[ubuntu/trusty-updates] libmodule-signature-perl 0.73-1ubuntu0.14.04.1 (Accepted)
Ubuntu Archive Robot
cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk
Tue May 12 13:28:10 UTC 2015
libmodule-signature-perl (0.73-1ubuntu0.14.04.1) trusty-security; urgency=medium
* SECURITY UPDATE: arbitrary code execution and incorrect signature
verification
- debian/patches/CVE-2015-340x.patch: properly handle temp files and
headers in lib/Module/Signature.pm, Makefile.PL.
- debian/patches/CVE-2015-3409.patch: don't load modules from relative
paths in lib/Module/Signature.pm.
- CVE-2015-3406
- CVE-2015-3407
- CVE-2015-3408
- CVE-2015-3409
Date: 2015-04-24 16:39:12.563511+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
Signed-By: Ubuntu Archive Robot <cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk>
https://launchpad.net/ubuntu/+source/libmodule-signature-perl/0.73-1ubuntu0.14.04.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Trusty-changes
mailing list