-
Committer:
Package Import Robot
-
Author(s):
Marc Deslauriers
-
Date:
2014-07-18 13:36:06 UTC
-
Revision ID:
package-import@ubuntu.com-20140718133606-rbwewqxv3vcwcem2
Tags: 2.10-1ubuntu1.2
* SECURITY UPDATE: denial of service and possible code execution via
invalid ASN.1 data
- debian/patches/CVE-2014-3467-3468.patch: properly calculate lengths
in lib/decoding.c.
- CVE-2014-3467
- CVE-2014-3468
* SECURITY UPDATE: denial of service via NULL value
- debian/patches/CVE-2014-3469.patch: check for NULLs in lib/element.c.
- CVE-2014-3469