[ubuntu/zesty-security] jython 2.5.3-15ubuntu0.1 (Accepted)

Seth Arnold seth.arnold at canonical.com
Fri Sep 22 02:14:19 UTC 2017


jython (2.5.3-15ubuntu0.1) zesty-security; urgency=high

  [ Simon Quigley ]
  * SECURITY UPDATE: Creates executables class files with wrong permissions
    (LP: #1714728)
    - CVE-2013-2027
    - 1-CVE-2013-2027.patch
    - 2-CVE-2013-2027.patch
    - 3-CVE-2013-2027.patch
    - Thanks to Lubomir Rintel for the patches!

  [ Markus Koschany ]
  * SECURITY UPDATE: Unsafe deserialization may lead to arbitrary code
    execution
    - CVE-2016-4000
    - CVE-2016-4000.patch

Date: 2017-09-21 03:10:27.931775+00:00
Changed-By: Simon Quigley <tsimonq2 at ubuntu.com>
Signed-By: Seth Arnold <seth.arnold at canonical.com>
https://launchpad.net/ubuntu/+source/jython/2.5.3-15ubuntu0.1
-------------- next part --------------
Sorry, changesfile not available.


More information about the Zesty-changes mailing list