-
Committer:
Package Import Robot
-
Author(s):
Andreas Moog
-
Date:
2012-02-11 16:02:45 UTC
-
Revision ID:
package-import@ubuntu.com-20120211160245-5q12no3maipjj6w7
Tags: 0.8-0ubuntu1.1
* SECURITY UPDATE: "arbitrary file access and buffer overflows"
A new config file, /etc/gypsy.conf, is added that specifies a whitelist
of globs. By default, they are "/dev/tty*", "/dev/pgps", and "bluetooth"
(which matches Bluetooth addresses).
Thanks to Michael Leibowitz <michael.leibowitz@intel.com>
CVE-2011-0523
* SECURITY UPDATE: Prevent buffer overflows in NMEA parsing by using
snprintf() instead of sprintf.
Thanks to Bastien Nocera <hadess@hadess.net>
CVE-2011-0524 (LP: #690323)
* Run autoreconf to include changes to configure.ac