[Buildroot] [PATCH 1/2] package/libvncserver: fix CVE-2018-20750

Thomas Petazzoni thomas.petazzoni at bootlin.com
Tue Mar 3 21:42:21 UTC 2020


On Tue,  3 Mar 2020 20:02:31 +0100
Fabrice Fontaine <fontaine.fabrice at gmail.com> wrote:

> LibVNC through 0.9.12 contains a heap out-of-bounds write vulnerability
> in libvncserver/rfbserver.c. The fix for CVE-2018-15127 was incomplete.
> 
> Signed-off-by: Fabrice Fontaine <fontaine.fabrice at gmail.com>
> ---
>  ...-in-rfbProcessFileTransferReadBuffer.patch | 47 +++++++++++++++++++
>  package/libvncserver/libvncserver.mk          |  3 ++
>  2 files changed, 50 insertions(+)
>  create mode 100644 package/libvncserver/0003-Limit-lenght-to-INT_MAX-bytes-in-rfbProcessFileTransferReadBuffer.patch

Both applied to master. Thanks!

Thomas
-- 
Thomas Petazzoni, CTO, Bootlin
Embedded Linux and Kernel engineering
https://bootlin.com


More information about the buildroot mailing list