Ubuntu has issued an advisory on January 31: https://usn.ubuntu.com/3877-1/ The upstream fix is linked from: https://people.canonical.com/~ubuntu-security/cve/2018/CVE-2018-20750.html
Fixed both Cauldron and mga6!
Thanks! I don't see the affected code in x11vnc. Advisory: ======================== Updated libvncserver packages fix security vulnerability: LibVNC through 0.9.12 contains a heap out-of-bounds write vulnerability in libvncserver/rfbserver.c (CVE-2018-20750). References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20750 https://usn.ubuntu.com/usn/usn-3877-1 ======================== Updated packages in core/updates_testing: ======================== libvncserver1-0.9.12-1.1.mga6 libvncserver-devel-0.9.12-1.1.mga6 from libvncserver-0.9.12-1.1.mga6.src.rpm
Assignee: geiger.david68210 => qa-bugsSource RPM: libvncserver-0.9.12-1.mga6.src.rpm, x11vnc-0.9.16-1.mga6.src.rpm => libvncserver-0.9.12-1.mga6.src.rpmCC: (none) => geiger.david68210Summary: libvncserver, x11vnc new security issue CVE-2018-20750 => libvncserver new security issue CVE-2018-20750
Installed and tested without issues. Tested using x11vnc server and tigervnc and krdc clients. System: Mageia 6, x86_64, Plasma DE, LXQt DE, Intel CPU, nVidia GPU using nvidia340 proprietary driver. $ uname -a Linux marte 4.14.89-desktop-1.mga6 #1 SMP Mon Dec 17 13:14:48 UTC 2018 x86_64 x86_64 x86_64 GNU/Linux $ rpm -q lib64vncserver1 krdc tigervnc lib64vncserver1-0.9.12-1.1.mga6 krdc-17.12.2-1.mga6 tigervnc-1.8.0-1.mga6 $ strace -o x11vnc.log x11vnc -quiet <SNIP> The VNC desktop is: marte:0 PORT=5900 $ grep libvncserver x11vnc.log open("/lib64/libvncserver.so.1", O_RDONLY|O_CLOEXEC) = 3
Whiteboard: (none) => MGA6-64-OKCC: (none) => mageia
Validating. Advisory in Comment 2.
Keywords: (none) => validated_updateCC: (none) => andrewsfarm, sysadmin-bugs
Keywords: (none) => advisoryCC: (none) => davidwhodgins
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2019-0070.html
Resolution: (none) => FIXEDStatus: NEW => RESOLVED