[ubuntu/focal-updates] util-linux 2.34-0.1ubuntu9.5 (Accepted)
Ubuntu Archive Robot
ubuntu-archive-robot at lists.canonical.com
Wed Mar 27 16:29:35 UTC 2024
util-linux (2.34-0.1ubuntu9.5) focal-security; urgency=medium
* SECURITY UPDATE: Improper neutralization of escape sequences in wall
- debian/patches/CVE-2024-28085-pre1.patch: correctly handle wide
characters in include/carefulputc.h, login-utils/last.c,
term-utils/write.c, libsmartcols/src/fput.c.
- debian/patches/CVE-2024-28085-pre2.patch: convert homebrew buffering
to open_memstream() in term-utils/wall.c.
- debian/patches/CVE-2024-28085-pre3.patch: use fputs_careful() in
include/carefulputc.h, login-utils/last.c, term-utils/wall.c,
term-utils/write.c.
- debian/patches/CVE-2024-28085.patch: consolidate output on the
terminal in term-utils/wall.c.
- CVE-2024-28085
Date: 2024-03-22 15:10:09.330689+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
Signed-By: Ubuntu Archive Robot <ubuntu-archive-robot at lists.canonical.com>
https://launchpad.net/ubuntu/+source/util-linux/2.34-0.1ubuntu9.5
-------------- next part --------------
Sorry, changesfile not available.
More information about the Focal-changes
mailing list