Debian Bug report logs -
#852213
tigervnc: CVE-2017-5581: Buffer overflow in ModifiablePixelBuffer::fillRect
Toggle useless messages
Report forwarded
to debian-bugs-dist@lists.debian.org, carnil@debian.org, team@security.debian.org, secure-testing-team@lists.alioth.debian.org, TigerVNC Packaging Team <pkg-tigervnc-devel@lists.alioth.debian.org>:
Bug#852213; Package src:tigervnc.
(Sun, 22 Jan 2017 15:27:04 GMT) (full text, mbox, link).
Acknowledgement sent
to Salvatore Bonaccorso <carnil@debian.org>:
New Bug report received and forwarded. Copy sent to carnil@debian.org, team@security.debian.org, secure-testing-team@lists.alioth.debian.org, TigerVNC Packaging Team <pkg-tigervnc-devel@lists.alioth.debian.org>.
(Sun, 22 Jan 2017 15:27:04 GMT) (full text, mbox, link).
Message #5 received at submit@bugs.debian.org (full text, mbox, reply):
Source: tigervnc
Version: 1.7.0+dfsg-2
Severity: grave
Tags: patch security upstream
Justification: user security hole
Forwarded: https://github.com/TigerVNC/tigervnc/pull/399
Hi
Cf. http://www.openwall.com/lists/oss-security/2017/01/22/1 where as
well a CVE was requested for this issue.
Upstream bug: https://github.com/TigerVNC/tigervnc/pull/399
Commit: https://github.com/TigerVNC/tigervnc/commit/18c020124ff1b2441f714da2017f63dba50720ba
Regards,
Salvatore
Information forwarded
to debian-bugs-dist@lists.debian.org, TigerVNC Packaging Team <pkg-tigervnc-devel@lists.alioth.debian.org>:
Bug#852213; Package src:tigervnc.
(Wed, 25 Jan 2017 09:57:03 GMT) (full text, mbox, link).
Acknowledgement sent
to Salvatore Bonaccorso <carnil@debian.org>:
Extra info received and forwarded to list. Copy sent to TigerVNC Packaging Team <pkg-tigervnc-devel@lists.alioth.debian.org>.
(Wed, 25 Jan 2017 09:57:03 GMT) (full text, mbox, link).
Message #10 received at 852213@bugs.debian.org (full text, mbox, reply):
Control: retitle -1 tigervnc: CVE-2017-5581: Buffer overflow in ModifiablePixelBuffer::fillRect
On Sun, Jan 22, 2017 at 04:25:22PM +0100, Salvatore Bonaccorso wrote:
> Source: tigervnc
> Version: 1.7.0+dfsg-2
> Severity: grave
> Tags: patch security upstream
> Justification: user security hole
> Forwarded: https://github.com/TigerVNC/tigervnc/pull/399
>
> Hi
>
> Cf. http://www.openwall.com/lists/oss-security/2017/01/22/1 where as
> well a CVE was requested for this issue.
>
> Upstream bug: https://github.com/TigerVNC/tigervnc/pull/399
> Commit: https://github.com/TigerVNC/tigervnc/commit/18c020124ff1b2441f714da2017f63dba50720ba
This has been assigned CVE-2017-5581.
Regards,
Salvatore
Changed Bug title to 'tigervnc: CVE-2017-5581: Buffer overflow in ModifiablePixelBuffer::fillRect' from 'tigervnc: Buffer overflow in ModifiablePixelBuffer::fillRect'.
Request was from Salvatore Bonaccorso <carnil@debian.org>
to 852213-submit@bugs.debian.org.
(Wed, 25 Jan 2017 09:57:03 GMT) (full text, mbox, link).
Added tag(s) fixed-upstream.
Request was from bts-link-upstream@lists.alioth.debian.org
to control@bugs.debian.org.
(Thu, 26 Jan 2017 17:39:09 GMT) (full text, mbox, link).
