[ubuntu/groovy-proposed] vino 3.22.0-6ubuntu2 (Accepted)

Marc Deslauriers marc.deslauriers at ubuntu.com
Wed Oct 7 15:15:47 UTC 2020 

vino (3.22.0-6ubuntu2) groovy; urgency=medium

  * SECURITY UPDATE: NULL pointer dereference
    - debian/patches/CVE-2020-14397.patch: add missing NULL pointer checks
      in server/libvncserver/rfbregion.c, server/libvncserver/rfbserver.c.
    - CVE-2020-14397
  * SECURITY UPDATE: out-of-bounds access via encodings
    - debian/patches/CVE-2020-1440x.patch: prevent OOB accesses in
      server/libvncserver/corre.c, server/libvncserver/hextile.c,
      server/libvncserver/rre.c.
    - CVE-2020-14402
    - CVE-2020-14403
    - CVE-2020-14404

Date: Tue, 06 Oct 2020 14:50:02 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/vino/3.22.0-6ubuntu2
-------------- next part --------------
Format: 1.8
Date: Tue, 06 Oct 2020 14:50:02 -0400
Source: vino
Architecture: source
Version: 3.22.0-6ubuntu2
Distribution: groovy
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Changes:
 vino (3.22.0-6ubuntu2) groovy; urgency=medium
 .
   * SECURITY UPDATE: NULL pointer dereference
     - debian/patches/CVE-2020-14397.patch: add missing NULL pointer checks
       in server/libvncserver/rfbregion.c, server/libvncserver/rfbserver.c.
     - CVE-2020-14397
   * SECURITY UPDATE: out-of-bounds access via encodings
     - debian/patches/CVE-2020-1440x.patch: prevent OOB accesses in
       server/libvncserver/corre.c, server/libvncserver/hextile.c,
       server/libvncserver/rre.c.
     - CVE-2020-14402
     - CVE-2020-14403
     - CVE-2020-14404
Checksums-Sha1:
 785fa4efdaee3136ac0ec94854a2ec444dd5b212 2647 vino_3.22.0-6ubuntu2.dsc
 853e5712e3ba9ef2c7725669d209976d0d06df90 20492 vino_3.22.0-6ubuntu2.debian.tar.xz
 f36c59651c391eeea2e0a6d78dd772c702790cbf 17022 vino_3.22.0-6ubuntu2_source.buildinfo
Checksums-Sha256:
 ea0118461c535c265914b06a49241ee88ab7b3de68353717161e3ea2dc08d11c 2647 vino_3.22.0-6ubuntu2.dsc
 e8debb70a360c19d30c7d73972f6ce0ed90f0409916232915a4ef09ab996c10c 20492 vino_3.22.0-6ubuntu2.debian.tar.xz
 b8d72d14fab5088ec095ed271f74487004c6277a810afe9cf01fa56c2fba17a8 17022 vino_3.22.0-6ubuntu2_source.buildinfo
Files:
 4be7361960ed37264072c89bbd15d7ca 2647 gnome optional vino_3.22.0-6ubuntu2.dsc
 102e2ea29425c19aa4f5e19ef987519e 20492 gnome optional vino_3.22.0-6ubuntu2.debian.tar.xz
 8dc3087775156bc32acc044435e4fa18 17022 gnome optional vino_3.22.0-6ubuntu2_source.buildinfo
Original-Maintainer: Debian GNOME Maintainers <pkg-gnome-maintainers at lists.alioth.debian.org>

More information about the Groovy-changes mailing list