SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for libvncclient0-0.9.10-150000.4.32.3.x86_64.rpm :

* Tue Nov 29 2022 pgajdosAATTsuse.com- turn on reliable tests and turn off unreliable ones- added patches sync the testsuite with Factory state + LibVNCServer-update-testsuite.patch- see [bsc#1203106], [bsc#1204127], [bsc#1204129], [bsc#1173477], [bsc#1170916]
* Thu Sep 08 2022 pgajdosAATTsuse.com- security update- added patches fix CVE-2020-29260 [bsc#1203106], memory leakage via rfbClientCleanup() + LibVNCServer-CVE-2020-29260.patch
* Tue Nov 24 2020 pgajdosAATTsuse.com- security update- added patches fix CVE-2020-25708 [bsc#1178682], libvncserver/rfbserver.c has a divide by zero which could result in DoS + LibVNCServer-CVE-2020-25708.patch
* Thu Jul 09 2020 pgajdosAATTsuse.com- security update- added patches fix CVE-2018-21247 [bsc#1173874], uninitialized memory contents are vulnerable to Information leak + LibVNCServer-CVE-2018-21247.patch fix CVE-2019-20839 [bsc#1173875], buffer overflow in ConnectClientToUnixSock() + LibVNCServer-CVE-2019-20839.patch fix CVE-2019-20840 [bsc#1173876], unaligned accesses in hybiReadAndDecode can lead to denial of service + LibVNCServer-CVE-2019-20840.patch fix CVE-2020-14398 [bsc#1173880], improperly closed TCP connection causes an infinite loop in libvncclient/sockets.c + LibVNCServer-CVE-2020-14398.patch
* Wed Jul 08 2020 pgajdosAATTsuse.com- security update- added patches fix CVE-2020-14397 [bsc#1173700], NULL pointer dereference in libvncserver/rfbregion.c + LibVNCServer-CVE-2020-14397.patch fix CVE-2020-14399 [bsc#1173743], Byte-aligned data is accessed through uint32_t pointers in libvncclient/rfbproto.c. + LibVNCServer-CVE-2020-14399.patch fix CVE-2020-14400 [bsc#1173691], Byte-aligned data is accessed through uint16_t pointers in libvncserver/translate.c. + LibVNCServer-CVE-2020-14400.patch fix CVE-2020-14401 [bsc#1173694], potential integer overflows in libvncserver/scale.c + LibVNCServer-CVE-2020-14401.patch fix CVE-2020-14402 [bsc#1173701], out-of-bounds access via encodings. + LibVNCServer-CVE-2020-14402,14403,14404.patch
* Tue Jun 30 2020 pgajdosAATTsuse.com- security update- added patches fix CVE-2017-18922 [bsc#1173477], preauth buffer overwrite + LibVNCServer-CVE-2017-18922.patch
* Mon Apr 27 2020 pgajdosAATTsuse.com- security update- added patches fix CVE-2019-15690 [bsc#1160471], heap buffer overflow + LibVNCServer-CVE-2019-15690.patch fix CVE-2019-20788 [bsc#1170441], integer overflow and heap-based buffer overflow via a large height or width value + LibVNCServer-CVE-2019-20788.patch
* Mon Nov 04 2019 pgajdosAATTsuse.com- security update- added patches CVE-2019-15681 [bsc#1155419] + LibVNCServer-CVE-2019-15681.patch- note the correct way how to run the testsuite, it does not seem to be usable as it is, though (segfaults)
* Wed Feb 20 2019 fezhangAATTsuse.com- Add BuildRequire libgnutls-devel: Remmina needs it for VNC connections (boo#1123805)
* Tue Feb 05 2019 pgajdosAATTsuse.com- security update
* CVE-2018-20749 [bsc#1123828] + LibVNCServer-CVE-2018-20749.patch
* CVE-2018-20750 [bsc#1123832] + LibVNCServer-CVE-2018-20750.patch
* CVE-2018-20748 [bsc#1123823] + LibVNCServer-CVE-2018-20748.patch
* Thu Jan 03 2019 pgajdosAATTsuse.com- security update
* CVE-2018-15126 [bsc#1120114] + LibVNCServer-CVE-2018-15126.patch
* CVE-2018-6307 [bsc#1120115] + LibVNCServer-CVE-2018-6307.patch
* CVE-2018-20020 [bsc#1120116] + LibVNCServer-CVE-2018-20020.patch
* CVE-2018-15127 [bsc#1120117] + LibVNCServer-CVE-2018-15127.patch
* CVE-2018-20019 [bsc#1120118] + LibVNCServer-CVE-2018-20019.patch
* CVE-2018-20023 [bsc#1120119] + LibVNCServer-CVE-2018-20023.patch
* CVE-2018-20022 [bsc#1120120] + LibVNCServer-CVE-2018-20022.patch
* CVE-2018-20024 [bsc#1120121] + LibVNCServer-CVE-2018-20024.patch
* CVE-2018-20021 [bsc#1120122] + LibVNCServer-CVE-2018-20021.patch
* Tue Mar 20 2018 pgajdosAATTsuse.com- security update
* CVE-2018-7225 [bsc#1081493] + LibVNCServer-CVE-2018-7225.patch
* Tue May 24 2016 antoine.belvireAATTlaposte.net- Fix build errors of applications using stl_algobase.h and libvncserver\'s rfbproto.h, e.g. krfb (issue #102)
* Add libvncserver-0.9.10-use-namespaced-rfbMax-macro.patch
* Sun Feb 08 2015 crrodriguezAATTopensuse.org- Remove xorg-x11-devel from buildRequires, X libraries are not directly used/linked
* Sun Feb 08 2015 crrodriguezAATTopensuse.org- libvncserver-0.9.10-ossl.patch: Update, do not RAND_load_file(\"/dev/urandom\", 1024) if the the PRNG is already seeded. (It always is on linux)
* Sat Dec 13 2014 p.drouandAATTgmail.com- Update to version 0.9.10 + Moved the whole project from sourceforge to https://libvnc.github.io/. + Cleaned out the autotools build system which now uses autoreconf. + Updated noVNC HTML5 client to latest version. + Split out x11vnc sources into separate repository at https://github.com/LibVNC/x11vnc + Split out vncterm sources into separate repository at https://github.com/LibVNC/vncterm + Split out VisualNaCro sources into separate repository at https://github.com/LibVNC/VisualNaCro + Merged Debian patches. + Fixed some security-related buffer overflow cases. + Added compatibility headers to make LibVNCServer/LibVNCClient build on native Windows 8. + Update LZO to version 2.07, fixing CVE-2014-4607. + Merged patches from KDE/krfb. + Can now do IPv6 without IPv4. + Fixed a use-after-free issue in scale.c.- Update Url and download source to new project home- Remove LibVNCServer-0.9.9-no_x11vnc.patch; upstream splited it out of main tarball- Rebase libvncserver-ossl.patch to upstream changes > libvncserver-0.9.10-ossl.patch- Remove linuxvnc subpackage; like x11vnc, it has been splited out but is depreciated and unmaintained.
 
ICM