[ubuntu/precise-updates] libtasn1-3 2.10-1ubuntu1.2 (Accepted)

Ubuntu Archive Robot cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk
Tue Jul 22 18:03:16 UTC 2014


libtasn1-3 (2.10-1ubuntu1.2) precise-security; urgency=medium

  * SECURITY UPDATE: denial of service and possible code execution via
    invalid ASN.1 data
    - debian/patches/CVE-2014-3467-3468.patch: properly calculate lengths
      in lib/decoding.c.
    - CVE-2014-3467
    - CVE-2014-3468
  * SECURITY UPDATE: denial of service via NULL value
    - debian/patches/CVE-2014-3469.patch: check for NULLs in lib/element.c.
    - CVE-2014-3469

Date: 2014-07-18 20:12:12.037647+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
Signed-By: Ubuntu Archive Robot <cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk>
https://launchpad.net/ubuntu/precise/+source/libtasn1-3/2.10-1ubuntu1.2
-------------- next part --------------
Sorry, changesfile not available.


More information about the Precise-changes mailing list