[ubuntu/dapper-security] bzip2, bzip2 (delayed) 1.0.3-0ubuntu2.2 (Accepted)

Ubuntu Installer archive at ubuntu.com
Mon Sep 20 14:12:18 BST 2010 

bzip2 (1.0.3-0ubuntu2.2) dapper-security; urgency=low

  * SECURITY UPDATE: fix integer overflow in BZ2_decompress()
    - decompress.c: return error if N is larger than 2*1024^2 which keeps es
      from overflowing but leaves enough room for the 900k maximum value of
      the RUNA/RUNB encoding
    - patch from upstream
    - CVE-2010-0405

Date: Thu, 09 Sep 2010 10:18:04 -0500
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Maintainer: Anibal Monsalve Salazar <anibal at debian.org>
https://launchpad.net/ubuntu/dapper/+source/bzip2/1.0.3-0ubuntu2.2
-------------- next part --------------
Format: 1.7
Date: Thu, 09 Sep 2010 10:18:04 -0500
Source: bzip2
Binary: lib32bz2-dev libbz2-1.0 lib64bz2-1.0 lib32bz2-1.0 bzip2 libbz2-dev lib64bz2-dev
Architecture: source
Version: 1.0.3-0ubuntu2.2
Distribution: dapper-security
Urgency: low
Maintainer: Anibal Monsalve Salazar <anibal at debian.org>
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Description: 
 bzip2      - high-quality block-sorting file compressor - utilities
 lib32bz2-1.0 - high-quality block-sorting file compressor library - 32bit runtim
 lib32bz2-dev - high-quality block-sorting file compressor library - 32bit develo
 lib64bz2-1.0 - high-quality block-sorting file compressor library - 64bit runtim
 lib64bz2-dev - high-quality block-sorting file compressor library - 64bit develo
 libbz2-1.0 - high-quality block-sorting file compressor library - runtime
 libbz2-dev - high-quality block-sorting file compressor library - development
Changes: 
 bzip2 (1.0.3-0ubuntu2.2) dapper-security; urgency=low
 .
   * SECURITY UPDATE: fix integer overflow in BZ2_decompress()
     - decompress.c: return error if N is larger than 2*1024^2 which keeps es
       from overflowing but leaves enough room for the 900k maximum value of
       the RUNA/RUNB encoding
     - patch from upstream
     - CVE-2010-0405
Files: 
 3e1adfd53a018eb9f43c00a9cf4edf9b 842 utils important bzip2_1.0.3-0ubuntu2.2.dsc
 add9b9743a419b63c10d90a26d6dc93d 73147 utils important bzip2_1.0.3-0ubuntu2.2.diff.gz

More information about the dapper-changes mailing list