Register | Log in

deskflow

Mouse and keyboard sharing utility

Choose email to subscribe with

general

source: deskflow (main)
version: 1.26.0+dfsg-1
maintainer: HAYASHI Kentaro (DMD)
arch: any
std-ver: 4.7.3
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

stable: 1.22.0+dfsg-7
testing: 1.26.0+dfsg-1
unstable: 1.26.0+dfsg-1

versioned links

1.22.0+dfsg-7: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.26.0+dfsg-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

deskflow

action needed

1 security issue in sid high

There is 1 open security issue in sid.

1 important issue:

CVE-2026-41476: Deskflow is a keyboard and mouse sharing app. Prior to 1.26.0.138, a remote memory-safety vulnerability in Deskflow's clipboard deserialization allows a connected peer to trigger an out-of-bounds read by sending a malformed clipboard update. The issue is in the implementation of src/lib/deskflow/IClipboard.cpp. This is reachable because ClipboardChunk::assemble() in src/lib/deskflow/ClipboardChunk.cpp validates only the outer clipboard transfer size. It does not validate the internal structure of the serialized clipboard blob, so malformed inner lengths reach IClipboard::unmarshall() unchanged. This vulnerability is fixed in 1.26.0.138.

Created: 2026-04-25 Last update: 2026-04-28 19:02

1 security issue in forky high

There is 1 open security issue in forky.

1 important issue:

CVE-2026-41476: Deskflow is a keyboard and mouse sharing app. Prior to 1.26.0.138, a remote memory-safety vulnerability in Deskflow's clipboard deserialization allows a connected peer to trigger an out-of-bounds read by sending a malformed clipboard update. The issue is in the implementation of src/lib/deskflow/IClipboard.cpp. This is reachable because ClipboardChunk::assemble() in src/lib/deskflow/ClipboardChunk.cpp validates only the outer clipboard transfer size. It does not validate the internal structure of the serialized clipboard blob, so malformed inner lengths reach IClipboard::unmarshall() unchanged. This vulnerability is fixed in 1.26.0.138.

Created: 2026-04-25 Last update: 2026-04-28 19:02

lintian reports 3 warnings normal

Lintian reports 3 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2025-09-17 Last update: 2025-10-18 16:31

1 low-priority security issue in trixie low

There is 1 open security issue in trixie.

1 issue left for the package maintainer to handle:

CVE-2026-41476: (needs triaging) Deskflow is a keyboard and mouse sharing app. Prior to 1.26.0.138, a remote memory-safety vulnerability in Deskflow's clipboard deserialization allows a connected peer to trigger an out-of-bounds read by sending a malformed clipboard update. The issue is in the implementation of src/lib/deskflow/IClipboard.cpp. This is reachable because ClipboardChunk::assemble() in src/lib/deskflow/ClipboardChunk.cpp validates only the outer clipboard transfer size. It does not validate the internal structure of the serialized clipboard blob, so malformed inner lengths reach IClipboard::unmarshall() unchanged. This vulnerability is fixed in 1.26.0.138.

You can find information about how to handle this issue in the security team's documentation.

Created: 2026-04-25 Last update: 2026-04-28 19:02

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.7.4 instead of 4.7.3).

Created: 2026-03-31 Last update: 2026-03-31 15:01

testing migrations

This package will soon be part of the auto-openssl transition. You might want to ensure that your package is ready for it. You can probably find supplementary information in the debian-release archives or in the corresponding release.debian.org bug.

