ecryptfs-utils (109-0ubuntu1) xenial; urgency=medium [ Maikel ] * doc/manpage/ecryptfs-migrate-home.8: Fix typos in man page (LP: #1518787)
[ Kylie McClain ] * src/utils/mount.ecryptfs.c, src/utils/mount.ecryptfs_private.c: Fix build issues on musl libc (LP: #1514625) [ Colin Ian King ] * src/daemon/main.c: - Static analysis with Clang's scan-build shows that we can potentially overflow the input buffer if the input is equal or more than the buffer size. Need to guard against this by: 1. Only reading in input_size - 1 chars 2. Checking earlier on to see if input_size is value to insure that we read in at least 1 char [ Tyler Hicks ] * src/utils/mount.ecryptfs_private.c: - Refuse to mount over non-standard filesystems. Mounting over certain types filesystems is a red flag that the user is doing something devious, such as mounting over the /proc/self symlink target with malicious content in order to confuse programs that may attempt to parse those files. (LP: #1530566) [ Dustin Kirkland ] * xenial Date: Fri, 22 Jan 2016 10:05:35 -0600 Changed-By: Dustin Kirkland <kirkl...@ubuntu.com> https://launchpad.net/ubuntu/+source/ecryptfs-utils/109-0ubuntu1
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 22 Jan 2016 10:05:35 -0600 Source: ecryptfs-utils Binary: ecryptfs-utils ecryptfs-utils-dbg libecryptfs1 libecryptfs-dev python-ecryptfs Architecture: source Version: 109-0ubuntu1 Distribution: xenial Urgency: medium Maintainer: Dustin Kirkland <kirkl...@ubuntu.com> Changed-By: Dustin Kirkland <kirkl...@ubuntu.com> Description: ecryptfs-utils - ecryptfs cryptographic filesystem (utilities) ecryptfs-utils-dbg - ecryptfs cryptographic filesystem (utilities; debug) libecryptfs-dev - ecryptfs cryptographic filesystem (development) libecryptfs1 - ecryptfs cryptographic filesystem (library) python-ecryptfs - ecryptfs cryptographic filesystem (python) Launchpad-Bugs-Fixed: 1514625 1518787 1530566 Changes: ecryptfs-utils (109-0ubuntu1) xenial; urgency=medium . [ Maikel ] * doc/manpage/ecryptfs-migrate-home.8: Fix typos in man page (LP: #1518787) . [ Kylie McClain ] * src/utils/mount.ecryptfs.c, src/utils/mount.ecryptfs_private.c: Fix build issues on musl libc (LP: #1514625) . [ Colin Ian King ] * src/daemon/main.c: - Static analysis with Clang's scan-build shows that we can potentially overflow the input buffer if the input is equal or more than the buffer size. Need to guard against this by: 1. Only reading in input_size - 1 chars 2. Checking earlier on to see if input_size is value to insure that we read in at least 1 char . [ Tyler Hicks ] * src/utils/mount.ecryptfs_private.c: - Refuse to mount over non-standard filesystems. Mounting over certain types filesystems is a red flag that the user is doing something devious, such as mounting over the /proc/self symlink target with malicious content in order to confuse programs that may attempt to parse those files. (LP: #1530566) . [ Dustin Kirkland ] * xenial Checksums-Sha1: 945382888b461010c7995c13bfceeb52801c7b7c 2352 ecryptfs-utils_109-0ubuntu1.dsc 2c399cc684d1a28d4f65c961496d138625ac9fe5 663044 ecryptfs-utils_109.orig.tar.gz 3d3274edb649c7ddf772827b8720881ca973494a 29944 ecryptfs-utils_109-0ubuntu1.debian.tar.gz Checksums-Sha256: b16e7bd956fcb1e1243fe36c844068e38e09afac3e19f9d0a0029d32e49be4c1 2352 ecryptfs-utils_109-0ubuntu1.dsc 78ea4c3beac85105520bb019a0a9a9d3eae624fb495c890d0428cce311d8f56c 663044 ecryptfs-utils_109.orig.tar.gz 91c96b4cd31a915e9ce340a8b83070e9aa87256cc48ae39b1790e39e972d031f 29944 ecryptfs-utils_109-0ubuntu1.debian.tar.gz Files: b5000e10fb775f522b551260e3ec1731 2352 misc optional ecryptfs-utils_109-0ubuntu1.dsc 8e33f096c8cb8288f9c29a9936cd0d28 663044 misc optional ecryptfs-utils_109.orig.tar.gz b426f1321d423b65acf6eacc743d3765 29944 misc optional ecryptfs-utils_109-0ubuntu1.debian.tar.gz Original-Maintainer: Daniel Baumann <dan...@debian.org> -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCgAGBQJWolOHAAoJEJXmQ3PxUpRpBvYP/i6EbrgNplrKtl0q2cPdI/cG +15lhwecNAfDCY7CALt3kIAGwL7TzaI0Um1jjlOduB7/KNoIUxrMIpSkGlF+XCil xrWwuZwWOBexAbXdaU1lSnZFVFJMlAG3129ULQaMLnkMPYkb6zesL2d9lL5fD10y +vzvNhbfPISZ9wvseN9q6z95Cd4DsONLfnkK8m+tYzix9SXZFzcRCDu8SzV0twj7 bNwZr6TpSrN7dKzab5lyP8k8bbM5c/aBMXtpxo8f6+0rCO8VLI97v2WSpcRP8D9+ LwNaDopF19ZCy+1TDMUMdNK6389zNQjbHxMrREMajo+pJp/SSXCFdptDHILS+F89 R/IkGtGmGMHCxRDRFwhHd4vi92IkDOE+ic66Peouu5xU+XOyPcYsFEFhk6Cxju4S FtSfBfAqPn3ANAWYcOym0X+oM/55yzrPxyaIBb4cGaIOLZezpDWPZuJYWMg9dtSl 6giffgsokPn9NRKAvt33GUyEUqNQxncYyPMQ0Q4DoEYibvcgwoeKnsaqM4Ko2Vhe Mod6JdWV1wna2GXN/KUl/tEy5J0EhzqVlW62MtkBvIAqDqJtVyTPmmf+18rloo1p aIMIYwtKBgzvT/tmTHIcphBg7/YhU3Sl+mKwqqOyWDOi9NzPlv7n8zUe5UCkyP0G jr20wAS85r1BGbsGO5+Y =c0hd -----END PGP SIGNATURE-----
-- Xenial-changes mailing list Xenial-changes@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/xenial-changes