[ubuntu/trusty-security] xchat-gnome 1:0.30.0~git20131003.d20b8d+really20110821-0.2ubuntu12.2 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Mon Apr 4 18:07:34 UTC 2016
xchat-gnome (1:0.30.0~git20131003.d20b8d+really20110821-0.2ubuntu12.2) trusty-security; urgency=medium
* SECURITY UPDATE: no ssl hostname verification (LP: #1565000)
- debian/patches/validate_ssl_hostnames.patch: properly validate
hostnames in src/common/server.c, src/common/ssl.c, src/common/ssl.h.
- CVE number pending
* SECURITY UPDATE: missing ssl certificate handled incorrectly
- debian/patches/handle_missing_ssl_cert.patch: fail connection if
certificate isn't found in src/common/server.c.
- No CVE number
Date: 2016-04-01 18:09:19.170868+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
Maintainer: Ubuntu Desktop <ubuntu-desktop at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/xchat-gnome/1:0.30.0~git20131003.d20b8d+really20110821-0.2ubuntu12.2
-------------- next part --------------
Sorry, changesfile not available.
More information about the Trusty-changes
mailing list