[ubuntu/noble-security] ofono 1.31-3ubuntu3.24.04.1 (Accepted)
Bruce Cable
bruce.cable at canonical.com
Mon Dec 9 22:58:55 UTC 2024
ofono (1.31-3ubuntu3.24.04.1) noble-security; urgency=medium
* SECURITY UPDATE: Stack overflow
- debian/patches/CVE-2023-2794-1.patch: Ensure the address length
in bytes <= 10
- debian/patches/CVE-2023-2794-2.patch: Check cbs_dcs_decode
return value
- debian/patches/CVE-2023-2794-3.patch: Make sure set_length on
the parent succeeds
- debian/patches/CVE-2023-2794-4.patch: Use a safer strlcpy
- CVE-2023-2794
* SECURITY UPDATE: Stack overflow
- debian/patches/CVE-2023-4233.patch: Validate the length of the
address field
- CVE-2023-4233
* SECURITY UPDATE: Stack overflow
- debian/patches/CVE-2023-4234.patch: Check that submit report fits
in memory
- CVE-2023-4234
Date: 2024-12-06 01:21:11.923017+00:00
Changed-By: Bruce Cable <bruce.cable at canonical.com>
https://launchpad.net/ubuntu/+source/ofono/1.31-3ubuntu3.24.04.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the noble-changes
mailing list