Summary: | <x11-misc/x11vnc-0.9.16-r4: Insecure permissions on shm (CVE-2020-29074) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Sam James <sam> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | alexander, proxy-maint |
Priority: | Normal | Flags: | nattka:
sanity-check+
|
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://github.com/LibVNC/x11vnc/commit/69eeb9f7baa14ca03b16c9de821f9876def7a36a | ||
See Also: |
https://github.com/gentoo/gentoo/pull/18432 https://github.com/gentoo/gentoo/pull/18797 |
||
Whiteboard: | B3 [noglsa cve] | ||
Package list: |
x11-misc/x11vnc-0.9.16-r4
|
Runtime testing required: | --- |
Description
Sam James
![]() ![]() ![]() ![]() Please apply the linked patch. Thanks! The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=10d026e0af2445f2a4b6f922486795ede8ef4907 commit 10d026e0af2445f2a4b6f922486795ede8ef4907 Author: Alexander Tsoy <alexander@tsoy.me> AuthorDate: 2020-11-27 16:50:50 +0000 Commit: Joonas Niilola <juippis@gentoo.org> CommitDate: 2020-12-07 07:34:45 +0000 x11-misc/x11vnc: security bump for CVE-2020-29074 Bug: https://bugs.gentoo.org/756841 Signed-off-by: Alexander Tsoy <alexander@tsoy.me> Closes: https://github.com/gentoo/gentoo/pull/18432 Signed-off-by: Joonas Niilola <juippis@gentoo.org> .../files/x11vnc-0.9.16-CVE-2020-29074.patch | 25 +++++++ x11-misc/x11vnc/x11vnc-0.9.16-r4.ebuild | 81 ++++++++++++++++++++++ 2 files changed, 106 insertions(+) Please let us know when ready to stable. Please go ahead. sparc stable x86 stable arm done ppc/ppc64 stable amd64 done hppa stable Last arch. Closing. Please cleanup, thanks! The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=247076038706da75eea7ecc2ba423b87cd0eead0 commit 247076038706da75eea7ecc2ba423b87cd0eead0 Author: Alexander Tsoy <alexander@tsoy.me> AuthorDate: 2020-12-23 22:53:30 +0000 Commit: Andreas Sturmlechner <asturm@gentoo.org> CommitDate: 2020-12-26 20:54:19 +0000 x11-misc/x11vnc: security cleanup Bug: https://bugs.gentoo.org/756841 Signed-off-by: Alexander Tsoy <alexander@tsoy.me> Closes: https://github.com/gentoo/gentoo/pull/18797 Signed-off-by: Andreas Sturmlechner <asturm@gentoo.org> x11-misc/x11vnc/x11vnc-0.9.16-r2.ebuild | 75 ------------------------------- x11-misc/x11vnc/x11vnc-0.9.16-r3.ebuild | 80 --------------------------------- 2 files changed, 155 deletions(-) Thanks! GLSA Vote: No Repository is clean, all done! |