[Touch-packages] [Bug 1396768] Re: pcre3 vulnerability CVE-2014, 2015
http://www.ubuntu.com/usn/usn-2694-1/ -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to pcre3 in Ubuntu. https://bugs.launchpad.net/bugs/1396768 Title: pcre3 vulnerability CVE-2014, 2015 Status in pcre3 package in Ubuntu: Fix Released Status in pcre3 source package in Precise: Fix Released Status in pcre3 source package in Trusty: Fix Released Status in pcre3 source package in Utopic: Fix Released Status in pcre3 source package in Vivid: Fix Released Bug description: SRU Justification [Impact] CVE-2014-8964 CVE-2015-2325 CVE-2015-2326 CVE-2015-3210 CVE-2015-5073 [Test Case] [Regression Potential] [Other Info] CVE-2014-8964 https://security-tracker.debian.org/tracker/CVE-2014-8964 https://bugzilla.redhat.com/show_bug.cgi?id=1166147 http://bugs.exim.org/show_bug.cgi?id=1546 Requires some heavy backporting to older releases, see: https://bugzilla.redhat.com/show_bug.cgi?id=1166147#c2. CVE-2015-2325 https://security-tracker.debian.org/tracker/CVE-2015-2325 http://bugs.exim.org/show_bug.cgi?id=1591 http://vcs.pcre.org/pcre?view=revisionrevision=1528 CVE-2015-2326 https://security-tracker.debian.org/tracker/CVE-2015-2326 http://bugs.exim.org/show_bug.cgi?id=1592 http://vcs.pcre.org/pcre?view=revisionrevision=1529 CVE-2015-3210 https://security-tracker.debian.org/tracker/CVE-2015-3210 https://bugs.exim.org/show_bug.cgi?id=1636 http://vcs.pcre.org/pcre?view=revisionrevision=1558 CVE-2015-5073 https://security-tracker.debian.org/tracker/CVE-2015-5073 https://bugs.exim.org/show_bug.cgi?id=1651 http://vcs.pcre.org/pcre?view=revisionrevision=1571 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/pcre3/+bug/1396768/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1396768] Re: pcre3 vulnerability CVE-2014, 2015
** Changed in: pcre3 (Ubuntu Precise) Status: In Progress = Fix Released ** Changed in: pcre3 (Ubuntu Trusty) Status: In Progress = Fix Released ** Changed in: pcre3 (Ubuntu Utopic) Status: In Progress = Fix Released ** Changed in: pcre3 (Ubuntu Vivid) Status: In Progress = Fix Released -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to pcre3 in Ubuntu. https://bugs.launchpad.net/bugs/1396768 Title: pcre3 vulnerability CVE-2014, 2015 Status in pcre3 package in Ubuntu: Fix Released Status in pcre3 source package in Precise: Fix Released Status in pcre3 source package in Trusty: Fix Released Status in pcre3 source package in Utopic: Fix Released Status in pcre3 source package in Vivid: Fix Released Bug description: SRU Justification [Impact] CVE-2014-8964 CVE-2015-2325 CVE-2015-2326 CVE-2015-3210 CVE-2015-5073 [Test Case] [Regression Potential] [Other Info] CVE-2014-8964 https://security-tracker.debian.org/tracker/CVE-2014-8964 https://bugzilla.redhat.com/show_bug.cgi?id=1166147 http://bugs.exim.org/show_bug.cgi?id=1546 Requires some heavy backporting to older releases, see: https://bugzilla.redhat.com/show_bug.cgi?id=1166147#c2. CVE-2015-2325 https://security-tracker.debian.org/tracker/CVE-2015-2325 http://bugs.exim.org/show_bug.cgi?id=1591 http://vcs.pcre.org/pcre?view=revisionrevision=1528 CVE-2015-2326 https://security-tracker.debian.org/tracker/CVE-2015-2326 http://bugs.exim.org/show_bug.cgi?id=1592 http://vcs.pcre.org/pcre?view=revisionrevision=1529 CVE-2015-3210 https://security-tracker.debian.org/tracker/CVE-2015-3210 https://bugs.exim.org/show_bug.cgi?id=1636 http://vcs.pcre.org/pcre?view=revisionrevision=1558 CVE-2015-5073 https://security-tracker.debian.org/tracker/CVE-2015-5073 https://bugs.exim.org/show_bug.cgi?id=1651 http://vcs.pcre.org/pcre?view=revisionrevision=1571 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/pcre3/+bug/1396768/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1396768] Re: pcre3 vulnerability CVE-2014, 2015
OK, I've fixed the test suite and have uploaded it to the PPA. I have also uploaded a package for precise. I will release the packages