Debian Bug report logs -
#891798
guacamole-client: CVE-2017-3158 race can cause buffer overflow
Reply or subscribe to this bug.
Toggle useless messages
Report forwarded
to debian-bugs-dist@lists.debian.org, team@security.debian.org, secure-testing-team@lists.alioth.debian.org, Debian Remote Maintainers <pkg-remote-team@lists.alioth.debian.org>
:
Bug#891798
; Package src:guacamole-client
.
(Wed, 28 Feb 2018 22:21:08 GMT) (full text, mbox, link).
Acknowledgement sent
to Moritz Muehlenhoff <jmm@debian.org>
:
New Bug report received and forwarded. Copy sent to team@security.debian.org, secure-testing-team@lists.alioth.debian.org, Debian Remote Maintainers <pkg-remote-team@lists.alioth.debian.org>
.
(Wed, 28 Feb 2018 22:21:08 GMT) (full text, mbox, link).
Message #5 received at submit@bugs.debian.org (full text, mbox, reply):
Source: guacamole-client
Severity: grave
Tags: security
Please see http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3158
Cheers,
Moritz
Information forwarded
to debian-bugs-dist@lists.debian.org, Debian Remote Maintainers <pkg-remote-team@lists.alioth.debian.org>
:
Bug#891798
; Package src:guacamole-client
.
(Thu, 29 Nov 2018 22:42:03 GMT) (full text, mbox, link).
Acknowledgement sent
to Petter Reinholdtsen <pere@hungry.com>
:
Extra info received and forwarded to list. Copy sent to Debian Remote Maintainers <pkg-remote-team@lists.alioth.debian.org>
.
(Thu, 29 Nov 2018 22:42:03 GMT) (full text, mbox, link).
Message #10 received at 891798@bugs.debian.org (full text, mbox, reply):
Control: retitle -1 guacamole-client: CVE-2017-3158 race can cause buffer overflow
<URL: https://security-tracker.debian.org/tracker/CVE-2017-3158 > provide
useful links.
Any hope to have a fixed version in Debian? According to the NIST link, the
problem existed in 0.9.10-incubating, and upstream is currently on 0.9.14.
Perhaps a new upstream version solve the problem?
--
Happy hacking
Petter Reinholdtsen
Changed Bug title to 'guacamole-client: CVE-2017-3158 race can cause buffer overflow' from 'CVE-2017-3158'.
Request was from Petter Reinholdtsen <pere@hungry.com>
to 891798-submit@bugs.debian.org
.
(Thu, 29 Nov 2018 22:42:03 GMT) (full text, mbox, link).
Send a report that this bug log contains spam.
Debian bug tracking system administrator <owner@bugs.debian.org>.
Last modified:
Wed Jun 19 13:55:25 2019;
Machine Name:
buxtehude
Debian Bug tracking system
Debbugs is free software and licensed under the terms of the GNU
Public License version 2. The current version can be obtained
from https://bugs.debian.org/debbugs-source/.
Copyright © 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson,
2005-2017 Don Armstrong, and many other contributors.