[ubuntu/jammy-security] ofono 1.31-3ubuntu1.1 (Accepted)
Bruce Cable
bruce.cable at canonical.com
Mon Dec 9 22:58:56 UTC 2024
ofono (1.31-3ubuntu1.1) jammy-security; urgency=medium
* SECURITY UPDATE: Stack overflow
- debian/patches/CVE-2023-2794-1.patch: Ensure the address length
in bytes <= 10
- debian/patches/CVE-2023-2794-2.patch: Check cbs_dcs_decode
return value
- debian/patches/CVE-2023-2794-3.patch: Make sure set_length on
the parent succeeds
- debian/patches/CVE-2023-2794-4.patch: Use a safer strlcpy
- CVE-2023-2794
* SECURITY UPDATE: Stack overflow
- debian/patches/CVE-2023-4233.patch: Validate the length of the
address field
- CVE-2023-4233
* SECURITY UPDATE: Stack overflow
- debian/patches/CVE-2023-4234.patch: Check that submit report fits
in memory
- CVE-2023-4234
Date: 2024-12-06 01:30:19.024603+00:00
Changed-By: Bruce Cable <bruce.cable at canonical.com>
https://launchpad.net/ubuntu/+source/ofono/1.31-3ubuntu1.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the jammy-changes
mailing list