-
Committer:
Package Import Robot
-
Author(s):
Marc Deslauriers
-
Date:
2014-10-07 14:26:26 UTC
-
Revision ID:
package-import@ubuntu.com-20141007142626-zxaxbqpzt4q07dbk
Tags: 4.1-2ubuntu3.5
* SECURITY UPDATE: incorrect function definition parsing with
here-document delimited by end-of-file
- debian/patches/CVE-2014-6277.dpatch: properly handle closing
delimiter in copy_cmd.c, make_cmd.c.
- CVE-2014-6277
* SECURITY UPDATE: incorrect function definition parsing via nested
command substitutions
- debian/patches/CVE-2014-6278.dpatch: properly handle certain parsing
attempts in builtins/evalstring.c, parse.y, shell.h.
- CVE-2014-6278
* debian/rules: added new patches to list.
* Updated patches with official upstream versions:
- debian/patches/CVE-2014-6271.dpatch
- debian/patches/CVE-2014-7169.dpatch
- debian/patches/variables-affix.dpatch
- debian/patches/CVE-2014-718x.dpatch