Bug#969190: libvncserver 0.9.11+dfsg-1.3+deb10u4 flagged for acceptance
package release.debian.org
tags 969190 = buster pending
thanks
Hi,
The upload referenced by this bug report has been flagged for acceptance into the proposed-updates queue for Debian buster.
Thanks for your contribution!
Upload details
==============
Package: libvncserver
Version: 0.9.11+dfsg-1.3+deb10u4
Explanation: libvncclient: bail out if unix socket name would overflow [CVE-2019-20839]; fix pointer aliasing/alignment issue [CVE-2020-14399]; limit max textchat size [CVE-2020-14405]; libvncserver: add missing NULL pointer checks [CVE-2020-14397]; fix pointer aliasing/alignment issue [CVE-2020-14400]; scale: cast to 64 bit before shifting [CVE-2020-14401]; prevent OOB accesses [CVE-2020-14402 CVE-2020-14403 CVE-2020-14404]
Reply to: