Fedora: 2009-1001 Critical: VNC Remote Display Risk Mitigated

Virtual Network Computing (VNC) is a remote display system which

allows you to view a computing 'desktop' environment not only on the

machine where it is running, but from anywhere on the Internet and

from a wide variety of machine architectures. This package contains a

client which will allow you to connect to other desktops running a VNC

server.

Update to 4.1.3 maintenance release which contains fix for CVE-2008-4770

* Mon Jan 26 2009 Adam Tkac 4.1.3-1

- updated to 4.1.3 (CVE-2008-4770)

* Wed Nov 12 2008 Adam Tkac 4.1.2-32

- minor correction in configure flags to make GLX working (#471166)

* Mon Jun 30 2008 Adam Tkac 4.1.2-31

- enabled XKEYBOARD extension (#450033)

- improved IPv6 support in viewer (#438422)

[ 1 ] Bug #480590 - CVE-2008-4770 vnc: vncviewer insufficient encoding value validation in CMsgReader::readRect

https://bugzilla.redhat.com/show_bug.cgi?id=480590

su -c 'yum update vnc' at the command line.

For more information, refer to "Managing Software with yum",

available at .

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

Fedora-package-announce mailing list

Fedora-package-announce@redhat.com

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/