[ubuntu/bionic-updates] zeromq3 4.2.5-1ubuntu0.1 (Accepted)

Ubuntu Archive Robot cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk
Thu Jan 17 14:28:48 UTC 2019


zeromq3 (4.2.5-1ubuntu0.1) bionic-security; urgency=medium

  * SECURITY UPDATE: Integer overflow allows an authenticated attacker to
    overwrite an arbitrary amount of bytes beyond the bounds of a buffer,
    which can be leveraged to run arbitrary code on the target system.
    - debian/patches/CVE-2019-6250.patch: Refactor bounds check arithmetic
      such that no overflow shall occur.
    - CVE-2019-6250

Date: 2019-01-16 16:49:07.952734+00:00
Changed-By: Eduardo dos Santos Barretto <eduardo.barretto at canonical.com>
Signed-By: Ubuntu Archive Robot <cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk>
https://launchpad.net/ubuntu/+source/zeromq3/4.2.5-1ubuntu0.1
-------------- next part --------------
Sorry, changesfile not available.


More information about the Bionic-changes mailing list