[SECURITY] [DLA 1683-1] rdesktop security update

To: debian-lts-announce@lists.debian.org
Subject: [SECURITY] [DLA 1683-1] rdesktop security update
From: Emilio Pozuelo Monfort <pochu@debian.org>
Date: Tue, 19 Feb 2019 11:39:45 +0100
Message-id: <[🔎] 458b116f-4287-f0c9-eecf-ed8f3cc624d2@debian.org>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Package        : rdesktop
Version        : 1.8.4-0+deb8u1
CVE ID         : CVE-2018-8791 CVE-2018-8792 CVE-2018-8793 CVE-2018-8794
                 CVE-2018-8795 CVE-2018-8796 CVE-2018-8797 CVE-2018-8798
                 CVE-2018-8799 CVE-2018-8800 CVE-2018-20174 CVE-2018-20175
                 CVE-2018-20176 CVE-2018-20177 CVE-2018-20178 CVE-2018-20179
                 CVE-2018-20180 CVE-2018-20181 CVE-2018-20182

Multiple security issues were found in the rdesktop RDP client, which
could result in denial of service, information disclosure and the
execution of arbitrary code.

For Debian 8 "Jessie", these problems have been fixed in version
1.8.4-0+deb8u1.

We recommend that you upgrade your rdesktop packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
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=AL7b
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DLA 1660-2] rssh regression update
Next by Date: [SECURITY] [DLA 1684-1] systemd security update
Previous by thread: [SECURITY] [DLA 1660-2] rssh regression update
Next by thread: [SECURITY] [DLA 1684-1] systemd security update
Index(es):
- Date
- Thread