Overview

File LibVNCServer-CVE-2018-21247.patch of Package LibVNCServer.17330

Index: libvncserver-LibVNCServer-0.9.10/libvncclient/rfbproto.c
===================================================================
--- libvncserver-LibVNCServer-0.9.10.orig/libvncclient/rfbproto.c	2020-07-09 10:47:17.217107752 +0200
+++ libvncserver-LibVNCServer-0.9.10/libvncclient/rfbproto.c	2020-07-09 10:47:27.233166955 +0200
@@ -495,6 +495,7 @@ rfbBool ConnectToRFBRepeater(rfbClient*
 
   rfbClientLog("Connected to VNC repeater, using protocol version %d.%d\n", major, minor);
 
+  memset(tmphost, 0, sizeof(tmphost));
   tmphostlen = snprintf(tmphost, sizeof(tmphost), "%s:%d", destHost, destPort);
   if(tmphostlen < 0 || tmphostlen >= (int)sizeof(tmphost))
     return FALSE; /* snprintf error or output truncated */
openSUSE Build Service is sponsored by
Places