-
Committer:
Adam Conrad
-
Date:
2012-10-03 21:57:03 UTC
-
Revision ID:
adconrad@0c3.net-20121003215703-sjdo6x493hotl7oa
* SECURITY UPDATE: stack buffer overflow in vfprintf handling
(LP: #1031301)
- debian/patches/any/CVE-2012-3406.patch: switch to malloc when
array grows too large to handle via alloca extension
- CVE-2012-3406
* SECURITY UPDATE: stdlib strtod integer/buffer overflows
- debian/patches/any/CVE-2012-3480.patch: rearrange calculations
and modify types to void integer overflows
- CVE-2012-3480