Ubuntu
libvncserver package

Branches for Trusty

Name Status Last Modified Last Commit
lp://staging/ubuntu/trusty-proposed/libvncserver 2 Mature 2013-12-22 12:13:58 UTC
18. * Patch acinclude.m4 for ppc64el. * F...

Author: Matthias Klose
Revision Date: 2013-12-22 12:56:20 UTC

* Patch acinclude.m4 for ppc64el.
* Fix build failure with -Wformat-security.
* Enable verbose build.
lp://staging/ubuntu/trusty-security/libvncserver 2 Mature 2014-09-29 16:59:41 UTC
19. * SECURITY UPDATE: denial of service ...

Author: Marc Deslauriers
Revision Date: 2014-09-25 11:40:15 UTC

* SECURITY UPDATE: denial of service and possible code execution via
  integer overflow and lack of malloc error handling in
  MallocFrameBuffer()
  - debian/patches/CVE-2014-6051-6052.patch: check size and handle
    return code in libvncclient/vncviewer.c, handle return code in
    libvncclient/rfbproto.c.
  - CVE-2014-6051
  - CVE-2014-6052
* SECURITY UPDATE: denial of service via large ClientCutText message
  - debian/patches/CVE-2014-6053.patch: check malloc result in
    libvncserver/rfbserver.c.
  - CVE-2014-6053
* SECURITY UPDATE: denial of service via zero scaling factor
  - debian/patches/CVE-2014-6054.patch: prevent zero scaling factor in
    libvncserver/rfbserver.c, check for integer overflow in
    libvncserver/scale.c.
  - CVE-2014-6054
* SECURITY UPDATE: denial of service and possible code execution via
  stack overflows in File Transfer feature
  - debian/patches/CVE-2014-6055.patch: check sizes in
    libvncserver/rfbserver.c.
  - CVE-2014-6055
lp://staging/ubuntu/trusty-updates/libvncserver 2 Mature 2014-09-29 17:35:14 UTC
19. * SECURITY UPDATE: denial of service ...

Author: Marc Deslauriers
Revision Date: 2014-09-25 11:40:15 UTC

* SECURITY UPDATE: denial of service and possible code execution via
  integer overflow and lack of malloc error handling in
  MallocFrameBuffer()
  - debian/patches/CVE-2014-6051-6052.patch: check size and handle
    return code in libvncclient/vncviewer.c, handle return code in
    libvncclient/rfbproto.c.
  - CVE-2014-6051
  - CVE-2014-6052
* SECURITY UPDATE: denial of service via large ClientCutText message
  - debian/patches/CVE-2014-6053.patch: check malloc result in
    libvncserver/rfbserver.c.
  - CVE-2014-6053
* SECURITY UPDATE: denial of service via zero scaling factor
  - debian/patches/CVE-2014-6054.patch: prevent zero scaling factor in
    libvncserver/rfbserver.c, check for integer overflow in
    libvncserver/scale.c.
  - CVE-2014-6054
* SECURITY UPDATE: denial of service and possible code execution via
  stack overflows in File Transfer feature
  - debian/patches/CVE-2014-6055.patch: check sizes in
    libvncserver/rfbserver.c.
  - CVE-2014-6055
lp://staging/ubuntu/trusty/libvncserver 1 Development 2013-12-22 12:13:58 UTC
18. * Patch acinclude.m4 for ppc64el. * F...

Author: Matthias Klose
Revision Date: 2013-12-22 12:56:20 UTC

* Patch acinclude.m4 for ppc64el.
* Fix build failure with -Wformat-security.
* Enable verbose build.
14 of 4 results FirstPreviousNextLast