[ubuntu/lucid-security] libtasn1-3 2.4-1ubuntu0.2 (Accepted)

Marc Deslauriers marc.deslauriers at canonical.com
Tue Jul 22 16:46:56 UTC 2014

libtasn1-3 (2.4-1ubuntu0.2) lucid-security; urgency=medium

  * SECURITY UPDATE: denial of service and possible code execution via
    invalid ASN.1 data
    - debian/patches/CVE-2014-3467-3468.patch: properly calculate lengths
      in lib/decoding.c.
    - CVE-2014-3467
    - CVE-2014-3468
  * SECURITY UPDATE: denial of service via NULL value
    - debian/patches/CVE-2014-3469.patch: check for NULLs in lib/element.c.
    - CVE-2014-3469

Date: 2014-07-18 20:14:12.684641+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
-------------- next part --------------
Sorry, changesfile not available.

More information about the Lucid-changes mailing list