This bug was fixed in the package rdesktop -
1.5.0-3+cvs20071006ubuntu0.1
---------------
rdesktop (1.5.0-3+cvs20071006ubuntu0.1) hardy-security; urgency=low
* SECURITY UPDATE: fix integer overflow in iso.c that could cause denial
of service or possibly remote code execution
* SECURITY UPDATE: fix buffer overflow in rdp.c that could cause allow
remote code execution via redirect requests
* SECURITY UPDATE: fix integer signedness error that may allow remote
code execution via heap-based overflow
* References
CVE-2008-1801
CVE-2008-1802
CVE-2008-1803
LP: #228193
-- Jamie Strandboge <[EMAIL PROTECTED]> Tue, 16 Sep 2008 18:11:42
-0500
** Changed in: rdesktop (Ubuntu Hardy)
Status: Fix Committed => Fix Released
** Changed in: rdesktop (Ubuntu Gutsy)
Status: Fix Committed => Fix Released
--
rdesktop 1.5.0 multiple remote vulnerabilities [CVE-2008-1801, -1802, -1803]
https://bugs.launchpad.net/bugs/228193
You received this bug notification because you are a member of Ubuntu
Bugs, which is a direct subscriber.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
