Overview

File _patchinfo of Package patchinfo.20718

<patchinfo incident="20718">
  <issue tracker="bnc" id="1024268">VUL-1: CVE-2017-5885: gtk-vnc,gtk-vnc2: Integer overflow when processing SetColorMapEntries</issue>
  <issue tracker="bnc" id="1024266">VUL-1: CVE-2017-5884: gtk-vnc,gtk-vnc2: Improper check of framebuffer boundaries when processing a tile</issue>
  <issue tracker="bnc" id="1188292">virt-manager crashes when opening a guest console</issue>
  <issue tracker="bnc" id="1046782">vinagre coredump when trying to connect xvnc server which didn't open the firewall port</issue>
  <issue tracker="cve" id="2017-5884"/>
  <issue tracker="cve" id="2017-5885"/>
  <packager>mgorse</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for gtk-vnc</summary>
  <description>This update for gtk-vnc fixes the following issues:

- CVE-2017-5885: Correctly validate color map range indexes (bsc#1024268).
- CVE-2017-5884: Fix bounds checking for RRE, hextile &amp; copyrect encodings (bsc#1024266).
- Fix crash when opening connection from a GSocketAddress (bsc#1046782).
- Fix possible crash on connection failure (bsc#1188292).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places