Ubuntu
krfb package

  1. Bug #1374043
  2. Comment #3

Comment 3 for bug 1374043

Revision history for this message
Seth Arnold (seth-arnold) wrote :

Thanks Jonathan.

I slightly amended the changelog to reflect the different fixed CVEs and use our consistent style for referencing launchpad bugs:

  * SECURITY UPDATE: krfb: multiple security issues in libvncserver.
    (LP: #1374043)
    - Add upstream_libvncserver-vulnerabilities.diff
    - http://www.kde.org/info/security/advisory-20140923-1.txt
    - CVE-2014-6053
    - CVE-2014-6054
    - CVE-2014-6055

Please use something similar for your Utopic upload. (I built a 4:4.14.0-0ubuntu2.1 in our security ppa for Utopic, but I forgot you can upload to Utopic directly without jumping through the security sponsor process; I can't recall if launchpad will give you trouble if you try to use the same version number I did, but if you get an error message that doesn't make sense, this might be it.)

Thanks!