Login
Newsletter
Werbung

Sicherheit: Zwei Probleme in Vino
Aktuelle Meldungen Distributionen
Name: Zwei Probleme in Vino
ID: USN-1128-1
Distribution: Ubuntu
Plattformen: Ubuntu 8.04 LTS, Ubuntu 10.04 LTS, Ubuntu 10.10, Ubuntu 11.04
Datum: Mo, 2. Mai 2011, 20:58
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0904
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0905
Applikationen: Vino

Originalnachricht


--===============0095274710916850317==
Content-Type: multipart/signed; micalg="pgp-sha512";
protocol="application/pgp-signature"; boundary="=-XfMWGFoUJJ0yBcg7fAec"


--=-XfMWGFoUJJ0yBcg7fAec
Content-Type: text/plain; charset="UTF-8
Content-Transfer-Encoding: quoted-printable

==========================================================================
Ubuntu Security Notice USN-1128-1
May 02, 2011

vino vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 11.04
- Ubuntu 10.10
- Ubuntu 10.04 LTS
- Ubuntu 8.04 LTS

Summary:

An attacker could send crafted input to Vino and cause it to crash.

Software Description:
- vino: VNC server for GNOME

Details:

Kevin Chen discovered that Vino incorrectly handled certain client
framebuffer requests. A remote attacker could use this flaw to cause Vino
to crash, leading to a denial of service.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 11.04:
vino 2.32.1-0ubuntu2.1

Ubuntu 10.10:
vino 2.32.0-0ubuntu1.2

Ubuntu 10.04 LTS:
vino 2.28.2-0ubuntu2.1

Ubuntu 8.04 LTS:
vino 2.22.2-0ubuntu1.1

After a standard system update you need to restart your session to make
all the necessary changes.

References:
CVE-2011-0904, CVE-2011-0905

Package Information:
https://launchpad.net/ubuntu/+source/vino/2.32.1-0ubuntu2.1
https://launchpad.net/ubuntu/+source/vino/2.32.0-0ubuntu1.2
https://launchpad.net/ubuntu/+source/vino/2.28.2-0ubuntu2.1
https://launchpad.net/ubuntu/+source/vino/2.22.2-0ubuntu1.1



--ÑfMWGFoUJJ0yBcg7fAec
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: This is a digitally signed message part

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)

iQIcBAABCgAGBQJNvu8iAAoJEGVp2FWnRL6TP+MP/i281mL+0NHd4sqaTBNpd0Z7
kMr+cmYv13gt7HNMKlh9ExwIvFLg5GVIzHaRszaZO3f3BWYZ/PMwxbRt/GNWt2th
YIAw0xlfgSUUKrrsZYo+dD8yQCUbJxNr/+jXoru0N9AJPBzj+iWqYYlNH4xZ81hb
zeg9N8hwjOSkrWDE/nW4RSK+0FMe6wCYrTjo0LFjbrOYzDn2Qj1ZqNL7LFKlFePk
ci/iJ9ABaJZBWoGQuXTqdKK0RVdbRBgZIaI0vOY5ColdT2Y82ZwkOgKNRVTvFVol
DyOEzK8c4WFYodgwhdXRRO9sUXPLwqa5cX8CfkqEQZ7QpZrtq3OqgckSzBmCD1gO
kWN5vG8HlhLRooagL9JaDYzvlr0LWa0VkeZS8Wqi0Y5V6sUGxXCKMoRTJtFsqzpw
eJ8IJ3JGNnK94IhV8iWDm1LYRubdQ8SFT7/RgR7x17YAQk+ubapXrkzvUEyTaESk
Mw3zMNXMA6h5AsxTDjVZxPM6whKD6a+5iJfocvZ2zPnQdjSQmCQAdzwTDdnbquyE
lzeI56nTyRJSD3sMCMnpP3tjL8NlAaVH8DDFq/vShHPJImVRz5SMjCRTBQNvcTH6
/lvPxdcuVQlToCxJn+OBh/NSNkz5RmVn5RdKghX4hhvt09lr8NA3Nx509wUnHuLv
9KeZD1dbnsw2/FXMoNN/
=Hid7
-----END PGP SIGNATURE-----

--=-XfMWGFoUJJ0yBcg7fAec--



--===============0095274710916850317==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

--
ubuntu-security-announce mailing list
ubuntu-security-announce@lists.ubuntu.com
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce

--===============0095274710916850317==--
Pro-Linux
Traut euch!
Neue Nachrichten
Werbung