libvncserver 0.9.11+dfsg-1ubuntu1.3 source package in Ubuntu
Changelog
libvncserver (0.9.11+dfsg-1ubuntu1.3) bionic-security; urgency=medium * SECURITY UPDATE: buffer overflow via a long socket filename - debian/patches/CVE-2019-20839.patch: Error out if the unix socket name would overflow in libvncclient/sockets.c. - CVE-2019-20839 * SECURITY UPDATE: unaligned accesses in hybiReadAndDecode can lead to a crash - debian/patches/CVE-2019-20840.patch: Ensure a proper stack alignment in libvncserver/websockets.c. - CVE-2019-20840 * SECURITY UPDATE: NULL pointer dereference in region clipping span routine - debian/patches/CVE-2020-14397.patch: Add NULL pointer dereference checks to libvncserver/rfbregion.c. - CVE-2020-14397 * SECURITY UPDATE: infinite loop due to improperly closed TCP connection - debian/patches/CVE-2020-14398.patch: Close the connection after a certain number of retries in libvncclient/sockets.c. - CVE-2020-14398 * SECURITY UPDATE: byte-aligned data is accessed through uint32_t pointers - debian/patches/CVE-2020-14399.patch: Ensure a proper stack alignment in libvncclient/rfbproto.c. - CVE-2020-14399 * SECURITY UPDATE: byte-aligned data is accessed through uint16_t pointers - debian/patches/CVE-2020-14400.patch: Ensure a proper stack alignment in libvncserver/translate.c. - CVE-2020-14400 * SECURITY UPDATE: integer overflow in bitwise operation on pixel_value - debian/patches/CVE-2020-14401.patch: Cast variable to 64 bit before performing bitwise operation. - CVE-2020-14401 * SECURITY UPDATE: out-of-bounds access via encodings - debian/patches/CVE-2020-14402_CVE-2020-14403_CVE-2020-14404.patch: Check bounds before accessing array value in libvncserver/corre.c, libvncserver/hextile.c and libvncserver/rre.c - CVE-2020-14402 - CVE-2020-14403 - CVE-2020-14404 * SECURITY UPDATE: unchecked TextChat allocation size - debian/patches/CVE-2020-14405.patch: Limit max TextChat size in libvncclient/rfbproto.c. - CVE-2020-14405 -- Avital Ostromich <email address hidden> Mon, 13 Jul 2020 16:01:32 -0400
Upload details
- Uploaded by:
- Avital Ostromich
- Uploaded to:
- Bionic
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any
- Section:
- libs
- Urgency:
- Medium Urgency
See full publishing history Publishing
Series | Published | Component | Section |
---|
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
libvncserver_0.9.11+dfsg.orig.tar.gz | 513.4 KiB | ea27be2b923cc5e89fb2d93415fdc2373c90cdd2379cf9c671fa234482c69509 |
libvncserver_0.9.11+dfsg-1ubuntu1.3.debian.tar.xz | 30.9 KiB | ff8d3249ab796e0983edc96a6ce661eb4ef46e02214546473ded09d710e305d8 |
libvncserver_0.9.11+dfsg-1ubuntu1.3.dsc | 2.3 KiB | 8a9d2322d36bf1bb99db4165d0e906e03377cee226d28518992705b6d1fe4bb4 |
Available diffs
Binary packages built by this source
- libvncclient1: API to write one's own VNC server - client library
LibVNCServer makes writing a VNC server (or more correctly, a program
exporting a framebuffer via the Remote Frame Buffer protocol) easy. It hides
the programmer from the tedious task of managing clients and compression.
.
This package provides the client library.
- libvncclient1-dbg: debugging symbols for libvncclient
LibVNCServer makes writing a VNC server (or more correctly, a program
exporting a framebuffer via the Remote Frame Buffer protocol) easy. It hides
the programmer from the tedious task of managing clients and compression.
.
This package contains the debugging symbols for libvncclient.
- libvncserver-config: API to write one's own VNC server - library utility
LibVNCServer makes writing a VNC server (or more correctly, a program
exporting a framebuffer via the Remote Frame Buffer protocol) easy. It hides
the programmer from the tedious task of managing clients and compression.
.
This package provides libvncserver-config utility, needed to obtain some
option of the libvncserver library.
- libvncserver-dev: API to write one's own VNC server - development files
LibVNCServer makes writing a VNC server (or more correctly, a program
exporting a framebuffer via the Remote Frame Buffer protocol) easy. It hides
the programmer from the tedious task of managing clients and compression.
.
This is the development package which contains headers and static libraries
for libvncserver.
- libvncserver1: API to write one's own VNC server
LibVNCServer makes writing a VNC server (or more correctly, a program
exporting a framebuffer via the Remote Frame Buffer protocol) easy. It hides
the programmer from the tedious task of managing clients and compression.
.
This package provides the server library.
- libvncserver1-dbg: debugging symbols for libvncserver
LibVNCServer makes writing a VNC server (or more correctly, a program
exporting a framebuffer via the Remote Frame Buffer protocol) easy. It hides
the programmer from the tedious task of managing clients and compression.
.
This package contains the debugging symbols for libvncserver.