Candidate: CVE-2017-3158
PublicDate: 2018-01-18 20:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3158
 https://lists.apache.org/thread.html/b218d36bfdaf655d27382daec4dcd02ec717631f4aee8b7e4300ad65@%3Cuser.guacamole.apache.org%3E
Description:
 A race condition in Guacamole's terminal emulator in versions 0.9.5 through
 0.9.10-incubating could allow writes of blocks of printed data to overlap.
 Such overlapping writes could cause packet data to be misread as the packet
 length, resulting in the remaining data being written beyond the end of a
 statically-allocated buffer.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H [8.1 HIGH]


Patches_guacamole:
upstream_guacamole: needs-triage
precise/esm_guacamole: DNE
trusty_guacamole: ignored (reached end-of-life)
trusty/esm_guacamole: DNE (trusty was needs-triage)
xenial_guacamole: DNE
artful_guacamole: DNE
bionic_guacamole: DNE
cosmic_guacamole: DNE
disco_guacamole: DNE
eoan_guacamole: DNE
focal_guacamole: DNE
groovy_guacamole: DNE
hirsute_guacamole: DNE
impish_guacamole: DNE
jammy_guacamole: DNE
devel_guacamole: DNE

Patches_guacamole-server:
upstream_guacamole-server: needs-triage
precise/esm_guacamole-server: DNE
trusty_guacamole-server: ignored (reached end-of-life)
trusty/esm_guacamole-server: DNE (trusty was needs-triage)
xenial_guacamole-server: ignored (end of standard support, was needs-triage)
artful_guacamole-server: ignored (reached end-of-life)
bionic_guacamole-server: needs-triage
cosmic_guacamole-server: ignored (reached end-of-life)
disco_guacamole-server: DNE
eoan_guacamole-server: DNE
focal_guacamole-server: DNE
groovy_guacamole-server: DNE
hirsute_guacamole-server: ignored (reached end-of-life)
impish_guacamole-server: needs-triage
jammy_guacamole-server: needs-triage
devel_guacamole-server: needs-triage

Patches_guacamole-client:
upstream_guacamole-client: needed
precise/esm_guacamole-client: DNE
trusty_guacamole-client: ignored (reached end-of-life)
trusty/esm_guacamole-client: DNE (trusty was needs-triage)
xenial_guacamole-client: ignored (end of standard support, was needed)
artful_guacamole-client: ignored (reached end-of-life)
bionic_guacamole-client: needed
cosmic_guacamole-client: ignored (reached end-of-life)
disco_guacamole-client: DNE
eoan_guacamole-client: DNE
focal_guacamole-client: DNE
groovy_guacamole-client: DNE
hirsute_guacamole-client: DNE
impish_guacamole-client: DNE
jammy_guacamole-client: DNE
devel_guacamole-client: DNE