25982 – Security issue: Buffer overflow + Sparc crashes in TightVNC 1.2.8

Bug 25982 - Security issue: Buffer overflow + Sparc crashes in TightVNC 1.2.8

Summary: Security issue: Buffer overflow + Sparc crashes in TightVNC 1.2.8

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	High critical (vote)
Assignee:	Gentoo Security

URL:	http://www.tightvnc.com
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2003-08-05 13:49 UTC by Matt Tesauro
Modified:	2017-12-04 22:30 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
digest file for emerge (digest-tightvnc-1.2.9,76 bytes, text/plain) 2003-08-05 14:22 UTC, Matt Tesauro	no flags	Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Matt Tesauro 2003-08-05 13:49:30 UTC

As posted here http://www.secunia.com/advisories/9441/ and here
http://www.tightvnc.com/whatsnew.html , for the Unix version of TightVNC "a
buffer overflow has been fixed in vncpasswd" and "A patch to fix input focus
problems in the X11 viewer has been applied".  Other minor patches also added to
version 1.2.9    For Sparc: "Xvnc crashes on Sparc".

Comment 1 Matt Tesauro 2003-08-05 14:21:30 UTC

Just created a TightVNC-1.2.9 ebuild.  Here's the steps I took:

cd /usr/portage/net-misc/tightvnc
cp tightvnc-1.2.8.ebuild tightvnc-1.2.9.ebuild
[manual step] made digest-tighvnc-1.2.9  [I'll upload this]
cp tightvnc-1.2.8-gentoo.diff tightvnc-1.2.9-gentoo.diff
cp tightvnc-1.2.8-gentoo.security.patch tightvnc-1.2.9-gentoo.security.patch

emerge /usr/portage/net-misc/tightvnc-1.2.9.ebuild
....
>>> Regenerating /etc/ld.so.cache...
>>> net-misc/tightvnc-1.2.9 merged.

 net-misc/tightvnc
    selected: none
   protected: 1.2.9
     omitted: none

>>> clean: No packages selected for removal.

>>> Regenerating /etc/ld.so.cache...
>>> Auto-cleaning packages ...

>>> No outdated packages were found on your system.

The build worked fine when I tested it against a NT box running TightVNC 1.2.9 server:

mtesauro files $ /usr/bin/vncviewer
VNC server supports protocol version 3.3 (viewer 3.3)
VNC authentication succeeded
Desktop name "business"
Connected to VNC server, using protocol version 3.3
VNC server default format:
  16 bits per pixel.
  Least significant byte first in each pixel.
  True colour: max red 31 green 63 blue 31, shift red 11 green 5 blue 0
Using default colormap which is TrueColor.  Pixel format:
  32 bits per pixel.
  Least significant byte first in each pixel.
  True colour: max red 255 green 255 blue 255, shift red 16 green 8 blue 0
Using shared memory PutImage
ShmCleanup called
mtesauro files $

Comment 2 Matt Tesauro 2003-08-05 14:22:55 UTC

Created attachment 15566 [details]
digest file for emerge

manually created digest file in same format as digest-tightvnc-1.2.8

Comment 3 Jason Wever (RETIRED) gentoo-dev

2003-11-24 17:27:33 UTC

Security Team;

I'm guessing since that we already have tightvnc-1.2.9 in portage, that this is fixed.  Any problems with closing it?

Comment 4 solar (RETIRED) gentoo-dev

2003-11-25 00:42:01 UTC

tightvnc is in portage already as weeve pointed out. 
changing resolution to FIXED. Skipping GLSA