as security updates next week once I have tested them. Thanks! ** Changed in: pcre3 (Ubuntu Precise) Assignee: (unassigned) = Marc Deslauriers (mdeslaur) ** Changed in: pcre3 (Ubuntu Precise) Status: New = In Progress ** Changed in: pcre3 (Ubuntu) Status: In Progress = Fix Released -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to pcre3 in Ubuntu. https://bugs.launchpad.net/bugs/1396768 Title: pcre3 vulnerability CVE-2014, 2015 Status in pcre3 package in Ubuntu: Fix Released Status in pcre3 source package in Precise: In Progress Status in pcre3 source package in Trusty: In Progress Status in pcre3 source package in Utopic: In Progress Status in pcre3 source package in Vivid: In Progress Bug description: SRU Justification [Impact] CVE-2014-8964 CVE-2015-2325 CVE-2015-2326 CVE-2015-3210 CVE-2015-5073 [Test Case] [Regression Potential] [Other Info] CVE-2014-8964 https://security-tracker.debian.org/tracker/CVE-2014-8964 https://bugzilla.redhat.com/show_bug.cgi?id=1166147 http://bugs.exim.org/show_bug.cgi?id=1546 Requires some heavy backporting to older releases, see: https://bugzilla.redhat.com/show_bug.cgi?id=1166147#c2. CVE-2015-2325 https://security-tracker.debian.org/tracker/CVE-2015-2325 http://bugs.exim.org/show_bug.cgi?id=1591 http://vcs.pcre.org/pcre?view=revisionrevision=1528 CVE-2015-2326 https://security-tracker.debian.org/tracker/CVE-2015-2326 http://bugs.exim.org/show_bug.cgi?id=1592 http://vcs.pcre.org/pcre?view=revisionrevision=1529 CVE-2015-3210 https://security-tracker.debian.org/tracker/CVE-2015-3210 https://bugs.exim.org/show_bug.cgi?id=1636 http://vcs.pcre.org/pcre?view=revisionrevision=1558 CVE-2015-5073 https://security-tracker.debian.org/tracker/CVE-2015-5073 https://bugs.exim.org/show_bug.cgi?id=1651 http://vcs.pcre.org/pcre?view=revisionrevision=1571 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/pcre3/+bug/1396768/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1396768] Re: pcre3 vulnerability CVE-2014, 2015
@mdeslaur Nope. but I got an error in current trusty pkg without my patch you could also check current trusty pkg ### Test 2: API, errors, internals, and non-Perl stuff (not UTF-8) --- ./testdata/testoutput2 2012-06-02 02:53:58.0 +0900 +++ testtry 2015-07-24 10:54:21.374674333 +0900 @@ -5794,13 +5794,16 @@ No match /a{}/I -Failed: number too big in {} quantifier at offset 22 +Capturing subpattern count = 0 +No options +First char = 'a' +No need char /(){64294967295}/I -Failed: number too big in {} quantifier at offset 14 +Failed: regular expression is too large at offset 15 /(){2,4294967295}/I -Failed: number too big in {} quantifier at offset 15 +Failed: numbers out of order in {} quantifier at offset 15 (?i:a)(?i:b)(?i:c)(?i:d)(?i:e)(?i:f)(?i:g)(?i:h)(?i:i)(?i:j)(k)(?i:l)A\1BI Capturing subpattern count = 1 -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to pcre3 in Ubuntu. https://bugs.launchpad.net/bugs/1396768 Title: pcre3 vulnerability CVE-2014, 2015 Status in pcre3 package in Ubuntu: In Progress Status in pcre3 source package in Precise: New Status in pcre3 source package in Trusty: In Progress Status in pcre3 source package in Utopic: In Progress Status in pcre3 source package in Vivid: In Progress Bug description: SRU Justification [Impact] CVE-2014-8964 CVE-2015-2325 CVE-2015-2326 CVE-2015-3210 CVE-2015-5073 [Test Case] [Regression Potential] [Other Info] CVE-2014-8964 https://security-tracker.debian.org/tracker/CVE-2014-8964 https://bugzilla.redhat.com/show_bug.cgi?id=1166147 http://bugs.exim.org/show_bug.cgi?id=1546 Requires some heavy backporting to older releases, see: https://bugzilla.redhat.com/show_bug.cgi?id=1166147#c2. CVE-2015-2325 https://security-tracker.debian.org/tracker/CVE-2015-2325 http://bugs.exim.org/show_bug.cgi?id=1591 http://vcs.pcre.org/pcre?view=revisionrevision=1528 CVE-2015-2326 https://security-tracker.debian.org/tracker/CVE-2015-2326 http://bugs.exim.org/show_bug.cgi?id=1592 http://vcs.pcre.org/pcre?view=revisionrevision=1529 CVE-2015-3210 https://security-tracker.debian.org/tracker/CVE-2015-3210 https://bugs.exim.org/show_bug.cgi?id=1636 http://vcs.pcre.org/pcre?view=revisionrevision=1558 CVE-2015-5073 https://security-tracker.debian.org/tracker/CVE-2015-5073 https://bugs.exim.org/show_bug.cgi?id=1651 http://vcs.pcre.org/pcre?view=revisionrevision=1571 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/pcre3/+bug/1396768/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1396768] Re: pcre3 vulnerability CVE-2014, 2015
