-
Committer:
Bazaar Package Importer
-
Author(s):
Emanuele Gentili
-
Date:
2008-04-12 23:52:13 UTC
-
Revision ID:
james.westby@ubuntu.com-20080412235213-y8662nkt033o1y3j
Tags: 1.5.4-0ubuntu1.1
* SECURITY UPDATE: (LP: #216117)
+ debian/patches/CVE-2008-1628.patch
- Stack-based buffer overflow in the audit_log_user_command function in
lib/audit_logging.c in Linux Audit before 1.7 might allow remote
attackers to execute arbitrary code via a long command argument.
* References
+ http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2008-1628
+ http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=475227