~ubuntu-branches/ubuntu/lucid/nss/lucid-security

« back to all changes in this revision

Viewing changes to debian/changelog

  • Committer: Package Import Robot
  • Author(s): Marc Deslauriers
  • Date: 2014-09-09 07:54:31 UTC
  • Revision ID: package-import@ubuntu.com-20140909075431-1w5dlkn05p7wi5zv
Tags: 3.15.4-0ubuntu0.10.04.3
* SECURITY UPDATE: possible arbitrary code execution via race condition
  - debian/patches/CVE-2014-1544.patch: prevent
    nssTrustDomain_AddCertsToCache from freeing the CERTCertificate
    associated with the NSSCertificate in nss/lib/pk11wrap/pk11cert.c.
  - CVE-2014-1544

Show diffs side-by-side

added added

removed removed

Lines of Context:
 
1
nss (3.15.4-0ubuntu0.10.04.3) lucid-security; urgency=medium
 
2
 
 
3
  * SECURITY UPDATE: possible arbitrary code execution via race condition
 
4
    - debian/patches/CVE-2014-1544.patch: prevent
 
5
      nssTrustDomain_AddCertsToCache from freeing the CERTCertificate
 
6
      associated with the NSSCertificate in nss/lib/pk11wrap/pk11cert.c.
 
7
    - CVE-2014-1544
 
8
 
 
9
 -- Marc Deslauriers <marc.deslauriers@ubuntu.com>  Tue, 09 Sep 2014 07:54:31 -0400
 
10
 
1
11
nss (3.15.4-0ubuntu0.10.04.2) lucid-security; urgency=medium
2
12
 
3
13
  * SECURITY UPDATE: incorrect IDNA wildcard handling