[ubuntu/jammy-security] util-linux 2.37.2-4ubuntu3.3 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Wed Mar 27 15:19:49 UTC 2024
util-linux (2.37.2-4ubuntu3.3) jammy-security; urgency=medium
* SECURITY UPDATE: Improper neutralization of escape sequences in wall
- debian/patches/upstream/CVE-2024-28085-pre1.patch: correctly handle
wide characters in include/carefulputc.h, login-utils/last.c,
term-utils/write.c.
- debian/patches/upstream/CVE-2024-28085-pre2.patch: convert homebrew
buffering to open_memstream() in term-utils/wall.c.
- debian/patches/upstream/CVE-2024-28085-pre3.patch: use
fputs_careful() in include/carefulputc.h, login-utils/last.c,
term-utils/wall.c, term-utils/write.c.
- debian/patches/upstream/CVE-2024-28085.patch: consolidate output on
the terminal in term-utils/wall.c.
- CVE-2024-28085
Date: 2024-03-22 14:36:09.154058+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/util-linux/2.37.2-4ubuntu3.3
-------------- next part --------------
Sorry, changesfile not available.
More information about the jammy-changes
mailing list