-
Committer:
Package Import Robot
-
Author(s):
Barak A. Pearlmutter
-
Date:
2014-12-18 09:07:40 UTC
-
Revision ID:
package-import@ubuntu.com-20141218090740-70bx39u7f7qpz9in
Tags: 1:0.8.1-3
* Patch a bunch of security vulnerabilities (closes: #773416)
- CVE-2014-6395 (Length Parameter Inconsistency)
- CVE-2014-6396 (Arbitrary write)
- CVE-2014-9376 (Negative index/underflow)
- CVE-2014-9377 (Heap overflow)
- CVE-2014-9378 (Unchecked return value)
- CVE-2014-9379 (Incorrect cast)
- CVE-2014-9380 (Buffer over-read)
- CVE-2014-9381 (Signedness error)
See: https://www.obrela.com/home/security-labs/advisories/osi-advisory-osi-1402/
Patches taken from repo CVE-patch, URL git://github.com/NickSampanis/ettercap.git
- 88804bd3a900d273215855f7c567ec891d31e547 CVE-patch/589
- 103f16582ee88341a6a610378011781cdc866b0c CVE-patch/602
- 3f0c582826095c722ab6fbf91518282a765a0b68 CVE-patch/603
- cb7b2028dc03c628aa0a1a5130ca41421ddebcb2 CVE-patch/604
- edd337d5d4f37ab8e330c5e067344dd5b3f10435 CVE-patch/605
- 37dcfdf79e1ac6dcacd565894cd7717aa0224164 CVE-patch/606
- c2a3c99af956146570d7883e4b540b9d0c0a3c46 CVE-patch/607
- 6b196e011fa456499ed4650a360961a2f1323818 CVE-patch/608
- afe7061948e85f0a0fd417d5e4c681bfaf212f42 CVE-patch/609
- 9e9fdc7ed1ee8eba01a5a05e000b6c55d2a70923 CVE-patch/610
Thanks to Nick Sampanis <n.sampanis@obrela.com> who is responsible for
both finding and repairing these issues.