[Bug 1648998] [NEW] Fix CVE-2016-9839 & CVE-2017-5522

Launchpad Bug Tracker 1648998 at bugs.launchpad.net
Tue Jan 24 13:02:16 UTC 2017


*** This bug is a security vulnerability ***

You have been subscribed to a public security bug by Bas Couwenberg (sebastic):

In MapServer before 7.0.3, OGR driver error messages are too verbose and
may leak sensitive information if data connection fails.

https://people.canonical.com/~ubuntu-
security/cve/2016/CVE-2016-9839.html

Packages for Debian have been updated - we should apply the same in
Ubuntu.

** Affects: mapserver (Ubuntu)
     Importance: Medium
         Status: Triaged

-- 
Fix CVE-2016-9839 & CVE-2017-5522
https://bugs.launchpad.net/bugs/1648998
You received this bug notification because you are a member of Ubuntu Sponsors Team, which is subscribed to the bug report.



More information about the Ubuntu-sponsors mailing list