[ubuntu/feisty-security] wordnet 1:2.1-4ubuntu0.1 (Accepted)

Ubuntu Installer archive at ubuntu.com
Tue Sep 30 16:55:22 BST 2008


wordnet (1:2.1-4ubuntu0.1) feisty-security; urgency=low

  * SECURITY UPDATE: Stack overflows fed via the command line, environment
    variables or WordNet library calls can result in arbitrary code
    execution. (Closes LP: #257067)
  * 50_CVE-2008-2149_buffer_overflows.diff:
    - buffer overflow patch (tille at debian.org).
  * 51_overflows.patch:
    - ocert patch to address additional potential security exploits.
    - merged from Debian wordnet (1:2.1-4+etch1)
  * 52_overflows_memcpy.diff:
    - Fix part of oCERT patch that breaks 'wordnet test -synsn'.
  * References
    http://www.ocert.org/advisories/ocert-2008-014.html
    CVE-2008-2149

Date: Sat, 27 Sep 2008 13:17:32 +0200
Changed-By: Stefan Lesicnik <stefan at lsd.co.za>
Maintainer: Ubuntu MOTU Developers <ubuntu-motu at lists.ubuntu.com>
https://launchpad.net/ubuntu/feisty/+source/wordnet/1:2.1-4ubuntu0.1
-------------- next part --------------
Format: 1.7
Date: Sat, 27 Sep 2008 13:17:32 +0200
Source: wordnet
Binary: wordnet wordnet-base wordnet-dev wordnet-sense-index
Architecture: amd64 all i386 ia64 powerpc source sparc
Version: 1:2.1-4ubuntu0.1
Distribution: feisty-security
Urgency: low
Maintainer: Ubuntu MOTU Developers <ubuntu-motu at lists.ubuntu.com>
Changed-By: Stefan Lesicnik <stefan at lsd.co.za>
Description:
 wordnet    - electronic lexical database of English language
 wordnet-dev - electronic lexical database of English language
 wordnet-base - electronic lexical database of English language
 wordnet-sense-index - electronic lexical database of English language
Changes:
 wordnet (1:2.1-4ubuntu0.1) feisty-security; urgency=low
 .
   * SECURITY UPDATE: Stack overflows fed via the command line, environment
     variables or WordNet library calls can result in arbitrary code
     execution. (Closes LP: #257067)
   * 50_CVE-2008-2149_buffer_overflows.diff:
     - buffer overflow patch (tille at debian.org).
   * 51_overflows.patch:
     - ocert patch to address additional potential security exploits.
     - merged from Debian wordnet (1:2.1-4+etch1)
   * 52_overflows_memcpy.diff:
     - Fix part of oCERT patch that breaks 'wordnet test -synsn'.
   * References
     http://www.ocert.org/advisories/ocert-2008-014.html
     CVE-2008-2149
Files:
 b1c8fac0d9e97d669001e57c92ce32d3 107088 text optional wordnet_2.1-4ubuntu0.1_amd64.deb
 c46236ae4a5271031624d791ab8710d3 66626 devel optional wordnet-dev_2.1-4ubuntu0.1_amd64.deb
 698f86f48ec956ac3588465ce4727b72 8698334 text optional wordnet-base_2.1-4ubuntu0.1_all.deb
 464aac7e2e1d46954e28cb20ddb9a19b 2243174 text optional wordnet-sense-index_2.1-4ubuntu0.1_all.deb
 edbfc6bac3dcf71fa06590b5ba4318c9 102990 text optional wordnet_2.1-4ubuntu0.1_i386.deb
 7ca94033820edffb44c98486083aaa23 62164 devel optional wordnet-dev_2.1-4ubuntu0.1_i386.deb
 8522c4abadc7d6b8ca1b90bbd4dc4a1e 120540 text optional wordnet_2.1-4ubuntu0.1_ia64.deb
 cedc88d0e4cf109f032e427d4849071b 83436 devel optional wordnet-dev_2.1-4ubuntu0.1_ia64.deb
 32baeea19a29a1f8cd53be596f573be8 113792 text optional wordnet_2.1-4ubuntu0.1_powerpc.deb
 3ed8533a78f1ee00b7077026e5c43325 70552 devel optional wordnet-dev_2.1-4ubuntu0.1_powerpc.deb
 d7a4d3208a67800aac949b6ada27103b 845 text optional wordnet_2.1-4ubuntu0.1.dsc
 f367418fa0e59a520ced90b058c41f2b 23047 text optional wordnet_2.1-4ubuntu0.1.diff.gz
 08cbd40d2c12a0d7112655152cba1b45 104762 text optional wordnet_2.1-4ubuntu0.1_sparc.deb
 694c0e7ff5866208a6fbf0828ca99e94 65634 devel optional wordnet-dev_2.1-4ubuntu0.1_sparc.deb
Url: http://www.cogsci.princeton.edu/
Launchpad-Bugs-Fixed: 257067
Original-Maintainer: Andreas Tille <tille at debian.org>


More information about the feisty-changes mailing list