Overview
Request 728029 accepted
- update changes file
* add missing info about bugzilla 1121448
- Added rdesktop-Fix-decryption.patch
Patch from https://github.com/rdesktop/rdesktop/pull/334 to fix
connections to VirtualBox.
- update to 1.8.6
* Fix protocol code handling new licenses
- update to 1.8.5
* Add bounds checking to protocol handling in order to fix many
security problems when communicating with a malicious server.
- Trim redundant wording from description.
- Use %make_install.
- update to 1.8.4 (fix for boo#1121448)
* Add rdp_protocol_error function that is used in several fixes
* Refactor of process_bitmap_updates
* Fix possible integer overflow in s_check_rem() on 32bit arch
* Fix memory corruption in process_bitmap_data - CVE-2018-8794
* Fix remote code execution in process_bitmap_data - CVE-2018-8795
* Fix remote code execution in process_plane - CVE-2018-8797
* Fix Denial of Service in mcs_recv_connect_response - CVE-2018-20175
* Fix Denial of Service in mcs_parse_domain_params - CVE-2018-20175
* Fix Denial of Service in sec_parse_crypt_info - CVE-2018-20176
* Fix Denial of Service in sec_recv - CVE-2018-20176
* Fix minor information leak in rdpdr_process - CVE-2018-8791
* Fix Denial of Service in cssp_read_tsrequest - CVE-2018-8792
- Created by computersalat
- In state accepted
Request History
computersalat created request
- update changes file
* add missing info about bugzilla 1121448
- Added rdesktop-Fix-decryption.patch
Patch from https://github.com/rdesktop/rdesktop/pull/334 to fix
connections to VirtualBox.
- update to 1.8.6
* Fix protocol code handling new licenses
- update to 1.8.5
* Add bounds checking to protocol handling in order to fix many
security problems when communicating with a malicious server.
- Trim redundant wording from description.
- Use %make_install.
- update to 1.8.4 (fix for boo#1121448)
* Add rdp_protocol_error function that is used in several fixes
* Refactor of process_bitmap_updates
* Fix possible integer overflow in s_check_rem() on 32bit arch
* Fix memory corruption in process_bitmap_data - CVE-2018-8794
* Fix remote code execution in process_bitmap_data - CVE-2018-8795
* Fix remote code execution in process_plane - CVE-2018-8797
* Fix Denial of Service in mcs_recv_connect_response - CVE-2018-20175
* Fix Denial of Service in mcs_parse_domain_params - CVE-2018-20175
* Fix Denial of Service in sec_parse_crypt_info - CVE-2018-20176
* Fix Denial of Service in sec_recv - CVE-2018-20176
* Fix minor information leak in rdpdr_process - CVE-2018-8791
* Fix Denial of Service in cssp_read_tsrequest - CVE-2018-8792
licensedigger accepted review
ok
origin-manager added origin-reviewers as a reviewer
Changing to a lower priority origin.
origin: openSUSE:Factory
origin_old: openSUSE:Leap:15.1:Update
origin-manager accepted review
origin: openSUSE:Factory
origin_old: openSUSE:Leap:15.1:Update
factory-auto accepted review
Check script succeeded
Output of check script (non-fatal):
rdesktop-1.8.6.tar.gz /home/go/co/728029/rdesktop/rdesktop-1.8.6.tar.gz differ: char 5, line 1
ERROR: download_files is configured to fail when the upstream file is different than the committed file... this is the case!
Source URLs are not valid. Try "osc service localrun download_files".
staging-bot added as a reviewer
Being evaluated by staging project "openSUSE:Leap:15.2:Staging:adi:8"
staging-bot accepted review
Picked openSUSE:Leap:15.2:Staging:adi:8
lnussel accepted review
staging-bot accepted review
ready to accept
staging-bot approved review
ready to accept
lnussel_factory accepted request
Accept to openSUSE:Leap:15.2