Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 8cd46568 by Salvatore Bonaccorso at 2020-03-15T14:35:12+01:00 Add note for CVE-2019-15680 In libvncserver's case at least according the discussiion in [1] this might be an non-issue. The issue was already marked unimportant for libvncserver earlier, thus for now retain the references. [1] https://github.com/LibVNC/libvncserver/issues/359#issuecomment-599202068 - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -35342,6 +35342,7 @@ CVE-2019-15680 (TightVNC code version 1.3.10 contains null pointer dereference i - libvncserver <unfixed> (unimportant) NOTE: https://www.openwall.com/lists/oss-security/2018/12/10/5 NOTE: https://github.com/sunweaver/libvncserver/commit/85d00057b5daf71675462c9b175d8cb2d47cd0e1 + NOTE: Non-issue in libvncserver's case: https://github.com/LibVNC/libvncserver/issues/359#issuecomment-599202068 CVE-2019-15679 (TightVNC code version 1.3.10 contains heap buffer overflow in Initiali ...) {DLA-2045-1} - tightvnc 1:1.3.9-9.1 (bug #945364) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8cd46568d7d991c37a97570cec4a4b52aaa94e5a -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8cd46568d7d991c37a97570cec4a4b52aaa94e5a You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list [email protected] https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
