php5 (5.3.2-1ubuntu4.28) lucid-security; urgency=medium
* SECURITY UPDATE: denial of service via buffer overflow in mkgmtime()
- debian/patches/CVE-2014-3668.patch: properly handle sizes in
ext/xmlrpc/libxmlrpc/xmlrpc.c, added test to
ext/xmlrpc/tests/bug68027.phpt.
-
php5 (5.3.2-1ubuntu4.28) lucid-security; urgency=medium
* SECURITY UPDATE: denial of service via buffer overflow in mkgmtime()
- debian/patches/CVE-2014-3668.patch: properly handle sizes in
ext/xmlrpc/libxmlrpc/xmlrpc.c, added test to
ext/xmlrpc/tests/bug68027.phpt.
-
wget (1.12-1.1ubuntu2.2) lucid-security; urgency=medium
* SECURITY UPDATE: remote code execution via absolute path traversal
vulnerability in FTP
- debian/patches/CVE-2014-4877.dpatch: don't create local symlinks in
src/init.c, check for duplicate file nodes in src/ftp.c, updated
wget (1.12-1.1ubuntu2.2) lucid-security; urgency=medium
* SECURITY UPDATE: remote code execution via absolute path traversal
vulnerability in FTP
- debian/patches/CVE-2014-4877.dpatch: don't create local symlinks in
src/init.c, check for duplicate file nodes in src/ftp.c, updated
apt (0.7.25.3ubuntu9.17.2) lucid-proposed; urgency=low
[ David Kalnischkies ]
* methods/http.cc:
- retry without partial data after a 416 response (closes: 710924)
LP: #1382401
Date: Fri, 17 Oct 2014 10:09:56 +0200
Changed-By: Michael Vogt michael.v...@ubuntu.com
Maintainer: Ubuntu