Univention Bugzilla – Bug 48777
libemail-address-perl: Multiple issues (4.3)
Last modified: 2019-02-27 13:29:20 CET
New Debian libemail-address-perl 1.908-1+deb9u1 fixes: This update addresses the following issues: * denial of service when parsing crafted email address list (CVE-2015-7686) * Specially crafted input could cause Denial of Service due to complex parse() method (CVE-2018-12558)
--- mirror/ftp/4.3/unmaintained/4.3-0/source/libemail-address-perl_1.908-1.dsc +++ apt/ucs_4.3-0-errata4.3-3/source/libemail-address-perl_1.908-1+deb9u1.dsc @@ -1,3 +1,8 @@ +1.908-1+deb9u1 [Thu, 07 Feb 2019 15:02:13 +0000] Dominic Hargreaves <dom@earth.li>: + + * Team upload. + * [SECURITY]: Fix DoS vulnerabilities CVE-2015-7686 and CVE-2018-12558 + 1.908-1 [Sun, 20 Sep 2015 22:14:02 -0300] Lucas Kanashiro <kanashiro.duarte@gmail.com>: * Team upload. <http://10.200.17.11/4.3-3/#4350344993519529027>
OK: yaml OK: announce_errata OK: patch OK: piuparts [4.3-3] ba59f3180a Bug #48777: libemail-address-perl 1.908-1+deb9u1 doc/errata/staging/libemail-address-perl.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) [4.3-3] 471c662b58 Bug #48777: libemail-address-perl 1.908-1+deb9u1 doc/errata/staging/libemail-address-perl.yaml | 15 +++++++++++++++ 1 file changed, 15 insertions(+)
<http://errata.software-univention.de/ucs/4.3/439.html>