The trusty debdiff looks good, but it's failing to compile for me with the following: Testsuite summary for PCRE 8.31 # TOTAL: 5 # PASS: 4 # SKIP: 0 # XFAIL: 0 # FAIL: 1 # XPASS: 0 # ERROR: 0 Have you gotten it to compile successfully? -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to pcre3 in Ubuntu. https://bugs.launchpad.net/bugs/1396768 Title: pcre3 vulnerability CVE-2014, 2015 Status in pcre3 package in Ubuntu: In Progress Status in pcre3 source package in Precise: New Status in pcre3 source package in Trusty: In Progress Status in pcre3 source package in Utopic: In Progress Status in pcre3 source package in Vivid: In Progress Bug description: SRU Justification [Impact] CVE-2014-8964 CVE-2015-2325 CVE-2015-2326 CVE-2015-3210 CVE-2015-5073 [Test Case] [Regression Potential] [Other Info] CVE-2014-8964 https://security-tracker.debian.org/tracker/CVE-2014-8964 https://bugzilla.redhat.com/show_bug.cgi?id=1166147 http://bugs.exim.org/show_bug.cgi?id=1546 Requires some heavy backporting to older releases, see: https://bugzilla.redhat.com/show_bug.cgi?id=1166147#c2. CVE-2015-2325 https://security-tracker.debian.org/tracker/CVE-2015-2325 http://bugs.exim.org/show_bug.cgi?id=1591 http://vcs.pcre.org/pcre?view=revisionrevision=1528 CVE-2015-2326 https://security-tracker.debian.org/tracker/CVE-2015-2326 http://bugs.exim.org/show_bug.cgi?id=1592 http://vcs.pcre.org/pcre?view=revisionrevision=1529 CVE-2015-3210 https://security-tracker.debian.org/tracker/CVE-2015-3210 https://bugs.exim.org/show_bug.cgi?id=1636 http://vcs.pcre.org/pcre?view=revisionrevision=1558 CVE-2015-5073 https://security-tracker.debian.org/tracker/CVE-2015-5073 https://bugs.exim.org/show_bug.cgi?id=1651 http://vcs.pcre.org/pcre?view=revisionrevision=1571 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/pcre3/+bug/1396768/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1396768] Re: pcre3 vulnerability CVE-2014, 2015
Forget my trusty comment, I wasn't looking at the right debdiff. -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to pcre3 in Ubuntu. https://bugs.launchpad.net/bugs/1396768 Title: pcre3 vulnerability CVE-2014, 2015 Status in pcre3 package in Ubuntu: In Progress Status in pcre3 source package in Precise: New Status in pcre3 source package in Trusty: In Progress Status in pcre3 source package in Utopic: In Progress Status in pcre3 source package in Vivid: In Progress Bug description: SRU Justification [Impact] CVE-2014-8964 CVE-2015-2325 CVE-2015-2326 CVE-2015-3210 CVE-2015-5073 [Test Case] [Regression Potential] [Other Info] CVE-2014-8964 https://security-tracker.debian.org/tracker/CVE-2014-8964 https://bugzilla.redhat.com/show_bug.cgi?id=1166147 http://bugs.exim.org/show_bug.cgi?id=1546 Requires some heavy backporting to older releases, see: https://bugzilla.redhat.com/show_bug.cgi?id=1166147#c2. CVE-2015-2325 https://security-tracker.debian.org/tracker/CVE-2015-2325 http://bugs.exim.org/show_bug.cgi?id=1591 http://vcs.pcre.org/pcre?view=revisionrevision=1528 CVE-2015-2326 https://security-tracker.debian.org/tracker/CVE-2015-2326 http://bugs.exim.org/show_bug.cgi?id=1592 http://vcs.pcre.org/pcre?view=revisionrevision=1529 CVE-2015-3210 https://security-tracker.debian.org/tracker/CVE-2015-3210 https://bugs.exim.org/show_bug.cgi?id=1636 http://vcs.pcre.org/pcre?view=revisionrevision=1558 CVE-2015-5073 https://security-tracker.debian.org/tracker/CVE-2015-5073 https://bugs.exim.org/show_bug.cgi?id=1651 http://vcs.pcre.org/pcre?view=revisionrevision=1571 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/pcre3/+bug/1396768/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1396768] Re: pcre3 vulnerability CVE-2014, 2015
