Debian Patches
Status for libvncserver/0.9.15+dfsg-6
| Patch | Description | Author | Forwarded | Bugs | Origin | Last update |
|---|---|---|---|---|---|---|
| 0002_CVE-2026-32854.patch | Fix CVE-2026-32854, NULL pointer derefs in httpd proxy handlers For details see https://github.com/LibVNC/libvncserver/security/advisories/GHSA-xjp8-4qqv-5x4x |
not-needed | debian | upstream, https://github.com/LibVNC/libvncserver/commit/dc78dee | 2026-04-03 | |
| 0003_CVE-2026-44988.patch | Fix CVE-2026-44988, fix Tight gradient decoding overflow for details see https://github.com/LibVNC/libvncserver/security/advisories/GHSA-jcc5-8wj4-7c58 |
not-needed | debian | upstream, https://github.com/LibVNC/libvncserver/commit/5b27054 | 2026-05-29 | |
| 0004_CVE-2026-50538.patch | Fix CVE-2026-50538, attacker-controlled heap out-of-bounds write for details see https://github.com/LibVNC/libvncserver/security/advisories/GHSA-v9pm-47h4-jcq8 |
not-needed | debian | upstream, https://github.com/LibVNC/libvncserver/commit/540332b | 2026-06-10 | |
| 1001_CMake-4.patch | Support building with CMake 4. | Mike Gabriel <sunweaver@debian.org> | yes | |||
| 1002_co-installable-header-files.patch | Install header files in architecture-dependent directory File rbfconfig.h differs between little- and big-endian architectures. Thus, to support multiarch setups, header files must be installed in separate directories per architecture. |
Sven Geuer <sge@debian.org> | no | debian | 2026-04-19 | |
| 0001_CVE-2026-32853.patch | Fix CVE-2026-32853, Heap Out-of-Bounds Read in HandleUltraZipBPP For details see https://github.com/LibVNC/libvncserver/security/advisories/GHSA-87q7-v983-qwcj |
not-needed | debian | upstream, https://github.com/LibVNC/libvncserver/commit/009008e | 2026-04-03 |
All known versions for source package 'libvncserver'
- 0.9.15+dfsg-6 (sid, forky)
- 0.9.15+dfsg-1+deb13u1 (trixie)
- 0.9.14+dfsg-1+deb12u1 (bookworm)