver-config utility, needed to obtain some
option of the libvncserver library.
- libvncserver-dev: API to write one's own VNC server - development files
LibVNCServer makes writing a VNC server (or more correctly, a program
exporting a framebuffer via the Remote Frame Buffer protocol) easy. It hides
the programmer from the tedious task of managing clients and compression.
.
This is the development package which contains headers and static libraries
for libvncserver.
- libvncserver-dev-dbgsym: debug symbols for package libvncserver-dev
LibVNCServer makes writing a VNC server (or more correctly, a program
exporting a framebuffer via the Remote Frame Buffer protocol) easy. It hides
the programmer from the tedious task of managing clients and compression.
.
This is the development package which contains headers and static libraries
for libvncserver.
- libvncserver1: API to write one's own VNC server
LibVNCServer makes writing a VNC server (or more correctly, a program
exporting a framebuffer via the Remote Frame Buffer protocol) easy. It hides
the programmer from the tedious task of managing clients and compression.
.
This package provides the server library.
- libvncserver1-dbg: debugging symbols for libvncserver
LibVNCServer makes writing a VNC server (or more correctly, a program
exporting a framebuffer via the Remote Frame Buffer protocol) easy. It hides
the programmer from the tedious task of managing clients and compression.
.
This package contains the debugging symbols for libvncserver.
- libvncserver1-dbgsym: debug symbols for package libvncserver1
LibVNCServer makes writing a VNC server (or more correctly, a program
exporting a framebuffer via the Remote Frame Buffer protocol) easy. It hides
the programmer from the tedious task of managing clients and compression.
.
This package provides the server library.