ACK on the wily and vivid debdiffs. I've slightly adjusted the vivid versioning and have removed the extra lines in the changelog. Wily is uploaded to the archive, and vivid is uploaded here, awaiting the other releases: https://launchpad.net/~ubuntu-security- proposed/+archive/ubuntu/ppa/+packages For trusty, CVE-2014-8964 is missing. Red Hat has a backport available here: https://bugzilla.redhat.com/show_bug.cgi?id=1166147#c8 Are you planning on working on precise also? ** Bug watch added: Red Hat Bugzilla #1166147 https://bugzilla.redhat.com/show_bug.cgi?id=1166147 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2014-8964 -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to pcre3 in Ubuntu. https://bugs.launchpad.net/bugs/1396768 Title: pcre3 vulnerability CVE-2014, 2015 Status in pcre3 package in Ubuntu: In Progress Status in pcre3 source package in Precise: New Status in pcre3 source package in Trusty: In Progress Status in pcre3 source package in Utopic: In Progress Status in pcre3 source package in Vivid: In Progress Bug description: SRU Justification [Impact] CVE-2014-8964 CVE-2015-2325 CVE-2015-2326 CVE-2015-3210 CVE-2015-5073 [Test Case] [Regression Potential] [Other Info] CVE-2014-8964 https://security-tracker.debian.org/tracker/CVE-2014-8964 https://bugzilla.redhat.com/show_bug.cgi?id=1166147 http://bugs.exim.org/show_bug.cgi?id=1546 Requires some heavy backporting to older releases, see: https://bugzilla.redhat.com/show_bug.cgi?id=1166147#c2. CVE-2015-2325 https://security-tracker.debian.org/tracker/CVE-2015-2325 http://bugs.exim.org/show_bug.cgi?id=1591 http://vcs.pcre.org/pcre?view=revisionrevision=1528 CVE-2015-2326 https://security-tracker.debian.org/tracker/CVE-2015-2326 http://bugs.exim.org/show_bug.cgi?id=1592 http://vcs.pcre.org/pcre?view=revisionrevision=1529 CVE-2015-3210 https://security-tracker.debian.org/tracker/CVE-2015-3210 https://bugs.exim.org/show_bug.cgi?id=1636 http://vcs.pcre.org/pcre?view=revisionrevision=1558 CVE-2015-5073 https://security-tracker.debian.org/tracker/CVE-2015-5073 https://bugs.exim.org/show_bug.cgi?id=1651 http://vcs.pcre.org/pcre?view=revisionrevision=1571 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/pcre3/+bug/1396768/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1396768] Re: pcre3 vulnerability CVE-2014, 2015
** Changed in: pcre3 (Ubuntu Vivid) Status: New = In Progress ** Changed in: pcre3 (Ubuntu Vivid) Assignee: (unassigned) = Seyeong Kim (xtrusia) -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to pcre3 in Ubuntu. https://bugs.launchpad.net/bugs/1396768 Title: pcre3 vulnerability CVE-2014, 2015 Status in pcre3 package in Ubuntu: In Progress Status in pcre3 source package in Precise: New Status in pcre3 source package in Trusty: In Progress Status in pcre3 source package in Utopic: In Progress Status in pcre3 source package in Vivid: In Progress Bug description: SRU Justification [Impact] CVE-2014-8964 CVE-2015-2325 CVE-2015-2326 CVE-2015-3210 CVE-2015-5073 [Test Case] [Regression Potential] [Other Info] CVE-2014-8964 https://security-tracker.debian.org/tracker/CVE-2014-8964 https://bugzilla.redhat.com/show_bug.cgi?id=1166147 http://bugs.exim.org/show_bug.cgi?id=1546 Requires some heavy backporting to older releases, see: https://bugzilla.redhat.com/show_bug.cgi?id=1166147#c2. CVE-2015-2325 https://security-tracker.debian.org/tracker/CVE-2015-2325 http://bugs.exim.org/show_bug.cgi?id=1591 http://vcs.pcre.org/pcre?view=revisionrevision=1528 CVE-2015-2326 https://security-tracker.debian.org/tracker/CVE-2015-2326 http://bugs.exim.org/show_bug.cgi?id=1592 http://vcs.pcre.org/pcre?view=revisionrevision=1529 