[ubuntu/focal-security] libvncserver 0.9.12+dfsg-9ubuntu0.1 (Accepted)

Avital Ostromich avital.ostromich at canonical.com
Wed Jul 1 23:07:30 UTC 2020

libvncserver (0.9.12+dfsg-9ubuntu0.1) focal; urgency=medium

  * SECURITY UPDATE: null pointer dereference in HandleZlibBPP function which
    results in DoS
    - debian/patches/CVE-2019-15680.patch: prevent dereferencing of null
      pointers during decoding in libvncclient/zlib.c and libvncclient/zrle.c.
    - CVE-2019-15680

Date: 2020-07-01 16:44:55.891475+00:00
Changed-By: Avital Ostromich <avital.ostromich at canonical.com>
-------------- next part --------------
Sorry, changesfile not available.

More information about the Focal-changes mailing list