Univention Bugzilla – Full Text Bug Listing |
Summary: | libmspack: Multiple issues (4.3) | ||
---|---|---|---|
Product: | UCS | Reporter: | Quality Assurance <qa> |
Component: | Security updates | Assignee: | Quality Assurance <qa> |
Status: | CLOSED FIXED | QA Contact: | Philipp Hahn <hahn> |
Severity: | normal | ||
Priority: | P3 | ||
Version: | UCS 4.3 | ||
Target Milestone: | UCS 4.3-1-errata | ||
Hardware: | All | ||
OS: | Linux | ||
What kind of report is it?: | Security Issue | What type of bug is this?: | --- |
Who will be affected by this bug?: | --- | How will those affected feel about the bug?: | --- |
User Pain: | Enterprise Customer affected?: | ||
School Customer affected?: | ISV affected?: | ||
Waiting Support: | Flags outvoted (downgraded) after PO Review: | ||
Ticket number: | Bug group (optional): | ||
Max CVSS v3 score: | 6.5 (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H) |
Description
Quality Assurance
2018-08-08 14:21:23 CEST
--- mirror/ftp/4.3/unmaintained/4.3-0/source/libmspack_0.5-1.A~4.3.0.201711291434.dsc +++ apt/ucs_4.3-0-errata4.3-1/source/libmspack_0.5-1.A~4.3.1.201808081421.dsc @@ -1,6 +1,18 @@ -0.5-1.A~4.3.0.201711291434 [Thu, 30 Nov 2017 03:44:23 +0100] Univention builddaemon <buildd@univention.de>: +0.5-1.A~4.3.1.201808081421 [Wed, 08 Aug 2018 14:21:26 +0200] Univention builddaemon <buildd@univention.de>: * UCS auto build. No patches were applied to the original source package + +0.5-1+deb9u2 [Thu, 02 Aug 2018 19:18:37 +0200] Sebastian Andrzej Siewior <sebastian@breakpoint.cc>: + + * Non-maintainer upload. + * Add security related patches: + - 0b0ef9344255 ("kwaj_read_headers(): fix handling of non-terminated + strings") CVE-2018-14681 (Closes: 904799). + - 4fd9ccaa54e1 ("Fix off-by-one error in chmd TOLOWER() fallback") + CVE-2018-14682 (Closes: 904800). + - 72e70a921f0f ("Fix off-by-one bounds check on CHM PMGI/PMGL chunk + numbers and reject empty filenames.") CVE-2018-14679, + CVE-2018-14680 (Closes: 904802, 904801). 0.5-1+deb9u1 [Wed, 16 Aug 2017 21:42:50 +0200] Sebastian Andrzej Siewior <sebastian@breakpoint.cc>: <http://10.200.17.11/4.3-1/#5068712437307279697> OK: patches OK: piuparts OK: yaml OK: errata-announce libmspack.yaml [4.3-1] 4682874bf1 Bug #47513: libmspack 0.5-1.A~4.3.1.201808081421 doc/errata/staging/libmspack.yaml | 26 ++++++++++++++++++++++++++ 1 file changed, 26 insertions(+) |