Viewing all changes in revision 3.
- Committer: Package Import Robot
- Date: 2012-02-11 16:02:45 UTC
- Revision ID: package-import@ubuntu.com-20120211160245-5q12no3maipjj6w7
* SECURITY UPDATE: "arbitrary file access and buffer overflows"
A new config file, /etc/gypsy.conf, is added that specifies a whitelist
of globs. By default, they are "/dev/tty*", "/dev/pgps", and "bluetooth"
(which matches Bluetooth addresses).
Thanks to Michael Leibowitz <michael.leibowitz@intel.com>
CVE-2011-0523
* SECURITY UPDATE: Prevent buffer overflows in NMEA parsing by using
snprintf() instead of sprintf.
Thanks to Bastien Nocera <hadess@hadess.net>
CVE-2011-0524 (LP: #690323)
* Run autoreconf to include changes to configure.ac
A new config file, /etc/gypsy.conf, is added that specifies a whitelist
of globs. By default, they are "/dev/tty*", "/dev/pgps", and "bluetooth"
(which matches Bluetooth addresses).
Thanks to Michael Leibowitz <michael.leibowitz@intel.com>
CVE-2011-0523
* SECURITY UPDATE: Prevent buffer overflows in NMEA parsing by using
snprintf() instead of sprintf.
Thanks to Bastien Nocera <hadess@hadess.net>
CVE-2011-0524 (LP: #690323)
* Run autoreconf to include changes to configure.ac
- files added:
- .pc
- .pc/99_autoreconf.patch
- .pc/99_autoreconf.patch/etc
- .pc/cve-2011-0523.patch
- .pc/cve-2011-0523.patch/etc
- .pc/cve-2011-0523.patch/src
- .pc/cve-2011-0524.patch
- .pc/cve-2011-0524.patch/src
- debian/patches
- etc
- files modified:
- Makefile.am
expand all
collapse all
added
removed
