Document vulnerability CVE-2017-3158, fixed in 0.9.11-incubating.

commit: 172a5c32896f56dac0576983cc44046e220f2f7a [log] [tgz]
author: Michael Jumper <mjumper@apache.org> Sat Jan 06 16:12:48 2018 -0800
committer: Michael Jumper <mjumper@apache.org> Sun Jan 07 19:28:58 2018 -0800
tree: cef5408e87f9216de9ca16a00b461f4bea668de5
parent: bd823d25fb4e6d973f9d2a45e6379994d9e49938 [diff]
diff --git a/_security/CVE-2017-3158.md b/_security/CVE-2017-3158.md
new file mode 100644
index 0000000..5f28bdb
--- /dev/null
+++ b/_security/CVE-2017-3158.md

@@ -0,0 +1,13 @@
+---
+title: Buffer overflow in SSH/telnet terminal emulator
+cve:   CVE-2017-3158
+fixed: 0.9.11-incubating
+---
+
+A race condition in Guacamole's terminal emulator could allow writes of blocks
+of printed data to overlap. Such overlapping writes could cause packet data to
+be misread as the packet length, resulting in the remaining data being written
+beyond the end of a statically-allocated buffer.
+
+Acknowledgements: We would like to thank Hariprasad Ng for reporting this
+issue.
commit	172a5c32896f56dac0576983cc44046e220f2f7a	[log] [tgz]
author	Michael Jumper <mjumper@apache.org>	Sat Jan 06 16:12:48 2018 -0800
committer	Michael Jumper <mjumper@apache.org>	Sun Jan 07 19:28:58 2018 -0800
tree	cef5408e87f9216de9ca16a00b461f4bea668de5
parent	bd823d25fb4e6d973f9d2a45e6379994d9e49938 [diff]