CVE-2015-3210 https://security-tracker.debian.org/tracker/CVE-2015-3210 https://bugs.exim.org/show_bug.cgi?id=1636 http://vcs.pcre.org/pcre?view=revisionrevision=1558 CVE-2015-5073 https://security-tracker.debian.org/tracker/CVE-2015-5073 https://bugs.exim.org/show_bug.cgi?id=1651 http://vcs.pcre.org/pcre?view=revisionrevision=1571 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/pcre3/+bug/1396768/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1396768] Re: pcre3 vulnerability CVE-2014, 2015
** Patch removed: utopic-pcre3-cve-2014,2015.debdiff https://bugs.launchpad.net/ubuntu/trusty/+source/pcre3/+bug/1396768/+attachment/4431959/+files/utopic-pcre3-cve-2014%2C2015.debdiff ** Patch added: utopic-pcre3-cve-2014,2015.debdiff https://bugs.launchpad.net/ubuntu/trusty/+source/pcre3/+bug/1396768/+attachment/4432266/+files/utopic-pcre3-cve-2014%2C2015.debdiff -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to pcre3 in Ubuntu. https://bugs.launchpad.net/bugs/1396768 Title: pcre3 vulnerability CVE-2014, 2015 Status in pcre3 package in Ubuntu: In Progress Status in pcre3 source package in Precise: New Status in pcre3 source package in Trusty: In Progress Status in pcre3 source package in Utopic: In Progress Status in pcre3 source package in Vivid: In Progress Bug description: SRU Justification [Impact] CVE-2014-8964 CVE-2015-2325 CVE-2015-2326 CVE-2015-3210 CVE-2015-5073 [Test Case] [Regression Potential] [Other Info] CVE-2014-8964 https://security-tracker.debian.org/tracker/CVE-2014-8964 https://bugzilla.redhat.com/show_bug.cgi?id=1166147 http://bugs.exim.org/show_bug.cgi?id=1546 Requires some heavy backporting to older releases, see: https://bugzilla.redhat.com/show_bug.cgi?id=1166147#c2. CVE-2015-2325 https://security-tracker.debian.org/tracker/CVE-2015-2325 http://bugs.exim.org/show_bug.cgi?id=1591 http://vcs.pcre.org/pcre?view=revisionrevision=1528 CVE-2015-2326 https://security-tracker.debian.org/tracker/CVE-2015-2326 http://bugs.exim.org/show_bug.cgi?id=1592 http://vcs.pcre.org/pcre?view=revisionrevision=1529 CVE-2015-3210 https://security-tracker.debian.org/tracker/CVE-2015-3210 https://bugs.exim.org/show_bug.cgi?id=1636 http://vcs.pcre.org/pcre?view=revisionrevision=1558 CVE-2015-5073 https://security-tracker.debian.org/tracker/CVE-2015-5073 https://bugs.exim.org/show_bug.cgi?id=1651 http://vcs.pcre.org/pcre?view=revisionrevision=1571 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/pcre3/+bug/1396768/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1396768] Re: pcre3 vulnerability CVE-2014, 2015
** Patch removed: trusty-pcre3-cve-2014,2015.debdiff https://bugs.launchpad.net/ubuntu/trusty/+source/pcre3/+bug/1396768/+attachment/4432259/+files/trusty-pcre3-cve-2014%2C2015.debdiff ** Patch added: trusty-pcre3-cve-2014,2015.debdiff https://bugs.launchpad.net/ubuntu/trusty/+source/pcre3/+bug/1396768/+attachment/4432260/+files/trusty-pcre3-cve-2014%2C2015.debdiff ** Patch removed: vivid-pcre3-cve-2015.debdiff https://bugs.launchpad.net/ubuntu/trusty/+source/pcre3/+bug/1396768/+attachment/4431960/+files/vivid-pcre3-cve-2015.debdiff -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to pcre3 in Ubuntu. https://bugs.launchpad.net/bugs/1396768 Title: pcre3 vulnerability CVE-2014, 2015 Status in pcre3 package in Ubuntu: In Progress Status in pcre3 source package in Precise: New Status in pcre3 source package in Trusty: In Progress Status in pcre3 source package in Utopic: In Progress Status in pcre3 source package in Vivid: In Progress Bug description: SRU Justification [Impact] CVE-2014-8964 CVE-2015-2325 CVE-2015-2326 CVE-2015-3210 CVE-2015-5073 [Test Case] [Regression Potential] [Other Info] CVE-2014-8964 https://security-tracker.debian.org/tracker/CVE-2014-8964 https://bugzilla.redhat.com/show_bug.cgi?id=1166147 http://bugs.exim.org/show_bug.cgi?id=1546 Requires some heavy backporting to older releases, see: