← Back to branch summary

~ari-tczew/ubuntu/hardy/fetchmail/fix-CVE-2008-2711

~ari-tczew/ubuntu/hardy/fetchmail/fix-CVE-2008-2711

« back to all changes in this revision

Viewing changes to debian/changelog

Committer: Artur Rona
Date: 2010-04-01 23:26:35 UTC
Revision ID: ari-tczew@tlen.pl-20100401232635-j55rh1trhfrtrxbn

* SECURITY UPDATE: Corrects a denial of service attack that can crash
  fetchmail when running in -v -v mode via malformed mail messages
  with long headers (LP: #240549)
  - debian/patches/07_fix_CVE-2008-2711_DoS.patch: Taken from intrepid
  - CVE-2008-2711

files added:
debian/patches/07_fix_CVE-2008-2711_DoS.patch

files modified:
debian/changelog

debian/patches/series

Show diffs side-by-side

added added

removed removed

debian/changelog

1

fetchmail (6.3.8-10ubuntu1.2) hardy-security; urgency=low

2

3

* SECURITY UPDATE: Corrects a denial of service attack that can crash

4

fetchmail when running in -v -v mode via malformed mail messages

5

with long headers (LP: #240549)

6

- debian/patches/07_fix_CVE-2008-2711_DoS.patch: Taken from intrepid

7

- CVE-2008-2711

8

9

-- Artur Rona <ari-tczew@tlen.pl> Fri, 02 Apr 2010 00:41:08 +0200

10

1

11

fetchmail (6.3.8-10ubuntu1.1) hardy-security; urgency=low

2

12

3

13

* SECURITY UPDATE: SSL cert validation bypass via NULL bytes.

Older »