Thanks Jonathan.
I slightly amended the changelog to reflect the different fixed CVEs and
use our consistent style for referencing launchpad bugs:
* SECURITY UPDATE: krfb: multiple security issues in libvncserver.
(LP: #1374043)
- Add upstream_libvncserver-vulnerabilities.diff
- http://www.kde.org/info/security/advisory-20140923-1.txt
- CVE-2014-6053
- CVE-2014-6054
- CVE-2014-6055
Please use something similar for your Utopic upload. (I built a
4:4.14.0-0ubuntu2.1 in our security ppa for Utopic, but I forgot you can
upload to Utopic directly without jumping through the security sponsor
process; I can't recall if launchpad will give you trouble if you try to
use the same version number I did, but if you get an error message that
doesn't make sense, this might be it.)
Thanks!
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1374043
Title:
vulnerabilities in libvncserver
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/krfb/+bug/1374043/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