Information forwarded
to debian-bugs-dist@lists.debian.org, TigerVNC Packaging Team <pkg-tigervnc-devel@lists.alioth.debian.org>:
Bug#852213; Package src:tigervnc.
(Sat, 28 Jan 2017 10:51:04 GMT) (full text, mbox, link).
Acknowledgement sent
to Salvatore Bonaccorso <carnil@debian.org>:
Extra info received and forwarded to list. Copy sent to TigerVNC Packaging Team <pkg-tigervnc-devel@lists.alioth.debian.org>.
(Sat, 28 Jan 2017 10:51:04 GMT) (full text, mbox, link).
Message #19 received at 852213@bugs.debian.org (full text, mbox, reply):
[Message part 1 (text/plain, inline)]
Control: tags 852213 + pending
Dear maintainer,
I've prepared an NMU for tigervnc (versioned as 1.7.0+dfsg-2.1) and
uploaded it to DELAYED/2. Please feel free to tell me if I
should delay it longer.
Regards,
Salvatore
[tigervnc-1.7.0+dfsg-2.1-nmu.diff (text/x-diff, attachment)]
Added tag(s) pending.
Request was from Salvatore Bonaccorso <carnil@debian.org>
to 852213-submit@bugs.debian.org.
(Sat, 28 Jan 2017 10:51:04 GMT) (full text, mbox, link).
Information forwarded
to debian-bugs-dist@lists.debian.org, TigerVNC Packaging Team <pkg-tigervnc-devel@lists.alioth.debian.org>:
Bug#852213; Package src:tigervnc.
(Sat, 28 Jan 2017 20:15:03 GMT) (full text, mbox, link).
Acknowledgement sent
to Ola Lundqvist <opal@debian.org>:
Extra info received and forwarded to list. Copy sent to TigerVNC Packaging Team <pkg-tigervnc-devel@lists.alioth.debian.org>.
(Sat, 28 Jan 2017 20:15:03 GMT) (full text, mbox, link).
Message #26 received at 852213@bugs.debian.org (full text, mbox, reply):
Hi
Thank you. I'll make a "real" upload now instead. Thank you for the patch.
// Ola
On 28 January 2017 at 11:47, Salvatore Bonaccorso <carnil@debian.org> wrote:
> Control: tags 852213 + pending
>
> Dear maintainer,
>
> I've prepared an NMU for tigervnc (versioned as 1.7.0+dfsg-2.1) and
> uploaded it to DELAYED/2. Please feel free to tell me if I
> should delay it longer.
>
> Regards,
> Salvatore
>
> _______________________________________________
> Pkg-tigervnc-devel mailing list
> Pkg-tigervnc-devel@lists.alioth.debian.org
> http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-tigervnc-devel
--
--------------------- Ola Lundqvist ---------------------------
/ opal@debian.org Folkebogatan 26 \
| ola@inguza.com 654 68 KARLSTAD |
| http://inguza.com/ +46 (0)70-332 1551 |
\ gpg/f.p.: 7090 A92B 18FE 7994 0C36 4FE4 18A1 B1CF 0FE5 3DD9 /
---------------------------------------------------------------
Information forwarded
to debian-bugs-dist@lists.debian.org, TigerVNC Packaging Team <pkg-tigervnc-devel@lists.alioth.debian.org>:
Bug#852213; Package src:tigervnc.
(Sat, 28 Jan 2017 20:21:03 GMT) (full text, mbox, link).
Acknowledgement sent
to Salvatore Bonaccorso <carnil@debian.org>:
Extra info received and forwarded to list. Copy sent to TigerVNC Packaging Team <pkg-tigervnc-devel@lists.alioth.debian.org>.
(Sat, 28 Jan 2017 20:21:03 GMT) (full text, mbox, link).
Message #31 received at 852213@bugs.debian.org (full text, mbox, reply):
Hi Ola,
On Sat, Jan 28, 2017 at 09:10:43PM +0100, Ola Lundqvist wrote:
> Hi
>
> Thank you. I'll make a "real" upload now instead. Thank you for the patch.
