sudo (1.8.16-0ubuntu1.4) xenial-security; urgency=medium
* SECURITY UPDATE: /proc/self/stat parsing confusion
- debian/patches/CVE-2017-1000367.patch: adjust parsing to
find ttyname
- CVE-2017-1000367
Date: 2017-05-29 10:24:14.090640+00:00
Changed-By: Steve Beattie
sudo (1.8.16-0ubuntu1.4) xenial-security; urgency=medium
* SECURITY UPDATE: /proc/self/stat parsing confusion
- debian/patches/CVE-2017-1000367.patch: adjust parsing to
find ttyname
- CVE-2017-1000367
Date: 2017-05-29 10:24:14.090640+00:00
Changed-By: Steve Beattie
tiff (4.0.6-1ubuntu0.2) xenial-security; urgency=medium
* SECURITY REGRESSION: JPEG tiff read and write issue due to misapplied
patches (LP: #1670036)
- debian/patches/CVE-2016-9297_and_CVE-2016-9448_correct.patch: replace
two previous patches with one that applies fix to correct
webkit2gtk (2.16.3-0ubuntu0.16.04.1) xenial-security; urgency=medium
* Updated to 2.16.3 to fix multiple security issues.
- CVE-2017-2496
- CVE-2017-2510
- CVE-2017-2539
Date: 2017-05-26 10:56:13.494626+00:00
Changed-By: Marc Deslauriers
Signed-By:
strongswan (5.3.5-1ubuntu3.3) xenial-security; urgency=medium
* SECURITY UPDATE: Insufficient Input Validation in gmp Plugin
- debian/patches/CVE-2017-9022.patch: make sure the modulus is odd and
the exponent not zero in
src/libstrongswan/plugins/gmp/gmp_rsa_public_key.c.
-
imagemagick (8:6.8.9.9-7ubuntu5.7) xenial-security; urgency=medium
* SECURITY UPDATE: multiple security issues
- debian/patches/*: synchronize security fixes with Debian's
8:6.8.9.9-5+deb8u9 release. Once again, thanks to Bastien Roucariès
for the excellent work this update is
tiff (4.0.6-1ubuntu0.2) xenial-security; urgency=medium
* SECURITY REGRESSION: JPEG tiff read and write issue due to misapplied
patches (LP: #1670036)
- debian/patches/CVE-2016-9297_and_CVE-2016-9448_correct.patch: replace
two previous patches with one that applies fix to correct
webkit2gtk (2.16.3-0ubuntu0.16.04.1) xenial-security; urgency=medium
* Updated to 2.16.3 to fix multiple security issues.
- CVE-2017-2496
- CVE-2017-2510
- CVE-2017-2539
webkit2gtk (2.16.2-0ubuntu0.16.04.1) xenial; urgency=medium
* New upstream release (LP: #1690536)
* Drop
imagemagick (8:6.8.9.9-7ubuntu5.7) xenial-security; urgency=medium
* SECURITY UPDATE: multiple security issues
- debian/patches/*: synchronize security fixes with Debian's
8:6.8.9.9-5+deb8u9 release. Once again, thanks to Bastien Roucariès
for the excellent work this update is
strongswan (5.3.5-1ubuntu3.3) xenial-security; urgency=medium
* SECURITY UPDATE: Insufficient Input Validation in gmp Plugin
- debian/patches/CVE-2017-9022.patch: make sure the modulus is odd and
the exponent not zero in
src/libstrongswan/plugins/gmp/gmp_rsa_public_key.c.
-
10 matches
Mail list logo