Fwd: [Ticket#2018033089000104] Ticket Created: [SECURITY] [DLA 1332-1] libvncserver security update

Sat, 31 Mar 2018 04:07:52 -0700 

Hello.  
I received this mail after sending DLA.  Is it something set up by our sponsors 
?  Or spam.

--abhijith 


-------- Original Message --------
From: Helpdesk EDV <helpd...@bsvbio.de>
Sent: 31 March 2018 1:00:04 AM IST
To: Abhijith PA <abhij...@disroot.org>
Subject: [Ticket#2018033089000104] Ticket Created: [SECURITY] [DLA 1332-1] 
libvncserver security update

    [Ticket#2018033089000104] Ticket Created: [SECURITY] [DLA 1332-1]
libvncserver security update    

   [Ticket#2018033089000104] Ticket Created: [SECURITY] [DLA 1332-1]
libvncserver security update   

  Hi -,

ticket [Ticket#2018033089000104] has been created in queue Inbox.

Abhijith PA wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA512
> 
> Package        : libvncserver
> Version        : 0.9.9+dfsg-1+deb7u3
> CVE ID         : CVE-2018-7225
> Debian Bug     : 894045
> 
> libvncserver version through 0.9.11. does not sanitize msg.cct.length
> which may result in access to uninitialized and potentially sensitive
> data or possibly unspecified other impact (e.g., an integer overflow)
> via specially crafted VNC packets.
> 
> For Debian 7 "Wheezy", these problems have been fixed in version
> 0.9.9+dfsg-1+deb7u3.
> 
> We recommend that you upgrade your libvncserver packages.
> 
> Further information about Debian LTS security advisories, how to apply
> these updates to your system and frequently asked questions can be
> found at: [1]https://wiki.debian.org/LTS
> -----BEGIN PGP SIGNATURE-----
> 
> iQIzBAEBCgAdFiEE7xPqJqaY/zX9fJAuhj1N8u2cKO8FAlq+j5AACgkQhj1N8u2c
> KO8XMhAAkgo6ztI/qKFK0cti1YZYzT/S3si8MKyJ6+P0+YNoLPgYL/9JIVAYpU32
> gx+iGDLX07L2HcioPLQ3YmOgYjpJBgiPWXxeeOunyra+csHsfZDXr+UqQ3Rdh0tm
> 1iXV0nti7VIxJV7VnNx3pGYGgbTl2EGUIyX80+WBgI/tml9S885CiO9e5nQnbMLt
> Wp56PXGUK+PY52i2ifODD/RSMlv+WaRlrRdLQazpeHJ7ZrqaXluHMTp6PVNHaRq+
> opcE/h5nx5xYmI+AYVoqqD9s6xKK2hQMe5MOBk0Zamf4Nh3n3uwtGwT+KUevAKNP



[2]http://BSLIN09.BSV.local/otrs/index.pl?Action=AgentTicketZoom;TicketID=1970

-- OTRS Notifications   

   Powered by OTRS 5 

    


[1] https://wiki.debian.org/LTS
[2] http://BSLIN09.BSV.local/otrs/index.pl?Action=AgentTicketZoom;TicketID=1970

-- 
Sent from my Android device with K-9 Mail. Please excuse my brevity.

Reply via email to