Bug 45216

Summary: erlang: PCRE (4.2)
Product: UCS Reporter: Philipp Hahn <hahn>
Component: Security updatesAssignee: Philipp Hahn <hahn>
Status: CLOSED FIXED QA Contact: Erik Damrose <damrose>
Severity: normal    
Priority: P5 Flags: hahn: Patch_Available+
Version: UCS 4.2   
Target Milestone: UCS 4.2-1-errata   
Hardware: Other   
OS: Linux   
URL: http://metadata.ftp-master.debian.org/changelogs/main/e/erlang/erlang_17.3-dfsg-4+deb8u1_changelog
What kind of report is it?: Security Issue What type of bug is this?: ---
Who will be affected by this bug?: --- How will those affected feel about the bug?: ---
User Pain: Enterprise Customer affected?:
School Customer affected?: ISV affected?:
Waiting Support: Flags outvoted (downgraded) after PO Review:
Ticket number: Bug group (optional):
Max CVSS v3 score:

Description Philipp Hahn univentionstaff 2017-08-17 11:49:36 CEST 
CVE-2016-10253: Fix heap overflow while compiling certain regular expressions

in triggers/ucs_4.2-0.txt for # PLUCS App
Comment 1 Philipp Hahn univentionstaff 2017-08-17 11:51:30 CEST 
r82353 | Bug #45216: erlang.yaml
Comment 2 Philipp Hahn univentionstaff 2017-08-17 12:35:56 CEST 
FIXED: Missing dependencies:
 libwxbase3.0-0 (>= 3.0.2)
 libwxgtk3.0-0 (>= 3.0.2)
 libjs-jquery-tablesorter
r82355 | Bug #45216: erlang.yaml dependencies
 jquery-goodies.yaml
 wxwidgets3.0.yaml

Warning:
 erlang Depends erlang-wc Depends libwxgtk3.0-0 Depends libnotify4 Recommends notification-daemon Provided-By plasma-widgets-workspace
will pull in greats parts of KDE4, if r/o/unmaintained=yes, so be careful when you install the full Erlang/OTP runtime! Consider "--no-install-recommends" or use "erlang-base"
Comment 3 Erik Damrose univentionstaff 2017-08-28 17:50:11 CEST 
r82507 Added explicit maintained flag

OK: CVE-2016-10253; erlang 1:17.3-dfsg-4+deb8u1
OK: Installation/update of erlang, erlang-base 
OK: Yaml erlang.yaml, jquery-goodies.yaml, wxwidgets3.0.yaml
Verified