[ubuntu/trusty-security] jython 2.5.3-1ubuntu0.1 (Accepted)
Seth Arnold
seth.arnold at canonical.com
Fri Sep 22 02:04:17 UTC 2017
jython (2.5.3-1ubuntu0.1) trusty-security; urgency=high
[ Simon Quigley ]
* SECURITY UPDATE: Creates executables class files with wrong permissions
(LP: #1714728)
- CVE-2013-2027
- 1-CVE-2013-2027.patch
- 2-CVE-2013-2027.patch
- 3-CVE-2013-2027.patch
- Thanks to Lubomir Rintel for the patches!
[ Markus Koschany ]
* SECURITY UPDATE: Unsafe deserialization may lead to arbitrary code
execution
- CVE-2016-4000
- CVE-2016-4000.patch
Date: 2017-09-21 03:10:19.118072+00:00
Changed-By: Simon Quigley <tsimonq2 at ubuntu.com>
Signed-By: Seth Arnold <seth.arnold at canonical.com>
https://launchpad.net/ubuntu/+source/jython/2.5.3-1ubuntu0.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Trusty-changes
mailing list