-
openslp-dfsg (1.2.1-11ubuntu0.16.04.2) xenial-security; urgency=medium
* SECURITY UPDATE: heap overflow vulnerability
- debian/patches/CVE-2019-5544.patch: Prevent memcpy heap overflow in
slpd_process.c.
- debian/libslp1.symbols: Add RemainingBufferSpace@Base.
- CVE-2019-5544
-- Avital Ostromich <email address hidden> Tue, 13 Apr 2021 20:06:12 -0400
-
openslp-dfsg (1.2.1-11ubuntu0.16.04.1) xenial-security; urgency=medium
* SECURITY UPDATE: DoS or code exec via double-free
- debian/patches/CVE-2017-17833.patch: fix up local copy of pointer in
slpd/slpd_process.c.
- CVE-2017-17833
- CVE-2018-12938
-- Marc Deslauriers <email address hidden> Fri, 06 Jul 2018 13:15:34 -0400
-
openslp-dfsg (1.2.1-11) unstable; urgency=high
* QA upload from the Security Team
* Fix double free as per CVE-2015-5177
-- Alessandro Ghedini <email address hidden> Fri, 04 Sep 2015 11:20:40 +0200
-
openslp-dfsg (1.2.1-10ubuntu1) wily; urgency=medium
* SECURITY UPDATE: denial of service via double free flaw
- debian/patches/CVE-2015-5177.patch: fix double free if
SLPDKnownDAAdd() fails in slpd/slpd_knownda.c.
- CVE-2015-5177
-- Marc Deslauriers <email address hidden> Fri, 28 Aug 2015 15:27:38 -0400