~ubuntu-branches/ubuntu/natty/gnupg2/natty-proposed

Committer: Bazaar Package Importer
Author(s): Marc Deslauriers
Date: 2010-08-11 13:56:02 UTC
Revision ID: james.westby@ubuntu.com-20100811135602-8v2bjfipkk5yocqe

Tags: 2.0.14-1.1ubuntu2

* SECURITY UPDATE: denial of service and possible arbitrary code
  execution via certificate with large number of Subject Alternate Names
  - debian/patches/CVE-2010-2547.patch: fix use-after-free in
    kbx/keybox-blob.c.
  - CVE-2010-2547

files added:
.pc/CVE-2010-2547.patch

.pc/CVE-2010-2547.patch/kbx

.pc/CVE-2010-2547.patch/kbx/keybox-blob.c

debian/patches/CVE-2010-2547.patch

files modified:
.pc/applied-patches

debian/changelog

debian/patches/debian-changes

debian/patches/series

kbx/keybox-blob.c

Show diffs side-by-side

added added

removed removed

debian/changelog

gnupg2 (2.0.14-1.1ubuntu2) maverick; urgency=low

* SECURITY UPDATE: denial of service and possible arbitrary code

execution via certificate with large number of Subject Alternate Names

- debian/patches/CVE-2010-2547.patch: fix use-after-free in

kbx/keybox-blob.c.

- CVE-2010-2547

-- Marc Deslauriers <marc.deslauriers@ubuntu.com> Wed, 11 Aug 2010 13:56:02 -0400

gnupg2 (2.0.14-1.1ubuntu1) maverick; urgency=low

* Merge with Debian; remaining changes:

Older »