Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
dc113158 by Salvatore Bonaccorso at 2018-12-29T08:12:58Z
Add further commit reference for CVE-2018-15126
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -20695,7 +20695,8 @@ CVE-2018-15127 (LibVNC before commit
502821828ed00b4a2c4bef90683d0fd88ce495de co
CVE-2018-15126 (LibVNC before commit 73cb96fec028a576a5a24417b57723b55854ad7b
contains ...)
- libvncserver <not-affected> (Vulnerable code introduced after 0.9.11
release)
NOTE: https://github.com/LibVNC/libvncserver/issues/242
- NOTE:
https://github.com/LibVNC/libvncserver/commit/73cb96fec028a576a5a24417b57723b55854ad7b
+ NOTE: Fixed by:
https://github.com/LibVNC/libvncserver/commit/162d716b4c095a87aab2261857d583d68e3b3ea6
+ NOTE: main part of the fix:
https://github.com/LibVNC/libvncserver/commit/73cb96fec028a576a5a24417b57723b55854ad7b
NOTE:
https://ics-cert.kaspersky.com/advisories/klcert-advisories/2018/12/19/klcert-18-027-libvnc-heap-use-after-free/
CVE-2018-15125 (Sensitive Information Disclosure in Zipato Zipabox Smart Home
...)
NOT-FOR-US: Zipato
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/dc113158edddd4281e6f281ceb39f241c86f1bde
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/dc113158edddd4281e6f281ceb39f241c86f1bde
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
