[Bug 1641912] Re: Please backport two recent-manager patches
Launchpad Bug Tracker
1641912 at bugs.launchpad.net
Sun Jul 30 01:48:07 UTC 2017
This bug was fixed in the package gtk+2.0 - 2.24.31-1ubuntu2
---------------
gtk+2.0 (2.24.31-1ubuntu2) artful; urgency=medium
* Add debian/patches/lp1641912-add-limit-to-list-size.patch, which fixes a
DOS allowing any application to cause all GTK applications to use an
arbitrary amount of memory (LP: #1641912).
-- Simon Quigley <tsimonq2 at ubuntu.com> Thu, 20 Jul 2017 16:52:59 -0500
** Changed in: gtk+2.0 (Ubuntu Artful)
Status: In Progress => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Sponsors Team, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/1641912
Title:
Please backport two recent-manager patches
Status in GTK+:
Fix Released
Status in gtk+2.0 package in Ubuntu:
Fix Released
Status in gtk+2.0 source package in Xenial:
In Progress
Status in gtk+2.0 source package in Yakkety:
Won't Fix
Status in gtk+2.0 source package in Zesty:
In Progress
Status in gtk+2.0 source package in Artful:
Fix Released
Bug description:
https://git.gnome.org/browse/gtk+/commit/?h=gtk-2-24&id=a3b2d6a65be9f592de9570c227df00f910167e9e
https://git.gnome.org/browse/gtk+/commit/?h=gtk-2-24&id=35871edb318083b2d7e4758cbdaad6109eed60ca
Please apply/backport these two patches from the 2.24 branch. They fix a memory DOS, originally reported against mate-panel here:
https://github.com/mate-desktop/mate-panel/issues/479
For the GTK3 version of this bug, see bug 1641914
Note that MATE is GTK2 only for Ubuntu 16.04 LTS.
To manage notifications about this bug go to:
https://bugs.launchpad.net/gtk/+bug/1641912/+subscriptions
More information about the Ubuntu-sponsors
mailing list