-
Committer:
Package Import Robot
-
Author(s):
Marc Deslauriers
-
Date:
2013-05-29 16:20:21 UTC
-
Revision ID:
package-import@ubuntu.com-20130529162021-3lprmq81e37wktmy
Tags: 2:1.4.99.1-0ubuntu2.1
* SECURITY UPDATE: denial of service and possible code execution via
incorrect memory size calculations
- debian/patches/CVE-2013-1981.patch: fix multiple integer overflows.
- CVE-2013-1981
* SECURITY UPDATE: denial of service and possible code execution via
incorrect length and bounds checking
- debian/patches/CVE-2013-1997.patch: properly calculate lengths.
- CVE-2013-1997
* SECURITY UPDATE: denial of service and possible code execution via
stack overflow from recursive #include
- debian/patches/CVE-2013-2004.patch: set limit on depth.
- CVE-2013-2004
* debian/patches/001_hide_xeatdatawords.diff: Hide _XEatDataWords by
default.