[ubuntu/hardy-security] bzip2, bzip2 (delayed) 1.0.4-2ubuntu4.1 (Accepted)
Ubuntu Installer
archive at ubuntu.com
Mon Sep 20 14:11:26 BST 2010
bzip2 (1.0.4-2ubuntu4.1) hardy-security; urgency=low
* SECURITY UPDATE: fix integer overflow in BZ2_decompress()
- decompress.c: return error if N is larger than 2*1024^2 which keeps es
from overflowing but leaves enough room for the 900k maximum value of
the RUNA/RUNB encoding
- patch from upstream
- CVE-2010-0405
Date: Thu, 09 Sep 2010 10:17:24 -0500
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/hardy/+source/bzip2/1.0.4-2ubuntu4.1
-------------- next part --------------
Format: 1.7
Date: Thu, 09 Sep 2010 10:17:24 -0500
Source: bzip2
Binary: libbz2-1.0 libbz2-dev bzip2 lib64bz2-1.0 lib64bz2-dev lib32bz2-1.0 lib32bz2-dev bzip2-doc
Architecture: source
Version: 1.0.4-2ubuntu4.1
Distribution: hardy-security
Urgency: low
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Description:
bzip2 - high-quality block-sorting file compressor - utilities
bzip2-doc - high-quality block-sorting file compressor - documentation
lib32bz2-1.0 - high-quality block-sorting file compressor library - 32bit runtim
lib32bz2-dev - high-quality block-sorting file compressor library - 32bit develo
lib64bz2-1.0 - high-quality block-sorting file compressor library - 64bit runtim
lib64bz2-dev - high-quality block-sorting file compressor library - 64bit develo
libbz2-1.0 - high-quality block-sorting file compressor library - runtime
libbz2-dev - high-quality block-sorting file compressor library - development
Changes:
bzip2 (1.0.4-2ubuntu4.1) hardy-security; urgency=low
.
* SECURITY UPDATE: fix integer overflow in BZ2_decompress()
- decompress.c: return error if N is larger than 2*1024^2 which keeps es
from overflowing but leaves enough room for the 900k maximum value of
the RUNA/RUNB encoding
- patch from upstream
- CVE-2010-0405
Files:
731b9f7fb9568006be60ab81de5b69cf 981 utils important bzip2_1.0.4-2ubuntu4.1.dsc
ea23474bafb8c546ead3fa78b9314c7e 75558 utils important bzip2_1.0.4-2ubuntu4.1.diff.gz
Original-Maintainer: Anibal Monsalve Salazar <anibal at debian.org>
More information about the Hardy-changes
mailing list