freerdp (1.0.2-2ubuntu1.2) trusty-security; urgency=medium
* SECURITY UPDATE: Integer truncation in update_read_bitmap_update
- debian/patches/CVE-2018-8786.patch: Promote count to 32-bit integer
type to avoid integer truncation in libfreerdp-core/update.c. Based on
upstream patch.
- CVE-2018-8786
* SECURITY UPDATE: Integer overflow in gdi_Bitmap_Decompress
- debian/patches/CVE-2018-8787.patch: Check for and avoid possible
integer overflow in libfreerdp-gdi/graphics.c. Based on upstream
patch.
- CVE-2018-8787
Date: 2018-12-11 11:31:19.484051+00:00
Changed-By: Alex Murray <[email protected]>
https://launchpad.net/ubuntu/+source/freerdp/1.0.2-2ubuntu1.2
Sorry, changesfile not available.
--
Trusty-changes mailing list
[email protected]
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/trusty-changes
