[ubuntu/xenial-security] systemd 229-4ubuntu21.8 (Accepted)
Chris Coulson
chrisccoulson at ubuntu.com
Mon Nov 12 14:08:14 UTC 2018
systemd (229-4ubuntu21.8) xenial-security; urgency=medium
* SECURITY UPDATE: reexec state injection
- debian/patches/CVE-2018-15686.patch: when deserializing state always use
read_line(…, LONG_LINE_MAX, …) rather than fgets()
- CVE-2018-15686
* SECURITY UPDATE: symlink mishandling in systemd-tmpfiles
- debian/patches/CVE-2018-6954.patch: don't resolve pathnames when traversing
recursively through directory trees
- CVE-2018-6954
Date: 2018-11-09 07:55:12.827425+00:00
Changed-By: Chris Coulson <chrisccoulson at ubuntu.com>
https://launchpad.net/ubuntu/+source/systemd/229-4ubuntu21.8
-------------- next part --------------
Sorry, changesfile not available.
More information about the Xenial-changes
mailing list