[ubuntu/focal-security] util-linux 2.34-0.1ubuntu9.5 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Wed Mar 27 15:19:50 UTC 2024
util-linux (2.34-0.1ubuntu9.5) focal-security; urgency=medium
* SECURITY UPDATE: Improper neutralization of escape sequences in wall
- debian/patches/CVE-2024-28085-pre1.patch: correctly handle wide
characters in include/carefulputc.h, login-utils/last.c,
term-utils/write.c, libsmartcols/src/fput.c.
- debian/patches/CVE-2024-28085-pre2.patch: convert homebrew buffering
to open_memstream() in term-utils/wall.c.
- debian/patches/CVE-2024-28085-pre3.patch: use fputs_careful() in
include/carefulputc.h, login-utils/last.c, term-utils/wall.c,
term-utils/write.c.
- debian/patches/CVE-2024-28085.patch: consolidate output on the
terminal in term-utils/wall.c.
- CVE-2024-28085
util-linux (2.34-0.1ubuntu9.4) focal; urgency=medium
* Fix false atari partition detection (LP: #2015355):
- Backport upstream patches to fix atari partition detection in libblkid:
+ debian/patches/libblkid-fix-Atari-prober-logic.patch
+ debian/patches/libblkid-make-Atari-more-robust.patch
- Backport upstream patches to fix atari tests:
+ debian/patches/tests-update-atari-partx-tests.patch
+ debian/patches/tests-update-atari-blkid-tests.patch
+ debian/source/include-binaries: Track changes that are not
representable in quilt patch.
Date: 2024-03-22 15:10:09.330689+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/util-linux/2.34-0.1ubuntu9.5
-------------- next part --------------
Sorry, changesfile not available.
More information about the Focal-changes
mailing list