-
Committer:
Package Import Robot
-
Author(s):
Felix Geyer
-
Date:
2015-05-01 18:30:44 UTC
-
Revision ID:
package-import@ubuntu.com-20150501183044-fb3mwvovq36ynh15
Tags: 0.10.0-0ubuntu2.2
* SECURITY UPDATE: stack consumption vulnerability in message splitting code
- debian/patches/CVE-2015-2778.patch: original patch from Michael Marley,
backported by Steinar H. Gunderson
- CVE-2015-2778 and CVE-2015-2779
* SECURITY UPDATE: SQL injection vulnerability in PostgreSQL backend
- debian/patches/CVE-2015-3427.patch: upstream patch
- CVE-2015-3427
- original issue was CVE-2013-4422 which had an incomplete fix
- LP: #1448911