Thank you that's fine! Can you then please make as well an unblock
request for the release team? The fix should go to stretch, but will
not automatically anymore due to the freeze approeaching in some days.
Regards,
Salvatore
Information forwarded
to debian-bugs-dist@lists.debian.org, TigerVNC Packaging Team <pkg-tigervnc-devel@lists.alioth.debian.org>:
Bug#852213; Package src:tigervnc.
(Sat, 28 Jan 2017 20:48:05 GMT) (full text, mbox, link).
Acknowledgement sent
to Ola Lundqvist <opal@debian.org>:
Extra info received and forwarded to list. Copy sent to TigerVNC Packaging Team <pkg-tigervnc-devel@lists.alioth.debian.org>.
(Sat, 28 Jan 2017 20:48:05 GMT) (full text, mbox, link).
Message #36 received at 852213@bugs.debian.org (full text, mbox, reply):
Sure will do that.
// Ola
On 28 January 2017 at 21:18, Salvatore Bonaccorso <carnil@debian.org> wrote:
> Hi Ola,
>
> On Sat, Jan 28, 2017 at 09:10:43PM +0100, Ola Lundqvist wrote:
>> Hi
>>
>> Thank you. I'll make a "real" upload now instead. Thank you for the patch.
>
> Thank you that's fine! Can you then please make as well an unblock
> request for the release team? The fix should go to stretch, but will
> not automatically anymore due to the freeze approeaching in some days.
>
> Regards,
> Salvatore
>
> _______________________________________________
> Pkg-tigervnc-devel mailing list
> Pkg-tigervnc-devel@lists.alioth.debian.org
> http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-tigervnc-devel
--
--------------------- Ola Lundqvist ---------------------------
/ opal@debian.org Folkebogatan 26 \
| ola@inguza.com 654 68 KARLSTAD |
| http://inguza.com/ +46 (0)70-332 1551 |
\ gpg/f.p.: 7090 A92B 18FE 7994 0C36 4FE4 18A1 B1CF 0FE5 3DD9 /
---------------------------------------------------------------
Reply sent
to Ola Lundqvist <opal@debian.org>:
You have taken responsibility.
(Sat, 28 Jan 2017 20:51:09 GMT) (full text, mbox, link).
Notification sent
to Salvatore Bonaccorso <carnil@debian.org>:
Bug acknowledged by developer.
(Sat, 28 Jan 2017 20:51:09 GMT) (full text, mbox, link).
Message #41 received at 852213-close@bugs.debian.org (full text, mbox, reply):
Source: tigervnc
Source-Version: 1.7.0+dfsg-3
We believe that the bug you reported is fixed in the latest version of
tigervnc, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 852213@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Ola Lundqvist <opal@debian.org> (supplier of updated tigervnc package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Sat, 28 Jan 2017 21:08:53 +0100
Source: tigervnc
Binary: tigervnc-common tigervnc-scraping-server tigervnc-standalone-server tigervnc-xorg-extension tigervnc-viewer
Architecture: source amd64
Version: 1.7.0+dfsg-3
Distribution: unstable
Urgency: high
Maintainer: TigerVNC Packaging Team <pkg-tigervnc-devel@lists.alioth.debian.org>
Changed-By: Ola Lundqvist <opal@debian.org>
Description:
tigervnc-common - Virtual network computing; Common software needed by servers
tigervnc-scraping-server - Virtual network computing server performing X screen scraping
tigervnc-standalone-server - Standalone virtual network computing server
tigervnc-viewer - Virtual network computing client for X
tigervnc-xorg-extension - Virtual network computing X server extension
Closes: 852213
Changes:
tigervnc (1.7.0+dfsg-3) unstable; urgency=high
.
[ Salvatore Bonaccorso ]
* Fix buffer overflow in ModifiablePixelBuffer::fillRect (CVE-2017-5581)
(Closes: #852213)
.
