Debian Package Tracker

From: Mike Gabriel <sunweaver@debian.org>
To: <dispatch@tracker.debian.org> , <debian-lts-changes@lists.debian.org>
Subject: Accepted vino 3.14.0-2+deb8u1 (source amd64) into oldoldstable
Date: Fri, 29 Nov 2019 08:40:15 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Thu, 28 Nov 2019 16:50:38 +0100
Source: vino
Binary: vino
Architecture: source amd64
Version: 3.14.0-2+deb8u1
Distribution: jessie-security
Urgency: medium
Maintainer: Debian GNOME Maintainers <pkg-gnome-maintainers@lists.alioth.debian.org>
Changed-By: Mike Gabriel <sunweaver@debian.org>
Description:
 vino       - VNC server for GNOME
Closes: 945784
Changes:
 vino (3.14.0-2+deb8u1) jessie-security; urgency=medium
 .
   * Non-maintainer upload by the LTS team.
   * Porting of libvncserver security patches: (Closes: #945784)
     - CVE-2014-6053: Check malloc() return value on client->server ClientCutText
       message.
     - CVE-2018-7225: Uninitialized and potentially sensitive data could be
       accessed by remote attackers because the msg.cct.length in rfbserver.c was
       not sanitized.
     - CVE-2019-15681: rfbserver: don't leak stack memory to the remote.
Checksums-Sha1:
 f9cee0857909bef1d60ba71ef74669fde964a9bc 2465 vino_3.14.0-2+deb8u1.dsc
 c26168b0a6dfa6f646dcc131a09aaca2789623f1 749784 vino_3.14.0.orig.tar.xz
 017586e98f4cbe84319c99d3be56db8468ff07b9 12992 vino_3.14.0-2+deb8u1.debian.tar.xz
 ee14ec7bf9e07bfd8f6d6fe098fabe6e1020a2c5 406796 vino_3.14.0-2+deb8u1_amd64.deb
Checksums-Sha256:
 b1160d80107d43104084fdf65362c4e29bb80a1f60930f05946e1ce3ce376239 2465 vino_3.14.0-2+deb8u1.dsc
 8faf864009e697e8652e4833150eaaba3da6c5a85f9f95886a5b76b00e5a9c1b 749784 vino_3.14.0.orig.tar.xz
 dc1324d253fd2954548a5cddc3a541ebd3b0b8b4e66c9fee1dfa1b18526fa63c 12992 vino_3.14.0-2+deb8u1.debian.tar.xz
 2de19ef08ad9efee7baaf3098c062d0765eb31bf5cbf13d1f1b48f38b74db10e 406796 vino_3.14.0-2+deb8u1_amd64.deb
Files:
 a65c0b39ca5560518abad9858e098f8e 2465 gnome optional vino_3.14.0-2+deb8u1.dsc
 3564333509f9554fe8047cc34748cec1 749784 gnome optional vino_3.14.0.orig.tar.xz
 efab54f7d2e173bf21dba41fa5cbf776 12992 gnome optional vino_3.14.0-2+deb8u1.debian.tar.xz
 23426d17da6a8fd3964fcd310aaee15c 406796 gnome optional vino_3.14.0-2+deb8u1_amd64.deb

-----BEGIN PGP SIGNATURE-----
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=ecdp
-----END PGP SIGNATURE-----
News for package vino
