- Committer: Package Import Robot
- Date: 2014-06-27 11:09:38 UTC
- Revision ID: package-import@ubuntu.com-20140627110938-6lflaase8nff76t4
* SECURITY UPDATE: denial of service or arbitrary code execution via
sprintf
- debian/patches/CVE-2014-1545.patch: use snprintf and check values
without using PR_ASSERT in mozilla/nsprpub/pr/src/io/prprf.c, added
tests to mozilla/nsprpub/pr/tests/{Makefile.in,prfdbl.c}.
- CVE-2014-1545
sprintf
- debian/patches/CVE-2014-1545.patch: use snprintf and check values
without using PR_ASSERT in mozilla/nsprpub/pr/src/io/prprf.c, added
tests to mozilla/nsprpub/pr/tests/{Makefile.in,prfdbl.c}.
- CVE-2014-1545
| Filename | Latest Rev | Last Changed | Committer | Comment | Size | ||
|---|---|---|---|---|---|---|---|
 .. |
|||||||
debian
|
2 | 17 years ago | Bazaar Package Importer | debian/rules: replace libnss3-0d (!) with libnspr4 |
|
||
|
mozilla
|
1 | 17 years ago | Bazaar Package Importer | Import upstream version 4.6.6 |
|
||