[ubuntu/artful-security] zsh 5.2-5ubuntu1.1 (Accepted)
Leonidas S. Barbosa
leo.barbosa at canonical.com
Thu Mar 8 14:35:15 UTC 2018
zsh (5.2-5ubuntu1.1) artful-security; urgency=medium
* SECURITY UPDATE: undersized buffer
- debian/patches/CVE-2016-10714.patch: Add extra byte to PATH_MAX
in Src/Zle/compctl.c, Src/builtin.c, Src/compat.c, Src/exec.c,
Src/glob.c, Src/hist.c, Src/utils.c.
- CVE-2016-10714
* SECURITY UPDATE: NULL dereference
- debian/patches/CVE-2017-18205.patch: fix in Src/builtin.c,
Test/B01cd.ztst.
- CVE-2017-18205
* SECURITY UPATE: buffer overflow
- debian/patches/CVE-2017-18206.patch: fix buffer overrun in xsymlinks
in Src/utils.c.
- CVE-2017-18206
* SECURITY UPDATE: NULL deference
- debian/patches/CVE-2018-7548.patch: avoid null-pointer
deref in Src/subst.c.
- CVE-2018-7548
* SECURITY UPDATE: Crash while copy an empty hash table
- debian/patches/CVE-2018-7549.patch: avoid crash empty
hash table in Src/params.c.
- CVE-2018-7549
* Fixing documentation build
- debian/patches/fix_doc_build.patch. Thanks Steve Beattie.
Date: 2018-03-08 10:21:33.170128+00:00
Changed-By: leo.barbosa at canonical.com (Leonidas S. Barbosa)
https://launchpad.net/ubuntu/+source/zsh/5.2-5ubuntu1.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Artful-changes
mailing list