[ubuntu/disco-proposed] systemd 239-7ubuntu10.3 (Accepted)

Dimitri John Ledkov launchpad at surgut.co.uk
Tue Nov 13 12:35:27 UTC 2018

systemd (239-7ubuntu10.3) cosmic-security; urgency=medium

  * SECURITY UPDATE: reexec state injection
    - debian/patches/CVE-2018-15686.patch: when deserializing state always use
      read_line(…, LONG_LINE_MAX, …) rather than fgets()
    - CVE-2018-15686
  * SECURITY UPDATE: chown_one() can dereference symlinks
    - debian/patches/CVE-2018-15687.patch: rework recursive logic to use O_PATH
    - CVE-2018-15687

Date: 2018-11-08 12:14:30.390476+00:00
Changed-By: Chris Coulson <chrisccoulson at ubuntu.com>
Signed-By: Dimitri John Ledkov <launchpad at surgut.co.uk>
-------------- next part --------------
Sorry, changesfile not available.

More information about the Disco-changes mailing list