This bug was fixed in the package glibc - 2.19-10ubuntu2.1
--------------- glibc (2.19-10ubuntu2.1) utopic-security; urgency=medium
* SECURITY UPDATE: denial of service in IBM gconv modules - debian/patches/any/cvs-CVE-2014-6040.diff: fix checks in iconvdata/ibm*.c. - CVE-2014-6040 * SECURITY UPDATE: arbitrary command execution via wordexp (LP: #1396471) - debian/patches/any/CVE-2014-7817.diff: properly handle WRDE_NOCMD in posix/wordexp.c, added tests to posix/wordexp-test.c. - CVE-2014-7817 -- Marc Deslauriers <email address hidden> Fri, 28 Nov 2014 10:48:58 -0500
This bug was fixed in the package glibc - 2.19-10ubuntu2.1
---------------
glibc (2.19-10ubuntu2.1) utopic-security; urgency=medium
* SECURITY UPDATE: denial of service in IBM gconv modules patches/ any/cvs- CVE-2014- 6040.diff: fix checks in /ibm*.c. patches/ any/CVE- 2014-7817. diff: properly handle WRDE_NOCMD in wordexp. c, added tests to posix/wordexp- test.c.
- debian/
iconvdata
- CVE-2014-6040
* SECURITY UPDATE: arbitrary command execution via wordexp (LP: #1396471)
- debian/
posix/
- CVE-2014-7817
-- Marc Deslauriers <email address hidden> Fri, 28 Nov 2014 10:48:58 -0500