[ubuntu/bionic-security] mercurial 4.5.3-1ubuntu2.1 (Accepted)

Eduardo dos Santos Barretto eduardo.barretto at canonical.com
Tue Nov 27 16:40:09 UTC 2018

Previous message (by thread): [ubuntu/bionic-proposed] livecd-rootfs 2.525.10 (Accepted)
Next message (by thread): [ubuntu/bionic-proposed] python-wsme 0.9.2-0ubuntu2.18.04.1 (Accepted)
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

mercurial (4.5.3-1ubuntu2.1) bionic-security; urgency=medium

  * SECURITY UPDATE: Integer underflow and overflow.
    - debian/patches/CVE-2018-13347.patch: Protect against underflow.
    - debian/patches/CVE-2018-13347-extras.patch: Protect against overflow.
    - CVE-2018-13347
  * SECURITY UPDATE: Able to start fragment past of the end of original data.
    - debian/patches/CVE-2018-13346.patch: Ensure fragment start is not past
      then end of orig.
    - CVE-2018-13346
  * SECURITY UPDATE: Data mishandling in certain situations.
    - debian/patches/CVE-2018-13348.patch: Be more careful about parsing
      binary patch data.
    - CVE-2018-13348

Date: 2018-11-27 15:35:13.270357+00:00
Changed-By: Eduardo dos Santos Barretto <eduardo.barretto at canonical.com>
https://launchpad.net/ubuntu/+source/mercurial/4.5.3-1ubuntu2.1
-------------- next part --------------
Sorry, changesfile not available.

Previous message (by thread): [ubuntu/bionic-proposed] livecd-rootfs 2.525.10 (Accepted)
Next message (by thread): [ubuntu/bionic-proposed] python-wsme 0.9.2-0ubuntu2.18.04.1 (Accepted)
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Bionic-changes mailing list