Hosting Provided By

CVS: cvs.openbsd.org: ports

From: Brad Smith <brad(at)cvs.openbsd.org>
Date: Mon Feb 24 2003 - 22:32:18 EST

CVSROOT:	/cvs
Module name:	ports
Changes by:	brad@cvs.openbsd.org	2003/02/24 20:32:17

Modified files:
	net/tightvnc   : Tag: OPENBSD_3_2 Makefile distinfo 
	net/tightvnc/patches: Tag: OPENBSD_3_2 patch-Imakefile 
	                      patch-Xvnc_config_cf_vnclibs_def 
	                      patch-vncviewer_Imakefile 
	net/tightvnc/pkg: Tag: OPENBSD_3_2 PLIST PLIST-viewer

Log message:
SECURITY FIX: Update tightvnc to 1.2.7

The VNC server acts as an X server, but the script for starting it generates an MIT X cookie (which is used for X authentication) without using a strong enough random number generator. This could allow an attacker to be able to more easily guess the authentication cookie.

https://rhn.redhat.com/errata/RHSA-2003-041.html Received on Mon Feb 24 22:31:10 2003

This message: [ Message body ]
Next message: Marc Matteo: "CVS: cvs.openbsd.org: ports"
Previous message: Brad Smith: "CVS: cvs.openbsd.org: ports"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 13:45:58 EDT