Debian Package Tracker

From: Mike Gabriel <sunweaver@debian.org>
To: <dispatch@tracker.debian.org> , <debian-lts-changes@lists.debian.org>
Subject: Accepted ssvnc 1.0.29-2+deb8u1 (source amd64) into oldoldstable
Date: Fri, 29 Nov 2019 16:00:26 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Fri, 29 Nov 2019 12:15:33 +0100
Source: ssvnc
Binary: ssvnc
Architecture: source amd64
Version: 1.0.29-2+deb8u1
Distribution: jessie-security
Urgency: medium
Maintainer: Magnus Holmgren <holmgren@debian.org>
Changed-By: Mike Gabriel <sunweaver@debian.org>
Description:
 ssvnc      - Enhanced TightVNC viewer with SSL/SSH tunnel helper
Closes: 945827
Changes:
 ssvnc (1.0.29-2+deb8u1) jessie-security; urgency=medium
 .
   * Non-maintainer upload by the LTS team.
   * Porting of libvncclient security patches: (Closes: #945827).
     - CVE-2018-20020: heap out-of-bound write vulnerability inside structure
       in VNC client code.
     - CVE-2018-20021: CWE-835: Infinite loop vulnerability in VNC client code.
     - CVE-2018-20022: CWE-665: Improper Initialization vulnerability.
     - CVE-2018-20024: null pointer dereference that can result DoS.
Checksums-Sha1:
 f9282e40102a8f6d0ec312ae1b3c47689e50ee82 1918 ssvnc_1.0.29-2+deb8u1.dsc
 135d212eab4d63609a94ce441e80e233a6d80261 552796 ssvnc_1.0.29.orig.tar.gz
 19dae6704f86759824e59a8c26a3ca3cad3da158 8492 ssvnc_1.0.29-2+deb8u1.debian.tar.xz
 a53bc6e1ca5cfce80a1d6a9a74df818c30ebaf1c 431390 ssvnc_1.0.29-2+deb8u1_amd64.deb
Checksums-Sha256:
 413198decc3f7669c627362f9fb5fffb3d12e8e257eb67f8dead0858682a8f13 1918 ssvnc_1.0.29-2+deb8u1.dsc
 74df32eb8eaa68b07c9693a232ebe42154617c7f3cbe1d4e68d3fe7c557d618d 552796 ssvnc_1.0.29.orig.tar.gz
 d012e92be93912b48e53fdf98dfa32dd583e5b0e2cb3d8626e67c6aea384bbb6 8492 ssvnc_1.0.29-2+deb8u1.debian.tar.xz
 3251d1475cb86686eaaf7e87e7aabed337dd600132415fc04abc910b4079a1cd 431390 ssvnc_1.0.29-2+deb8u1_amd64.deb
Files:
 8be418437099440a06ac9d77b206ff68 1918 net extra ssvnc_1.0.29-2+deb8u1.dsc
 52201aeb0417c2a0fe83639e52da6ae5 552796 net extra ssvnc_1.0.29.orig.tar.gz
 83f347e575bec2bffc8fded9de94824b 8492 net extra ssvnc_1.0.29-2+deb8u1.debian.tar.xz
 297b22f5438b86920e7bb8be08bc7717 431390 net extra ssvnc_1.0.29-2+deb8u1_amd64.deb

-----BEGIN PGP SIGNATURE-----
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=T8/X
-----END PGP SIGNATURE-----
News for package ssvnc
