[ubuntu/utopic-proposed] krfb 4:4.13.97-0ubuntu2 (Accepted)

[Jonathan Riddell]

krfb (4:4.13.97-0ubuntu2) utopic; urgency=medium

  * SECURITY UPDATE: denial of service or possible code execution via
    integer overflow in liblzo2 in libvncserver in krfb
    - debian/patches/upstream_libvncserver-CVE-2014-4607.diff: check for overflow in
      minilzo/minilzo.c, src/lzo1_d.ch, src/lzo1b_d.ch, src/lzo1f_d.ch,
      src/lzo1x_d.ch, src/lzo2a_d.ch.
    - CVE-2014-4607
    - http://www.kde.org/info/security/advisory-20140803-1.txt

Date: Mon, 04 Aug 2014 17:24:04 +0200
Changed-By: Jonathan Riddell <jriddell at ubuntu.com>
Maintainer: Kubuntu Developers <kubuntu-devel at lists.ubuntu.com>
https://launchpad.net/ubuntu/utopic/+source/krfb/4:4.13.97-0ubuntu2
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Mon, 04 Aug 2014 17:24:04 +0200
Source: krfb
Binary: krfb
Architecture: source
Version: 4:4.13.97-0ubuntu2
Distribution: utopic
Urgency: medium
Maintainer: Kubuntu Developers <kubuntu-devel at lists.ubuntu.com>
Changed-By: Jonathan Riddell <jriddell at ubuntu.com>
Description:
 krfb       - Desktop Sharing utility
Changes:
 krfb (4:4.13.97-0ubuntu2) utopic; urgency=medium
 .
   * SECURITY UPDATE: denial of service or possible code execution via
     integer overflow in liblzo2 in libvncserver in krfb
     - debian/patches/upstream_libvncserver-CVE-2014-4607.diff: check for overflow in
       minilzo/minilzo.c, src/lzo1_d.ch, src/lzo1b_d.ch, src/lzo1f_d.ch,
       src/lzo1x_d.ch, src/lzo2a_d.ch.
     - CVE-2014-4607
     - http://www.kde.org/info/security/advisory-20140803-1.txt
Checksums-Sha1:
 b0b41bf891308508182c30fe5fad9fcfa0ed510c 1733 krfb_4.13.97-0ubuntu2.dsc
 b1f876ad7647b6144a3cea263d5de021e56b5370 32768 krfb_4.13.97-0ubuntu2.debian.tar.xz
Checksums-Sha256:
 3aa1aba24a003aa5b6de92fdf4a1fff00e1c41bbc5984109583ff2cb65e68ccd 1733 krfb_4.13.97-0ubuntu2.dsc
 e5b9856985cd748af13e995c31190baceb93842d76f4abfc48297c61abe72137 32768 krfb_4.13.97-0ubuntu2.debian.tar.xz
Files:
 08ac5719d3fa54f2b4def694ec6a3c61 1733 kde optional krfb_4.13.97-0ubuntu2.dsc
 a8ed24767160e22c760d5c1e9ee6b889 32768 kde optional krfb_4.13.97-0ubuntu2.debian.tar.xz
Original-Maintainer: Debian Qt/KDE Maintainers <debian-qt-kde at lists.debian.org>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iEYEARECAAYFAlPfp/IACgkQpQbm1N1NUIgTPgCfQCNBUzUwiqUDFrPlEZeJZd6l
Z40AoOKW3IG2xVQ8auQphtNCMDp0HQVz
=zaD7
-----END PGP SIGNATURE-----