[ Joachim Falk ]
* Shut up lintian manpage-has-errors-from-man for vnc.conf.5x.gz
Basically the default value for $sslAutoGenCertCommand is too large
to fit into a 80 column manpage output. Broke that into multiple
lines.
Checksums-Sha1:
012d0b8ccf3ccc20820dc3d6f2a7091c7b92f5b6 4451 tigervnc_1.7.0+dfsg-3.dsc
6a336ce883bbec2eb5474600662c1407e428b1ae 53040 tigervnc_1.7.0+dfsg-3.debian.tar.xz
be6498f187f77a3ab8a4771da87c847674d22bc7 235770 tigervnc-common-dbgsym_1.7.0+dfsg-3_amd64.deb
14bf08d545c6bbd6ca598e0c83b7e62f23827f82 66216 tigervnc-common_1.7.0+dfsg-3_amd64.deb
8760753e575877573b31955df8cc8c7d35a772fb 1152538 tigervnc-scraping-server-dbgsym_1.7.0+dfsg-3_amd64.deb
176b1427558d35d32d4ca146cb5e3bd42ef5b6a1 187910 tigervnc-scraping-server_1.7.0+dfsg-3_amd64.deb
f7e1282363c90aa4abe7f3cdcc850471da3114c9 5834048 tigervnc-standalone-server-dbgsym_1.7.0+dfsg-3_amd64.deb
0aa6205c1d54b2e03a18af08c0c8a8552d067a80 994916 tigervnc-standalone-server_1.7.0+dfsg-3_amd64.deb
1e15547311ba92e1494344ad84efadf2e6f9217d 1008636 tigervnc-viewer-dbgsym_1.7.0+dfsg-3_amd64.deb
e3e5a78dbc0081db3e97fc5afd2d2d1d3e062e47 166962 tigervnc-viewer_1.7.0+dfsg-3_amd64.deb
5ab1f27a3ab66b8171711cb6862db4db298d09de 1309476 tigervnc-xorg-extension-dbgsym_1.7.0+dfsg-3_amd64.deb
47a8328312037c32a4d033b4f6d83b6f03b9dd81 196994 tigervnc-xorg-extension_1.7.0+dfsg-3_amd64.deb
2c5d00f55078647a0e020529bcc1042c086f869f 14158 tigervnc_1.7.0+dfsg-3_amd64.buildinfo
Checksums-Sha256:
9a9628412d2ff846422f247c4e82884e0531917abf0a4cccc8aed5967e5ba8e1 4451 tigervnc_1.7.0+dfsg-3.dsc
476052ba1080134d5aef82b1c0d0a4a06ecc1ae723ea567ab20b4a53027bc302 53040 tigervnc_1.7.0+dfsg-3.debian.tar.xz
3da39625f0bb0a9a635d65340e9dbdcdb5c126e4f9b9d15809faf30a56e1df2f 235770 tigervnc-common-dbgsym_1.7.0+dfsg-3_amd64.deb
70b53c38790e12332fcb36a9f6381173c8d8e6ebcabf9bf2a766a3f0219ffdc2 66216 tigervnc-common_1.7.0+dfsg-3_amd64.deb
68bba32b6b203d645b61892f4225f4c70aa0fb9c42fbdb884a51c5681cd944e0 1152538 tigervnc-scraping-server-dbgsym_1.7.0+dfsg-3_amd64.deb
01eb0f4a13e3bce07c6395a01d323f6c48795f2880b6793ff4e75d597097e290 187910 tigervnc-scraping-server_1.7.0+dfsg-3_amd64.deb
3b55a3f976f12ad42cbb6adc376b3cbc00bf9157201da8d532e1cc241f601d89 5834048 tigervnc-standalone-server-dbgsym_1.7.0+dfsg-3_amd64.deb
6a7e81c13bb751592fceee294b2cfb069130eb43d8ba634f1d0b5beedc9f3b39 994916 tigervnc-standalone-server_1.7.0+dfsg-3_amd64.deb
58828795090df91a61829572e2e9d28ec7c38e368a5b927ea69f22a6090ffd7f 1008636 tigervnc-viewer-dbgsym_1.7.0+dfsg-3_amd64.deb