https://bugzilla.redhat.com/show_bug.cgi?id=1166147#c2. CVE-2015-2325 https://security-tracker.debian.org/tracker/CVE-2015-2325 http://bugs.exim.org/show_bug.cgi?id=1591 http://vcs.pcre.org/pcre?view=revisionrevision=1528 CVE-2015-2326 https://security-tracker.debian.org/tracker/CVE-2015-2326 http://bugs.exim.org/show_bug.cgi?id=1592 http://vcs.pcre.org/pcre?view=revisionrevision=1529 CVE-2015-3210 https://security-tracker.debian.org/tracker/CVE-2015-3210 https://bugs.exim.org/show_bug.cgi?id=1636 http://vcs.pcre.org/pcre?view=revisionrevision=1558 CVE-2015-5073 https://security-tracker.debian.org/tracker/CVE-2015-5073 https://bugs.exim.org/show_bug.cgi?id=1651 http://vcs.pcre.org/pcre?view=revisionrevision=1571 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/pcre3/+bug/1396768/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1396768] Re: pcre3 vulnerability CVE-2014, 2015
** Patch added: trusty-pcre3-cve-2014,2015.debdiff https://bugs.launchpad.net/ubuntu/trusty/+source/pcre3/+bug/1396768/+attachment/4432259/+files/trusty-pcre3-cve-2014%2C2015.debdiff -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to pcre3 in Ubuntu. https://bugs.launchpad.net/bugs/1396768 Title: pcre3 vulnerability CVE-2014, 2015 Status in pcre3 package in Ubuntu: In Progress Status in pcre3 source package in Precise: New Status in pcre3 source package in Trusty: In Progress Status in pcre3 source package in Utopic: In Progress Status in pcre3 source package in Vivid: In Progress Bug description: SRU Justification [Impact] CVE-2014-8964 CVE-2015-2325 CVE-2015-2326 CVE-2015-3210 CVE-2015-5073 [Test Case] [Regression Potential] [Other Info] CVE-2014-8964 https://security-tracker.debian.org/tracker/CVE-2014-8964 https://bugzilla.redhat.com/show_bug.cgi?id=1166147 http://bugs.exim.org/show_bug.cgi?id=1546 Requires some heavy backporting to older releases, see: https://bugzilla.redhat.com/show_bug.cgi?id=1166147#c2. CVE-2015-2325 https://security-tracker.debian.org/tracker/CVE-2015-2325 http://bugs.exim.org/show_bug.cgi?id=1591 http://vcs.pcre.org/pcre?view=revisionrevision=1528 CVE-2015-2326 https://security-tracker.debian.org/tracker/CVE-2015-2326 http://bugs.exim.org/show_bug.cgi?id=1592 http://vcs.pcre.org/pcre?view=revisionrevision=1529 CVE-2015-3210 https://security-tracker.debian.org/tracker/CVE-2015-3210 https://bugs.exim.org/show_bug.cgi?id=1636 http://vcs.pcre.org/pcre?view=revisionrevision=1558 CVE-2015-5073 https://security-tracker.debian.org/tracker/CVE-2015-5073 https://bugs.exim.org/show_bug.cgi?id=1651 http://vcs.pcre.org/pcre?view=revisionrevision=1571 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/pcre3/+bug/1396768/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1396768] Re: pcre3 vulnerability CVE-2014, 2015
** Patch added: vivid-pcre3-cve-2015.debdiff https://bugs.launchpad.net/ubuntu/trusty/+source/pcre3/+bug/1396768/+attachment/4432263/+files/vivid-pcre3-cve-2015.debdiff -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to pcre3 in Ubuntu. https://bugs.launchpad.net/bugs/1396768 Title: pcre3 vulnerability CVE-2014, 2015 Status in pcre3 package in Ubuntu: In Progress Status in pcre3 source package in Precise: New Status in pcre3 source package in Trusty: In Progress Status in pcre3 source package in Utopic: In Progress Status in pcre3 source package in Vivid: In Progress Bug description: SRU Justification [Impact] CVE-2014-8964 CVE-2015-2325 CVE-2015-2326 CVE-2015-3210 CVE-2015-5073 [Test Case] [Regression Potential] [Other Info] CVE-2014-8964 https://security-tracker.debian.org/tracker/CVE-2014-8964 https://bugzilla.redhat.com/show_bug.cgi?id=1166147 http://bugs.exim.org/show_bug.cgi?id=1546 Requires some heavy backporting to older releases, see: https://bugzilla.redhat.com/show_bug.cgi?id=1166147#c2. CVE-2015-2325 https://security-tracker.debian.org/tracker/CVE-2015-2325 http://bugs.exim.org/show_bug.cgi?id=1591 http://vcs.pcre.org/pcre?view=revisionrevision=1528 