| Patch | Description | Author | Forwarded | Bugs | Origin | Last update |
|---|---|---|---|---|---|---|
| disable-failing-test-listen.patch | skip unreliable flaky test-listen This test is failing in automated build environment that strip user environments. After a few tries to export $HOME for the test and picking it up we now disable the test "test-listen". Note: in a local sbuild chroot (which passes a user) it runs just fine. Note: We still build the test to catch issues that would happen at that step. diff --git a/server/tests/Makefile.am b/server/tests/Makefile.am index d749f888..964c0f75 100644 |
Christian Ehrhardt <christian.ehrhardt@canonical.com> | no | debian | 2020-04-14 | |
| CVE-2020-14355/0001-quic-Check-we-have-some-data-to-start-decoding-quic-.patch | [1/4] quic: Check we have some data to start decoding quic imagehttps://gitlab.freedesktop.org/spice/spice-common/-/commit/762e0abae36033ccde658fd52d3235887b60862d All paths already pass some data to quic_decode_begin but for the test check it, it's not that expensive test. Checking for not 0 is enough, all other words will potentially be read calling more_io_words but we need one to avoid a potential initial buffer overflow or deferencing an invalid pointer. |
Frediano Ziglio <freddy77@gmail.com> | no | debian | 2020-04-29 | |
| CVE-2020-14355/0002-quic-Check-image-size-in-quic_decode_begin.patch | [2/4] quic: Check image size in quic_decode_beginhttps://gitlab.freedesktop.org/spice/spice-common/-/commit/404d74782c8b5e57d146c5bf3118bb41bf3378e4 Avoid some overflow in code due to images too big or negative numbers. |
Frediano Ziglio <freddy77@gmail.com> | no | debian | 2020-04-29 | |
| CVE-2020-14355/0003-quic-Check-RLE-lengths.patch | [3/4] quic: Check RLE lengthshttps://gitlab.freedesktop.org/spice/spice-common/-/commit/ef1b6ff7b82e15d759e5415b8e35b92bb1a4c206 Avoid buffer overflows decoding images. On compression we compute lengths till end of line so it won't cause regressions. Proved by fuzzing the code. |
Frediano Ziglio <freddy77@gmail.com> | no | debian | 2020-04-29 | |
| CVE-2020-14355/0004-quic-Avoid-possible-buffer-overflow-in-find_bucket.patch | [4/4] quic: Avoid possible buffer overflow in find_buckethttps://gitlab.freedesktop.org/spice/spice-common/-/commit/b24fe6b66b86e601c725d30f00c37e684b6395b6 Proved by fuzzing the code. |
Frediano Ziglio <freddy77@gmail.com> | no | debian | 2020-04-30 | |
| With-OpenSSL-1.1-Disable-client-initiated-renegotiat.patch | [1/2] With OpenSSL 1.1: Disable client-initiated renegotiation. Fixes issue #49 Fixes BZ#1904459 [Salvatore Bonaccorso: Backport to 0.14.3: Filename change] |
=?UTF-8?q?Julien=20Rop=C3=A9?= <jrope@redhat.com> | yes | debian upstream | https://gitlab.freedesktop.org/spice/spice/-/commit/ca5bbc5692e052159bce1a75f55dc60b36078749 | 2020-12-02 |
| With-OpenSSL-1.0.2-and-earlier-disable-client-side-r.patch | [2/2] With OpenSSL 1.0.2 and earlier: disable client-side renegotiation. Fixed issue #49 Fixes BZ#1904459 [Salvatore Bonaccorso: Backport to 0.14.3: Filename change] |
=?UTF-8?q?Julien=20Rop=C3=A9?= <jrope@redhat.com> | yes | debian upstream | https://gitlab.freedesktop.org/spice/spice/-/commit/95a0cfac8a1c8eff50f05e65df945da3bb501fc9 | 2020-12-03 |