566f0b32ae4c83791b466e9ab96e0944964272b14ce2756c1549a4807ce4da1a 166962 tigervnc-viewer_1.7.0+dfsg-3_amd64.deb
d4af91f5135d4f5dde882550aa1cbfb5b2502d8e2ab0c242d22154b6c58123c5 1309476 tigervnc-xorg-extension-dbgsym_1.7.0+dfsg-3_amd64.deb
2e2db688efe9d999004fe26594b45750ce6e39ce31f6c0ee9e6db5a15531a492 196994 tigervnc-xorg-extension_1.7.0+dfsg-3_amd64.deb
a595f0d0259b79f98480e5e52e9722aaadd34652a0e3a28dfb24f30f33de5fed 14158 tigervnc_1.7.0+dfsg-3_amd64.buildinfo
Files:
9e460aca640abc58ed5be83499d39421 4451 x11 optional tigervnc_1.7.0+dfsg-3.dsc
1e3408850f1da3a6854ceef4437ba0c8 53040 x11 optional tigervnc_1.7.0+dfsg-3.debian.tar.xz
dde8c51a508700e2f0709c53ea71e99b 235770 debug extra tigervnc-common-dbgsym_1.7.0+dfsg-3_amd64.deb
12ad3006a67fbead250b329ece091105 66216 x11 optional tigervnc-common_1.7.0+dfsg-3_amd64.deb
5e2b784f14941b1c7dbece138d38fcb1 1152538 debug extra tigervnc-scraping-server-dbgsym_1.7.0+dfsg-3_amd64.deb
ad020622f2d1d7a9ec72cecfd57987a6 187910 x11 optional tigervnc-scraping-server_1.7.0+dfsg-3_amd64.deb
b0524a124a9200a44b0e3c9fbf183923 5834048 debug extra tigervnc-standalone-server-dbgsym_1.7.0+dfsg-3_amd64.deb
d5e22e4793bfbb98b29aede59364b975 994916 x11 optional tigervnc-standalone-server_1.7.0+dfsg-3_amd64.deb
760462fc2f0e2a05723cb6bb98f43c80 1008636 debug extra tigervnc-viewer-dbgsym_1.7.0+dfsg-3_amd64.deb
d975b2fa90fe3440d2b63dfedfbfc4c1 166962 x11 optional tigervnc-viewer_1.7.0+dfsg-3_amd64.deb
fedbff602894163e11d5532dda321b48 1309476 debug extra tigervnc-xorg-extension-dbgsym_1.7.0+dfsg-3_amd64.deb
18de069534bc3e34bf31f0ff71faa7a1 196994 x11 optional tigervnc-xorg-extension_1.7.0+dfsg-3_amd64.deb
e6756386e0deab454fae002b277661ee 14158 x11 optional tigervnc_1.7.0+dfsg-3_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----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=Wsc0
-----END PGP SIGNATURE-----
Bug archived.
Request was from Debbugs Internal Request <owner@bugs.debian.org>
to internal_control@bugs.debian.org.
(Wed, 15 Mar 2017 07:26:28 GMT) (full text, mbox, link).
Send a report that this bug log contains spam.
Debian bug tracking system administrator <owner@bugs.debian.org>.
Last modified:
Wed Jun 19 19:21:51 2019;
Machine Name:
buxtehude
Debian Bug tracking system
Debbugs is free software and licensed under the terms of the GNU
Public License version 2. The current version can be obtained
from https://bugs.debian.org/debbugs-source/.
Copyright © 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson,
2005-2017 Don Armstrong, and many other contributors.
Vulmon