CVE-2015-2326 https://security-tracker.debian.org/tracker/CVE-2015-2326 http://bugs.exim.org/show_bug.cgi?id=1592 http://vcs.pcre.org/pcre?view=revisionrevision=1529 CVE-2015-3210 https://security-tracker.debian.org/tracker/CVE-2015-3210 https://bugs.exim.org/show_bug.cgi?id=1636 http://vcs.pcre.org/pcre?view=revisionrevision=1558 CVE-2015-5073 https://security-tracker.debian.org/tracker/CVE-2015-5073 https://bugs.exim.org/show_bug.cgi?id=1651 http://vcs.pcre.org/pcre?view=revisionrevision=1571 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/pcre3/+bug/1396768/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1396768] Re: pcre3 vulnerability CVE-2014, 2015
-- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to pcre3 in Ubuntu. https://bugs.launchpad.net/bugs/1396768 Title: pcre3 vulnerability CVE-2014, 2015 Status in pcre3 package in Ubuntu: In Progress Status in pcre3 source package in Precise: New Status in pcre3 source package in Trusty: In Progress Status in pcre3 source package in Utopic: In Progress Status in pcre3 source package in Vivid: In Progress Bug description: SRU Justification [Impact] CVE-2014-8964 CVE-2015-2325 CVE-2015-2326 CVE-2015-3210 CVE-2015-5073 [Test Case] [Regression Potential] [Other Info] CVE-2014-8964 https://security-tracker.debian.org/tracker/CVE-2014-8964 https://bugzilla.redhat.com/show_bug.cgi?id=1166147 http://bugs.exim.org/show_bug.cgi?id=1546 Requires some heavy backporting to older releases, see: https://bugzilla.redhat.com/show_bug.cgi?id=1166147#c2. CVE-2015-2325 https://security-tracker.debian.org/tracker/CVE-2015-2325 http://bugs.exim.org/show_bug.cgi?id=1591 http://vcs.pcre.org/pcre?view=revisionrevision=1528 CVE-2015-2326 https://security-tracker.debian.org/tracker/CVE-2015-2326 http://bugs.exim.org/show_bug.cgi?id=1592 http://vcs.pcre.org/pcre?view=revisionrevision=1529 CVE-2015-3210 https://security-tracker.debian.org/tracker/CVE-2015-3210 https://bugs.exim.org/show_bug.cgi?id=1636 http://vcs.pcre.org/pcre?view=revisionrevision=1558 CVE-2015-5073 https://security-tracker.debian.org/tracker/CVE-2015-5073 https://bugs.exim.org/show_bug.cgi?id=1651 http://vcs.pcre.org/pcre?view=revisionrevision=1571 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/pcre3/+bug/1396768/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1396768] Re: pcre3 vulnerability CVE-2014, 2015
** Patch removed: wily-cve-2015.debdiff https://bugs.launchpad.net/ubuntu/trusty/+source/pcre3/+bug/1396768/+attachment/4431778/+files/wily-cve-2015.debdiff ** Patch added: wily-pcre3-cve-2015.debdiff https://bugs.launchpad.net/ubuntu/trusty/+source/pcre3/+bug/1396768/+attachment/4431846/+files/wily-pcre3-cve-2015.debdiff -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to pcre3 in Ubuntu. https://bugs.launchpad.net/bugs/1396768 Title: pcre3 vulnerability CVE-2014, 2015 Status in pcre3 package in Ubuntu: In Progress Status in pcre3 source package in Precise: New Status in pcre3 source package in Trusty: In Progress Status in pcre3 source package in Utopic: In Progress Bug description: SRU Justification [Impact] CVE-2014-8964 CVE-2015-2325 CVE-2015-2326 CVE-2015-3210 CVE-2015-5073 [Test Case] [Regression Potential] [Other Info] CVE-2014-8964 https://security-tracker.debian.org/tracker/CVE-2014-8964 https://bugzilla.redhat.com/show_bug.cgi?id=1166147 http://bugs.exim.org/show_bug.cgi?id=1546 Requires some heavy backporting to older releases, see: https://bugzilla.redhat.com/show_bug.cgi?id=1166147#c2. CVE-2015-2325 https://security-tracker.debian.org/tracker/CVE-2015-2325 http://bugs.exim.org/show_bug.cgi?id=1591 http://vcs.pcre.org/pcre?view=revisionrevision=1528 CVE-2015-2326 https://security-tracker.debian.org/tracker/CVE-2015-2326 http://bugs.exim.org/show_bug.cgi?id=1592 http://vcs.pcre.org/pcre?view=revisionrevision=1529 CVE-2015-3210 https://security-tracker.debian.org/tracker/CVE-2015-3210 https://bugs.exim.org/show_bug.cgi?id=1636 