ANNOUNCE: gtk-vnc 1.0.0 release

Posted: August 7th, 2019 | Author: | Filed under: Fedora, Gtk-Vnc, Virt Tools | No Comments »

I’m pleased to announce a new release of GTK-VNC, version 1.0.0.

https://download.gnome.org/sources/gtk-vnc/1.0/gtk-vnc-1.0.0.tar.xz (211K)
sha256sum: a81a1f1a79ad4618027628ffac27d3391524c063d9411c7a36a5ec3380e6c080

Pay particular attention to the first two major changes in
this release:

  • Autotools build system replaced with meson
  • Support for GTK-2 is dropped. GTK-3 is mandatory
  • Support for libview is dropped in example program
  • Improvements to example demos
  • Use MAP_ANON if MAP_ANONYMOUS doesn’t exist to help certain macOS versions
  • Fix crash when connection attempt fails early
  • Initialize gcrypt early in auth process
  • Emit vnc-auth-failure signal when SASL auth fals
  • Emit vnc-error signal when authentication fails
  • Fix double free when failing to read certificates
  • Run unit tests in RPM build
  • Modernize RPM spec
  • Fix race condition in unit tests
  • Fix install of missing header for cairo framebuffer
  • Fix typo in gir package name
  • Add missing VncPixelFormat file to gir data

Thanks to all those who reported bugs and provides patches that went into this new release.

ANNOUNCE: gtk-vnc 0.9.0 release

Posted: August 17th, 2018 | Author: | Filed under: Fedora, Gtk-Vnc, libvirt, Virt Tools | No Comments »

I’m pleased to announce a new release of GTK-VNC, version 0.9.0. This is a cleanup/modernization release. Note that the next release (1.0.0) will drop support for GTK-2

  • Requires gnutls >= 3.1.18
  • Requires libgcrypt >= 1.5.0
  • Requires glib2 >= 2.42.0
  • Use libgcrypt for DES routines
  • Add missing cipher close calls in ARD auth
  • Check for errors after reading mslogon params
  • Support newer UltraVNC mslogon auth type code
  • Avoid divide by zero in mslogin auth from bogus params
  • Re-allow python2 accidentally blocked when removing python binding

Thanks to all those who reported bugs and provides patches that went into this new release.

ANNOUNCE: gtk-vnc 0.8.0 release

Posted: August 1st, 2018 | Author: | Filed under: Fedora, Gtk-Vnc, libvirt, Virt Tools | No Comments »

I’m pleased to announce a new release of GTK-VNC, version 0.8.0. This is a small maintenance release tidying up some loose ends

  • Deleted the python2 binding in favour of GObject introspection
  • Pull in latest keycodemapdb content
  • Disable/fix -Wcast-function-type warnings

Thanks to all those who reported bugs and provides patches that went into this new release.

ANNOUNCE: gtk-vnc 0.7.2 release

Posted: March 23rd, 2018 | Author: | Filed under: Fedora, Gtk-Vnc, libvirt, Virt Tools | No Comments »

I’m pleased to announce a new release of GTK-VNC, version 0.7.2. The release focus is on bug fixing, and addresses an important regression in TLS handling from the previous release.

  • Deprecated the manual python2 binding in favour of GObject introspection. It will be deleted in the next release.
  • Emit led state notification on connect
  • Fix incorrect copyright notices
  • Simplify shifted-tab key handling
  • Don’t short circuit TLS credential request
  • Improve check for keymap under XWayland
  • Update doap description of project
  • Modernize RPM specfile

Thanks to all those who reported bugs and provides patches that went into this new release.

ANNOUNCE: gtk-vnc 0.7.0 release including 2 security fixes

Posted: February 10th, 2017 | Author: | Filed under: Fedora, Gtk-Vnc, libvirt, Security, Virt Tools | No Comments »

I’m pleased to announce a new release of GTK-VNC, vesion 0.7.0. The release focus is on bug fixing and includes fixes for two publically reported security bugs which allow a malicious server to exploit the client. Similar bugs were recently reported & fixed in other common VNC clients too.

  • CVE-2017-5884 – fix bounds checking for RRE, hextile and copyrect encodings
  • CVE-2017-5885 – fix color map index bounds checking
  • Add API to allow smooth scaling to be disabled
  • Workaround to help SPICE servers quickly drop VNC clients which mistakenly connect, by sending “RFB ” signature bytes early
  • Don’t accept color map entries for true-color pixel formats
  • Add missing vala .deps files for gvnc & gvncpulse
  • Avoid crash if host/port is NULL
  • Add precondition checks to some public APIs
  • Fix link to home page in README file
  • Fix misc memory leaks
  • Clamp cursor hot-pixel to within cursor region

Thanks to all those who reported bugs and provides patches that went into this new release.