Debian Package Tracker

From: Magnus Holmgren <holmgren@debian.org>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted ssvnc 1.0.29-5 (source) into unstable
Date: Mon, 16 Dec 2019 19:05:30 +0000
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Mon, 16 Dec 2019 19:46:31 +0100
Source: ssvnc
Architecture: source
Version: 1.0.29-5
Distribution: unstable
Urgency: high
Maintainer: Magnus Holmgren <holmgren@debian.org>
Changed-By: Magnus Holmgren <holmgren@debian.org>
Closes: 945827
Changes:
 ssvnc (1.0.29-5) unstable; urgency=high
 .
   * Porting of libvncclient security patches by the jessie LTS team
     (Closes: #945827):
     - CVE-2018-20020: heap out-of-bound write vulnerability inside structure
       in VNC client code.
     - CVE-2018-20021: CWE-835: Infinite loop vulnerability in VNC client code.
     - CVE-2018-20022: CWE-665: Improper Initialization vulnerability.
     - CVE-2018-20024: null pointer dereference that can result DoS.
   * Bump Standards-Version to 4.4.1.
Checksums-Sha1:
 4a4efc6a97fa3f562473a60f10e929327b41f658 1902 ssvnc_1.0.29-5.dsc
 96f489e79c4a0ab9092031c24c48a329c7b6faa5 13292 ssvnc_1.0.29-5.debian.tar.xz
 7546a52e1c4468ff406fdbe9e4118e3fc91c6151 8114 ssvnc_1.0.29-5_source.buildinfo
Checksums-Sha256:
 fc582c45b15964a0fa054ada91eb775535c83e3b83a51153a5c71c93d4b6b616 1902 ssvnc_1.0.29-5.dsc
 f563d356ce42bc27bf9a4ac5ee586eb7c8dbf550ae65d6e14141ac8be5913c71 13292 ssvnc_1.0.29-5.debian.tar.xz
 982b29a01fde37c5146c2b1f5a26f9a5ae1a81a4f4c2cd569cc9cce8b01c7caf 8114 ssvnc_1.0.29-5_source.buildinfo
Files:
 025cad4f04207b33c7bf46e8e07a6f4b 1902 net optional ssvnc_1.0.29-5.dsc
 83eae4a38588d37f0f84d1fef75ab69c 13292 net optional ssvnc_1.0.29-5.debian.tar.xz
 194217435647dde0bda486b432916a9b 8114 net optional ssvnc_1.0.29-5_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=xhdk
-----END PGP SIGNATURE-----
News for package ssvnc
