FEDORA-EPEL-2014-2895 — security update for libvncserver

stable

libvncserver-0.9.10-0.6.20140718git9453be42.el5

FEDORA-EPEL-2014-2895 created by rdieter 9 years ago for Fedora EPEL 5

Various security fixes, including CVE-2014-6051, CVE-2014-6052, CVE-2014-6053, CVE-2014-6054, CVE-2014-6055

This update has been submitted for testing by rdieter.

9 years ago

This update is currently being pushed to the Fedora EPEL 5 testing updates repository.

9 years ago

This update has been pushed to testing

9 years ago

This update has reached 14 days in testing and can be pushed to stable now if the maintainer wishes

8 years ago

This update has been submitted for stable by rdieter.

8 years ago

This update is currently being pushed to the Fedora EPEL 5 stable updates repository.

8 years ago

This update has been pushed to stable

8 years ago

Please login to add feedback.

Metadata

Type

security

Karma

Signed

Content Type

RPM

Test Gating

None

Builds

libvncserver-0.9.10-0.6.20140718git9453be42.el5

Settings

Unstable by Karma

-3

Stable by Karma

disabled

Stable by Time

disabled

Dates

submitted

9 years ago

in testing

9 years ago

in stable

8 years ago

BZ#1144287 CVE-2014-6051 libvncserver: integer overflow flaw, leading to a heap-based buffer overflow in screen size handling

BZ#1144288 CVE-2014-6052 libvncserver: NULL pointer dereference flaw in framebuffer setup

BZ#1144289 CVE-2014-6053 CVE-2010-5304 vnc and libvncserver: server NULL pointer dereference flaw in ClientCutText message handling

BZ#1144291 CVE-2014-6054 libvncserver: server divide-by-zero flaw in scaling factor handling

BZ#1144293 CVE-2014-6055 libvncserver: server stacked-based buffer overflow flaws in file transfer handling

BZ#1145878 CVE-2014-6051 CVE-2014-6053 CVE-2014-6052 CVE-2014-6055 CVE-2014-6054 libvncserver: various flaws [fedora-all]

libvncserver-0.9.10-0.6.20140718git9453be42.el5

Automated Test Results

None