news

[2026-02-24] deskflow 1.26.0+dfsg-1 MIGRATED to testing (Debian testing watch)
[2026-02-21] Accepted deskflow 1.26.0+dfsg-1 (source) into unstable (Kentaro Hayashi) (signed by: HAYASHI Kentaro)
[2025-12-22] deskflow 1.25.0+dfsg-3 MIGRATED to testing (Debian testing watch)
[2025-12-20] Accepted deskflow 1.25.0+dfsg-3 (source) into unstable (Kentaro Hayashi) (signed by: HAYASHI Kentaro)
[2025-12-10] deskflow 1.25.0+dfsg-2 MIGRATED to testing (Debian testing watch)
[2025-11-26] Accepted deskflow 1.25.0+dfsg-2 (source) into unstable (Kentaro Hayashi) (signed by: HAYASHI Kentaro)
[2025-11-25] Accepted deskflow 1.25.0+dfsg-1 (source) into unstable (Kentaro Hayashi) (signed by: HAYASHI Kentaro)
[2025-09-19] deskflow 1.24.0+dfsg-2 MIGRATED to testing (Debian testing watch)
[2025-09-16] Accepted deskflow 1.24.0+dfsg-2 (source) into unstable (Kentaro Hayashi) (signed by: HAYASHI Kentaro)
[2025-09-16] Accepted deskflow 1.24.0+dfsg-1 (source) into unstable (Kentaro Hayashi) (signed by: HAYASHI Kentaro)
[2025-08-22] deskflow 1.23.0+dfsg-2 MIGRATED to testing (Debian testing watch)
[2025-08-19] Accepted deskflow 1.23.0+dfsg-2 (source) into unstable (Kentaro Hayashi) (signed by: HAYASHI Kentaro)
[2025-08-14] deskflow 1.23.0+dfsg-1 MIGRATED to testing (Debian testing watch)
[2025-08-09] Accepted deskflow 1.23.0+dfsg-1 (source) into unstable (Kentaro Hayashi) (signed by: HAYASHI Kentaro)
[2025-07-22] deskflow 1.22.0+dfsg-7 MIGRATED to testing (Debian testing watch)
[2025-07-02] Accepted deskflow 1.22.0+dfsg-7 (source) into unstable (Kentaro Hayashi) (signed by: HAYASHI Kentaro)
[2025-07-02] Accepted deskflow 1.22.0+dfsg-6 (source) into unstable (Kentaro Hayashi) (signed by: HAYASHI Kentaro)
[2025-07-01] Accepted deskflow 1.22.0+dfsg-5 (source) into unstable (Kentaro Hayashi) (signed by: HAYASHI Kentaro)
[2025-06-30] Accepted deskflow 1.22.0+dfsg-4 (source) into unstable (Kentaro Hayashi) (signed by: HAYASHI Kentaro)
[2025-06-02] Accepted deskflow 1.22.0+dfsg-3 (source) into unstable (Kentaro Hayashi) (signed by: HAYASHI Kentaro)
[2025-06-01] Accepted deskflow 1.22.0+dfsg-2 (source) into unstable (Kentaro Hayashi) (signed by: HAYASHI Kentaro)
[2025-06-01] Accepted deskflow 1.22.0+dfsg-1 (source) into unstable (Kentaro Hayashi) (signed by: HAYASHI Kentaro)
[2025-05-09] deskflow 1.21.2+dfsg-1 MIGRATED to testing (Debian testing watch)
[2025-04-29] Accepted deskflow 1.21.2+dfsg-1 (source) into unstable (Kentaro Hayashi) (signed by: HAYASHI Kentaro)
[2025-04-08] deskflow 1.21.1+dfsg-1 MIGRATED to testing (Debian testing watch)
[2025-04-02] Accepted deskflow 1.21.1+dfsg-1 (source) into unstable (Kentaro Hayashi) (signed by: HAYASHI Kentaro)
[2025-03-29] Accepted deskflow 1.21.0+dfsg-1 (source) into unstable (Kentaro Hayashi) (signed by: HAYASHI Kentaro)
[2025-03-22] deskflow 1.20.1+dfsg-1 MIGRATED to testing (Debian testing watch)
[2025-03-17] Accepted deskflow 1.20.1+dfsg-1 (source) into unstable (Kentaro Hayashi) (signed by: HAYASHI Kentaro)
[2025-03-17] Accepted deskflow 1.18.0+dfsg-2 (source) into unstable (Kentaro Hayashi) (signed by: HAYASHI Kentaro)

1
2

bugs [bug history graph]

all: 0

links

homepage
lintian (0, 3)
buildd: logs, reproducibility, cross
popcon
browse source code
other distros
security tracker
debian patches
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 1.26.0+dfsg-1

Debian Package Tracker — Copyright 2013-2025 The Distro Tracker Developers

Report problems to the tracker.debian.org pseudo-package in the Debian BTS.

Documentation — Bugs — Git Repository — Contributing