← Back to branch summary

~ubuntu-branches/ubuntu/oneiric/puppet/oneiric-security

Viewing all changes in revision 57.

  • Committer: Package Import Robot
  • Author(s): Tyler Hicks
  • Date: 2012-04-10 11:47:14 UTC
  • Revision ID: package-import@ubuntu.com-20120410114714-58t2h80wkcjx2v25
Tags: 2.7.1-1ubuntu3.6
* SECURITY UPDATE: Arbitrary file writes via predictable filename usage in
  appdmg and pkgdmg providers
  - debian/patches/CVE-2012-1906_CVE-2012-1986_to_CVE-2012-1989.patch
  - CVE-2012-1906
* SECURITY UPDATE: Arbitrary file reads via Filebucket REST requests
  - debian/patches/CVE-2012-1906_CVE-2012-1986_to_CVE-2012-1989.patch
  - CVE-2012-1986
* SECURITY UPDATE: Denial of service via Filebucket text/marshall support
  - debian/patches/CVE-2012-1906_CVE-2012-1986_to_CVE-2012-1989.patch
  - CVE-2012-1987
* SECURITY UPDATE: Arbitrary code execution via Filebucket requests
  - debian/patches/CVE-2012-1906_CVE-2012-1986_to_CVE-2012-1989.patch
  - CVE-2012-1988
* SECURITY UPDATE: Arbritrary file writes via predictable telnet output log
  filename
  - debian/patches/CVE-2012-1906_CVE-2012-1986_to_CVE-2012-1989.patch
  - CVE-2012-1989
* debian/patches/fix-unpredictable-hash-ordering-tests.patch: Fix testsuite
  failures caused by hash randomization in Ruby

expand all expand all

Show diffs side-by-side

added added

removed removed

Lines of Context: