[ubuntu/lucid-updates] znc 0.078-1ubuntu0.1 (Accepted)
Ubuntu Archive Robot
cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk
Tue Dec 18 23:29:14 UTC 2012
znc (0.078-1ubuntu0.1) lucid-security; urgency=low
* SECURITY UPDATE: denial of service caused by NULL pointer dereference
(LP: #1090195)
- debian/patches/cve-2010-2448.patch: modify znc.cpp to prevent NULL
pointer dereference. Based on upstream patch.
- CVE-2010-2448
- CVE-2010-2488
* SECURITY UPDATE: denial of service caused by PING command without
arguments (LP: #1090195)
- debian/patches/cve-2010-2812.patch: modify Client.cpp to correctly
handle PING commands that have no arguments. Based on upstream patch.
- CVE-2010-2812
* SECURITY UPDATE: denial of service via unknown vectors related to
"unsafe substr() calls" (LP: #1090195)
- debian/patches/cve-2010-2934.patch: modify IRCSock.cpp,
modules/adminlog.cpp, modules/away.cpp, and modules/email.cpp to
remove unsafe substr() calls. Based on upstream patch.
- CVE-2010-2934
Date: 2012-12-18 13:55:11.546875+00:00
Changed-By: Thomas Ward <teward at trekweb.org>
Signed-By: Ubuntu Archive Robot <cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk>
https://launchpad.net/ubuntu/lucid/+source/znc/0.078-1ubuntu0.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Lucid-changes
mailing list