[Bug 1403650] [NEW] Sync lua5.1 5.1.5-7.1 (main) from Debian unstable (main)
Launchpad Bug Tracker
1403650 at bugs.launchpad.net
Wed Dec 17 21:30:14 UTC 2014
You have been subscribed to a public bug by Jackson Doak (noskcaj):
Please sync lua5.1 5.1.5-7.1 (main) from Debian unstable (main)
Explanation of the Ubuntu delta and why it can be dropped:
* SECURITY UPDATE: possible code execution via overflow in vararg
functions (LP: #1362278)
- debian/patches/CVE-2014-5461.patch: properly calculate length in
src/ldo.c.
- CVE-2014-5461
Fixed in debian
Changelog entries since current vivid version 5.1.5-5ubuntu1:
lua5.1 (5.1.5-7.1) unstable; urgency=medium
* Non-maintainer upload.
* Build-depend on libtool-bin. Closes: #761773.
* liblua5.1-0-dev: Recommend libtool-bin.
-- Matthias Klose <doko at debian.org> Thu, 09 Oct 2014 09:49:29 +0000
lua5.1 (5.1.5-7) unstable; urgency=medium
* Patch to fix stack overflow in vararg functions (CVE-2014-5461)
* Add symlinks to .pc file in order to ease the life of developers:
{lua-5.1,lua51} -> lua5.1 (Closes: #498416)
-- Enrico Tassi <gareuselesinge at debian.org> Wed, 27 Aug 2014 09:46:39
+0200
lua5.1 (5.1.5-6) unstable; urgency=low
* Fix .pc file to not spit -L/usr/lib but -L/usr/lib/$DEB_HOST_MULTIARCH
(Closes: #723483)
-- Enrico Tassi <gareuselesinge at debian.org> Tue, 17 Sep 2013 23:44:04
+0200
** Affects: lua5.1 (Ubuntu)
Importance: Wishlist
Status: New
--
Sync lua5.1 5.1.5-7.1 (main) from Debian unstable (main)
https://bugs.launchpad.net/bugs/1403650
You received this bug notification because you are a member of Ubuntu Sponsors Team, which is subscribed to the bug report.
More information about the Ubuntu-sponsors
mailing list