[ubuntu/mantic-proposed] liblouis 3.24.0-1ubuntu1 (Accepted)
Leonidas Da Silva Barbosa
leo.barbosa at canonical.com
Fri Jun 2 14:45:16 UTC 2023
liblouis (3.24.0-1ubuntu1) mantic; urgency=medium
* SECURITY UPDATE: Denial of service
- debian/patches/CVE-2023-26767.patch: check the length
of path before copying indo dataPath in
liblouis/compileTranslationTable.c, liblouis/liblouis.h.in.
- CVE-2023-26767
* SECURITY UPDATE: Buffer overflow
- debian/patches/CVE-2023-26768-1.patch: check filename before
coping to initialLogFileName in liblouis/logging.c.
- debian/patches/CVE-2023-26768-2.patch: replace the magic
number with a define in liblouis/logging.c.
- CVE-2023-26768
* SECURITY UPDATE: Buffer overflow
- debian/patches/CVE-2023-26769-1.patch: check path length
before coping into tableFile in liblouis/compileTranslationTable.c.
- debian/patches/CVE-2023-26769-2.patch: fix format in
liblouis/compileTranslationTable.c.
- debian/patches/CVE-2023-26769-3.patch: add parentheses for
define expression in liblouis/compileTranslationTable.c.
- CVE-2023-26769
Date: Fri, 02 Jun 2023 10:05:57 -0300
Changed-By: Leonidas Da Silva Barbosa <leo.barbosa at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/liblouis/3.24.0-1ubuntu1
-------------- next part --------------
Format: 1.8
Date: Fri, 02 Jun 2023 10:05:57 -0300
Source: liblouis
Built-For-Profiles: noudeb
Architecture: source
Version: 3.24.0-1ubuntu1
Distribution: mantic
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Leonidas Da Silva Barbosa <leo.barbosa at canonical.com>
Changes:
liblouis (3.24.0-1ubuntu1) mantic; urgency=medium
.
* SECURITY UPDATE: Denial of service
- debian/patches/CVE-2023-26767.patch: check the length
of path before copying indo dataPath in
liblouis/compileTranslationTable.c, liblouis/liblouis.h.in.
- CVE-2023-26767
* SECURITY UPDATE: Buffer overflow
- debian/patches/CVE-2023-26768-1.patch: check filename before
coping to initialLogFileName in liblouis/logging.c.
- debian/patches/CVE-2023-26768-2.patch: replace the magic
number with a define in liblouis/logging.c.
- CVE-2023-26768
* SECURITY UPDATE: Buffer overflow
- debian/patches/CVE-2023-26769-1.patch: check path length
before coping into tableFile in liblouis/compileTranslationTable.c.
- debian/patches/CVE-2023-26769-2.patch: fix format in
liblouis/compileTranslationTable.c.
- debian/patches/CVE-2023-26769-3.patch: add parentheses for
define expression in liblouis/compileTranslationTable.c.
- CVE-2023-26769
Checksums-Sha1:
724e964e146035ecaffa17954b1647b95d09f673 2456 liblouis_3.24.0-1ubuntu1.dsc
f836cfc268692757917a7b223a70def60c6de50d 13040 liblouis_3.24.0-1ubuntu1.debian.tar.xz
6ead05ad95cd0f81dd408bc6233ef1a1aae5c5a5 6636 liblouis_3.24.0-1ubuntu1_source.buildinfo
Checksums-Sha256:
08f87ede7a8287ef9a44ab4209e508e8238ec888c2a848c8733b3d0612b673f7 2456 liblouis_3.24.0-1ubuntu1.dsc
d6d88182ce5acbfe6ca86837b212546f10c2d9aa3c230c1f5dc6b46997892833 13040 liblouis_3.24.0-1ubuntu1.debian.tar.xz
1ee83ca1a05db177151185bdfb720f5782f45e556c08b2b2cf5864998cad2b65 6636 liblouis_3.24.0-1ubuntu1_source.buildinfo
Files:
c746653df763a0cb6bddfea63c5711ea 2456 libs optional liblouis_3.24.0-1ubuntu1.dsc
5e00aa5e1af9c1d8eb5416ef6947e3ed 13040 libs optional liblouis_3.24.0-1ubuntu1.debian.tar.xz
928fdc9bbafe22b6d988e4f7bb2eaf4c 6636 libs optional liblouis_3.24.0-1ubuntu1_source.buildinfo
Original-Maintainer: Debian Accessibility Team <pkg-a11y-devel at alioth-lists.debian.net>
More information about the mantic-changes
mailing list