[ubuntu/lucid-security] eglibc 2.11.1-0ubuntu7.19 (Accepted)

Marc Deslauriers marc.deslauriers at canonical.com
Wed Dec 3 18:16:43 UTC 2014


eglibc (2.11.1-0ubuntu7.19) lucid-security; urgency=medium

  * SECURITY UPDATE: denial of service in IBM gconv modules
    - debian/patches/any/CVE-2012-6656.diff: fix check in
      iconvdata/ibm930.c.
    - debian/patches/any/cvs-CVE-2014-6040.diff: fix checks in
      iconvdata/ibm*.c.
    - CVE-2012-6656
    - CVE-2014-6040
  * SECURITY UPDATE: arbitrary command execution via wordexp (LP: #1396471)
    - debian/patches/any/CVE-2014-7817.diff: properly handle WRDE_NOCMD in
      posix/wordexp.c, added tests to posix/wordexp-test.c.
    - CVE-2014-7817

Date: 2014-12-02 16:34:12.078980+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/eglibc/2.11.1-0ubuntu7.19
-------------- next part --------------
Sorry, changesfile not available.


More information about the Lucid-changes mailing list