[ubuntu/precise-security] file 5.09-2ubuntu0.8 (Accepted)

Steve Langasek steve.langasek at canonical.com
Mon May 3 12:47:15 UTC 2021


file (5.09-2ubuntu0.8) precise-security; urgency=medium

  [ Marc Deslauriers ]
  * SECURITY UPDATE: buffer overflow via CDF_VECTOR elements
    - debian/patches/CVE-2019-18218.patch: limit the number of elements in
      a vector in src/cdf.*.
    - CVE-2019-18218

file (5.09-2ubuntu0.7) precise-security; urgency=medium

  * SECURITY UPDATE: memory corruption in file_check_mem.
    - debian/patches/CVE-2015-8865.patch: properly calculate length in
      src/funcs.c.
    - CVE-2015-8865
  * SECURITY UPDATE: out-of-bounds read via crafted ELF file
    - debian/patches/CVE-2018-10360.patch: add bounds check to
      src/readelf.c.
    - CVE-2018-10360

Date: 2019-10-31 15:03:15.592961+00:00
Changed-By: leo.barbosa at canonical.com (Leonidas S. Barbosa)
Signed-By: Steve Langasek <steve.langasek at canonical.com>
https://launchpad.net/ubuntu/+source/file/5.09-2ubuntu0.8
-------------- next part --------------
Sorry, changesfile not available.


More information about the Precise-changes mailing list