[ubuntu/precise-updates] patch 2.6.1-3ubuntu0.1 (Accepted)
Ubuntu Archive Robot
cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk
Mon Jun 22 23:28:08 UTC 2015
patch (2.6.1-3ubuntu0.1) precise-security; urgency=medium
* SECURITY UPDATE: Directory traversal via crafted patch
- debian/patches/CVE-2010-4651.patch: Restrict file creation to the
current directory and its subdirectories
- CVE-2010-4651
* SECURITY UPDATE: Denial of service via crafted patch
- debian/patches/CVE-2014-9637.patch: Detect and exit upon memory
allocation failures
- CVE-2014-9637
Date: 2015-06-12 01:36:13.761098+00:00
Changed-By: Tyler Hicks <tyhicks at canonical.com>
Signed-By: Ubuntu Archive Robot <cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk>
https://launchpad.net/ubuntu/+source/patch/2.6.1-3ubuntu0.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Precise-changes
mailing list