Format: 1.8
Date: Mon, 13 Jul 2020 16:01:32 -0400
Source: libvncserver
Binary: libvncclient1 libvncserver1 libvncserver-dev libvncserver-config libvncclient1-dbg libvncserver1-dbg
Architecture: armhf
Version: 0.9.11+dfsg-1ubuntu1.3
Distribution: bionic
Urgency: medium
Maintainer: Launchpad Build Daemon <buildd@bos02-arm64-007.buildd>
Changed-By: Avital Ostromich <avital.ostromich@canonical.com>
Description:
 libvncclient1 - API to write one's own VNC server - client library
 libvncclient1-dbg - debugging symbols for libvncclient
 libvncserver-config - API to write one's own VNC server - library utility
 libvncserver-dev - API to write one's own VNC server - development files
 libvncserver1 - API to write one's own VNC server
 libvncserver1-dbg - debugging symbols for libvncserver
Changes:
 libvncserver (0.9.11+dfsg-1ubuntu1.3) bionic-security; urgency=medium
 .
   * SECURITY UPDATE: buffer overflow via a long socket filename
     - debian/patches/CVE-2019-20839.patch: Error out if the unix socket name
       would overflow in libvncclient/sockets.c.
     - CVE-2019-20839
   * SECURITY UPDATE: unaligned accesses in hybiReadAndDecode can lead to a
     crash
     - debian/patches/CVE-2019-20840.patch: Ensure a proper stack alignment in
       libvncserver/websockets.c.
     - CVE-2019-20840
   * SECURITY UPDATE: NULL pointer dereference in region clipping span routine
     - debian/patches/CVE-2020-14397.patch: Add NULL pointer dereference checks
       to libvncserver/rfbregion.c.
     - CVE-2020-14397
   * SECURITY UPDATE: infinite loop due to improperly closed TCP connection
     - debian/patches/CVE-2020-14398.patch: Close the connection after a certain
       number of retries in libvncclient/sockets.c.
     - CVE-2020-14398
   * SECURITY UPDATE: byte-aligned data is accessed through uint32_t pointers
     - debian/patches/CVE-2020-14399.patch: Ensure a proper stack alignment in
       libvncclient/rfbproto.c.
     - CVE-2020-14399
   * SECURITY UPDATE: byte-aligned data is accessed through uint16_t pointers
     - debian/patches/CVE-2020-14400.patch: Ensure a proper stack alignment in
       libvncserver/translate.c.
     - CVE-2020-14400
   * SECURITY UPDATE: integer overflow in bitwise operation on pixel_value
     - debian/patches/CVE-2020-14401.patch: Cast variable to 64 bit before
       performing bitwise operation.
     - CVE-2020-14401
   * SECURITY UPDATE: out-of-bounds access via encodings
     - debian/patches/CVE-2020-14402_CVE-2020-14403_CVE-2020-14404.patch:
       Check bounds before accessing array value in libvncserver/corre.c,
       libvncserver/hextile.c and libvncserver/rre.c
     - CVE-2020-14402
     - CVE-2020-14403
     - CVE-2020-14404
   * SECURITY UPDATE: unchecked TextChat allocation size
     - debian/patches/CVE-2020-14405.patch: Limit max TextChat size in
       libvncclient/rfbproto.c.
     - CVE-2020-14405
Checksums-Sha1:
 d47e8d8e85c69026d00fe9a409faa572fc5afb77 125060 libvncclient1-dbg_0.9.11+dfsg-1ubuntu1.3_armhf.deb
 7177682ca066ba05c4fbe9b6ac16d5ebbb23cb29 49696 libvncclient1_0.9.11+dfsg-1ubuntu1.3_armhf.deb
 c77d7a203e5d7cd7a4b7c3ea5bd804cff19dfe3b 20632 libvncserver-config_0.9.11+dfsg-1ubuntu1.3_armhf.deb
 f2198b9147d203e5802edc08fbff392b80188281 194436 libvncserver-dev_0.9.11+dfsg-1ubuntu1.3_armhf.deb
 7a9cbb0d6226a0ca29528e0e5cda7a884e632268 352176 libvncserver1-dbg_0.9.11+dfsg-1ubuntu1.3_armhf.deb
 58eaf98e6c01ca6f138aa56bcbb8dc0caf74b2c0 106796 libvncserver1_0.9.11+dfsg-1ubuntu1.3_armhf.deb
 da1d06e0ad91c4acf81f6caffb701411ba343f60 7672 libvncserver_0.9.11+dfsg-1ubuntu1.3_armhf.buildinfo
Checksums-Sha256:
 a8d089833cabc7c4e777163147680f8d1976ea4ae40afb5d5f88f90e340d4726 125060 libvncclient1-dbg_0.9.11+dfsg-1ubuntu1.3_armhf.deb
 a5ae0ad79cb92e0135e1e84f86febe54cfc2f83fb8a310d56806e3a3f9dfb588 49696 libvncclient1_0.9.11+dfsg-1ubuntu1.3_armhf.deb
 913861a296b1ce04623b8198094f261c3eab1d6cc26547ccd1bc20dd5959321e 20632 libvncserver-config_0.9.11+dfsg-1ubuntu1.3_armhf.deb
 648da587b282c24d03d976482f82b0320d1192a88c384bb3f5289f247a537a5b 194436 libvncserver-dev_0.9.11+dfsg-1ubuntu1.3_armhf.deb
 8c3a9e3548db73e3dc8f26825195bf8a71c352b7260bbb24c1614fdd18ec7d5d 352176 libvncserver1-dbg_0.9.11+dfsg-1ubuntu1.3_armhf.deb
 728b95bc016b593fb1ce16a1de17fa2d4bb80fab4ead36b187576a0c21945d45 106796 libvncserver1_0.9.11+dfsg-1ubuntu1.3_armhf.deb
 8bbafac431e185da6850dc88f3c7becbe2b9003678f7cd2e54d8d55b99afb38f 7672 libvncserver_0.9.11+dfsg-1ubuntu1.3_armhf.buildinfo
Files:
 085c20c7add2f1f7fa49021ce7c5475e 125060 debug extra libvncclient1-dbg_0.9.11+dfsg-1ubuntu1.3_armhf.deb
 c6553ec48dc3ee36a95e21aebd8b5c85 49696 libs optional libvncclient1_0.9.11+dfsg-1ubuntu1.3_armhf.deb
 9f6d0292e20024e4391dc1a702f0e94b 20632 libdevel optional libvncserver-config_0.9.11+dfsg-1ubuntu1.3_armhf.deb
 a0dcae0eef51e41e81cb8ba60dcfd618 194436 libdevel optional libvncserver-dev_0.9.11+dfsg-1ubuntu1.3_armhf.deb
 633f0cab35d811dc6a1a80a14fad9f06 352176 debug extra libvncserver1-dbg_0.9.11+dfsg-1ubuntu1.3_armhf.deb
 31c405df02fbb7bd2e5899009f90f111 106796 libs optional libvncserver1_0.9.11+dfsg-1ubuntu1.3_armhf.deb
 60e5e533dc947158d62133d59f1d6b72 7672 libs optional libvncserver_0.9.11+dfsg-1ubuntu1.3_armhf.buildinfo
Original-Maintainer: Peter Spiess-Knafl <dev@spiessknafl.at>