summaryrefslogtreecommitdiff
path: root/net-libs/libvncserver/files
diff options
context:
space:
mode:
authorV3n3RiX <venerix@koprulu.sector>2022-09-24 17:32:06 +0100
committerV3n3RiX <venerix@koprulu.sector>2022-09-24 17:32:06 +0100
commit7138219e3c9446bf981ff17f5609f42130bec414 (patch)
treeb898b17778ed104dd89b2980386bae53594b001d /net-libs/libvncserver/files
parent1afe1c223c048ca2c33fa230c83d620c04fecb8f (diff)
gentoo auto-resync : 24:09:2022 - 17:32:06
Diffstat (limited to 'net-libs/libvncserver/files')
-rw-r--r--net-libs/libvncserver/files/libvncserver-0.9.13-CVE-2020-29260.patch27
1 files changed, 27 insertions, 0 deletions
diff --git a/net-libs/libvncserver/files/libvncserver-0.9.13-CVE-2020-29260.patch b/net-libs/libvncserver/files/libvncserver-0.9.13-CVE-2020-29260.patch
new file mode 100644
index 000000000000..23ffed8c1774
--- /dev/null
+++ b/net-libs/libvncserver/files/libvncserver-0.9.13-CVE-2020-29260.patch
@@ -0,0 +1,27 @@
+From bef41f6ec4097a8ee094f90a1b34a708fbd757ec Mon Sep 17 00:00:00 2001
+From: Christian Beier <info@christianbeier.net>
+Date: Sat, 21 Nov 2020 12:52:31 +0100
+Subject: [PATCH] libvncclient: free vncRec memory in rfbClientCleanup()
+
+Otherwise we leak memory. Spotted by Ramin Farajpour Cami
+<ramin.blackhat@gmail.com>, thanks!
+---
+ libvncclient/vncviewer.c | 2 ++
+ 1 file changed, 2 insertions(+)
+
+diff --git a/libvncclient/vncviewer.c b/libvncclient/vncviewer.c
+index d6b91f02..0a1bdcf6 100644
+--- a/libvncclient/vncviewer.c
++++ b/libvncclient/vncviewer.c
+@@ -534,6 +534,8 @@ void rfbClientCleanup(rfbClient* client) {
+ client->clientData = next;
+ }
+
++ free(client->vncRec);
++
+ if (client->sock != RFB_INVALID_SOCKET)
+ rfbCloseSocket(client->sock);
+ if (client->listenSock != RFB_INVALID_SOCKET)
+--
+2.35.1
+
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-29 10:30:50 +0000