[ubuntu/utopic-proposed] shim 0.7-0ubuntu4 (Accepted)
Adam Conrad
adconrad at 0c3.net
Wed Oct 22 02:32:40 UTC 2014
shim (0.7-0ubuntu4) utopic; urgency=medium
* SECURITY UPDATE: heap overflow and out-of-bounds read access when
parsing DHCPv6 information
- debian/patches/CVE-2014-3675.patch: apply proper bounds checking
when parsing data provided in DHCPv6 packets.
- CVE-2014-3675
- CVE-2014-3676
* SECURITY UPDATE: memory corruption when processing user-provided key
lists
- debian/patches/CVE-2014-3677.patch: detect malformed machine owner
key (MOK) lists and ignore them, avoiding possible memory corruption.
- CVE-2014-3677
Date: 2014-10-08 18:56:12.839395+00:00
Changed-By: Steve Langasek <steve.langasek at canonical.com>
Signed-By: Adam Conrad <adconrad at 0c3.net>
https://launchpad.net/ubuntu/utopic/+source/shim/0.7-0ubuntu4
-------------- next part --------------
Sorry, changesfile not available.
More information about the Utopic-changes
mailing list