[ubuntu/precise-security] libtasn1-3 2.10-1ubuntu1.5 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Mon May 2 16:42:19 UTC 2016
libtasn1-3 (2.10-1ubuntu1.5) precise-security; urgency=medium
* SECURITY UPDATE: infinite loop via malformed DER cert
- debian/patches/CVE-2016-4008-1.patch: catch invalid input cases early
in lib/decoding.c.
- debian/patches/CVE-2016-4008-2.patch: properly account bytes read in
lib/decoding.c.
- CVE-2016-4008
Date: 2016-04-26 19:21:13.207886+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/libtasn1-3/2.10-1ubuntu1.5
-------------- next part --------------
Sorry, changesfile not available.
More information about the Precise-changes
mailing list