- Committer: Package Import Robot
- Date: 2014-06-27 11:06:38 UTC
- Revision ID: package-import@ubuntu.com-20140627110638-6q228886zh64vyyu
* SECURITY UPDATE: denial of service or arbitrary code execution via
sprintf
- debian/patches/CVE-2014-1545.patch: use snprintf and check values
without using PR_ASSERT in mozilla/nsprpub/pr/src/io/prprf.c, added
tests to mozilla/nsprpub/pr/tests/{Makefile.in,prfdbl.c}.
- CVE-2014-1545
sprintf
- debian/patches/CVE-2014-1545.patch: use snprintf and check values
without using PR_ASSERT in mozilla/nsprpub/pr/src/io/prprf.c, added
tests to mozilla/nsprpub/pr/tests/{Makefile.in,prfdbl.c}.
- CVE-2014-1545
| Filename | Latest Rev | Last Changed | Committer | Comment | Size | ||
|---|---|---|---|---|---|---|---|
 .. |
|||||||
.pc
|
27.1.1 | 11 years ago | Package Import Robot | * Merge from Debian unstable. Remaining changes: |
|
||
|
debian
|
2 | 17 years ago | Bazaar Package Importer | debian/rules: replace libnss3-0d (!) with libnspr4 |
|
||
|
mozilla
|
1 | 17 years ago | Bazaar Package Importer | Import upstream version 4.6.6 |
|
||