-
bzip2 (1.0.5-4ubuntu1.1) maverick-security; urgency=low
* SECURITY UPDATE: Fix temporary file creation race condition
- bzexe: Ensure link target is a regular file. Patch from vladz.
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=632862#5
- CVE-2011-4089
-- Tyler Hicks <email address hidden> Mon, 12 Dec 2011 11:32:00 -0600
-
bzip2 (1.0.5-4ubuntu1) maverick; urgency=low
* SECURITY UPDATE: fix integer overflow in BZ2_decompress()
- decompress.c: return error if N is larger than 2*1024^2 which keeps es
from overflowing but leaves enough room for the 900k maximum value of
the RUNA/RUNB encoding
- patch from upstream
- CVE-2010-0405
-- Jamie Strandboge <email address hidden> Thu, 09 Sep 2010 08:44:45 -0500
-
bzip2 (1.0.5-4) unstable; urgency=low
[Jorge Ernesto Guevara Cuenca]
* New co-maintainer. Jorge Ernesto Guevara Cuenca <email address hidden>
* Add -h and --help options to the manual page (Closes: 517257)
[Santiago Ruano Rincón]
* Move DEBIAN/md5sums to a macro and rewrite to be more robust using find |
xargs and to drop the broken chmod calls. Thank to Loïc Minier from
Ubuntu. (Closes: #565393)
-- Bhavani Shankar <email address hidden> Mon, 08 Feb 2010 10:23:49 +0000