http://vcs.pcre.org/pcre?view=revisionrevision=1558 CVE-2015-5073 https://security-tracker.debian.org/tracker/CVE-2015-5073 https://bugs.exim.org/show_bug.cgi?id=1651 http://vcs.pcre.org/pcre?view=revisionrevision=1571 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/pcre3/+bug/1396768/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1396768] Re: pcre3 vulnerability CVE-2014, 2015
** Patch added: utopic-pcre3-cve-2014,2015.debdiff https://bugs.launchpad.net/ubuntu/trusty/+source/pcre3/+bug/1396768/+attachment/4431922/+files/utopic-pcre3-cve-2014%2C2015.debdiff -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to pcre3 in Ubuntu. https://bugs.launchpad.net/bugs/1396768 Title: pcre3 vulnerability CVE-2014, 2015 Status in pcre3 package in Ubuntu: In Progress Status in pcre3 source package in Precise: New Status in pcre3 source package in Trusty: In Progress Status in pcre3 source package in Utopic: In Progress Status in pcre3 source package in Vivid: New Bug description: SRU Justification [Impact] CVE-2014-8964 CVE-2015-2325 CVE-2015-2326 CVE-2015-3210 CVE-2015-5073 [Test Case] [Regression Potential] [Other Info] CVE-2014-8964 https://security-tracker.debian.org/tracker/CVE-2014-8964 https://bugzilla.redhat.com/show_bug.cgi?id=1166147 http://bugs.exim.org/show_bug.cgi?id=1546 Requires some heavy backporting to older releases, see: https://bugzilla.redhat.com/show_bug.cgi?id=1166147#c2. CVE-2015-2325 https://security-tracker.debian.org/tracker/CVE-2015-2325 http://bugs.exim.org/show_bug.cgi?id=1591 http://vcs.pcre.org/pcre?view=revisionrevision=1528 CVE-2015-2326 https://security-tracker.debian.org/tracker/CVE-2015-2326 http://bugs.exim.org/show_bug.cgi?id=1592 http://vcs.pcre.org/pcre?view=revisionrevision=1529 CVE-2015-3210 https://security-tracker.debian.org/tracker/CVE-2015-3210 https://bugs.exim.org/show_bug.cgi?id=1636 http://vcs.pcre.org/pcre?view=revisionrevision=1558 CVE-2015-5073 https://security-tracker.debian.org/tracker/CVE-2015-5073 https://bugs.exim.org/show_bug.cgi?id=1651 http://vcs.pcre.org/pcre?view=revisionrevision=1571 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/pcre3/+bug/1396768/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1396768] Re: pcre3 vulnerability CVE-2014, 2015
** Patch added: vivid-pcre3-cve-2015.debdiff https://bugs.launchpad.net/ubuntu/trusty/+source/pcre3/+bug/1396768/+attachment/4431921/+files/vivid-pcre3-cve-2015.debdiff -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to pcre3 in Ubuntu. https://bugs.launchpad.net/bugs/1396768 Title: pcre3 vulnerability CVE-2014, 2015 Status in pcre3 package in Ubuntu: In Progress Status in pcre3 source package in Precise: New Status in pcre3 source package in Trusty: In Progress Status in pcre3 source package in Utopic: In Progress Status in pcre3 source package in Vivid: New Bug description: SRU Justification [Impact] CVE-2014-8964 CVE-2015-2325 CVE-2015-2326 CVE-2015-3210 CVE-2015-5073 [Test Case] [Regression Potential] [Other Info] CVE-2014-8964 https://security-tracker.debian.org/tracker/CVE-2014-8964 https://bugzilla.redhat.com/show_bug.cgi?id=1166147 http://bugs.exim.org/show_bug.cgi?id=1546 Requires some heavy backporting to older releases, see: https://bugzilla.redhat.com/show_bug.cgi?id=1166147#c2. CVE-2015-2325 https://security-tracker.debian.org/tracker/CVE-2015-2325 http://bugs.exim.org/show_bug.cgi?id=1591 http://vcs.pcre.org/pcre?view=revisionrevision=1528 CVE-2015-2326 https://security-tracker.debian.org/tracker/CVE-2015-2326 http://bugs.exim.org/show_bug.cgi?id=1592 http://vcs.pcre.org/pcre?view=revisionrevision=1529 CVE-2015-3210 https://security-tracker.debian.org/tracker/CVE-2015-3210 https://bugs.exim.org/show_bug.cgi?id=1636 http://vcs.pcre.org/pcre?view=revisionrevision=1558 CVE-2015-5073 https://security-tracker.debian.org/tracker/CVE-2015-5073 https://bugs.exim.org/show_bug.cgi?id=1651 http://vcs.pcre.org/pcre?view=revisionrevision=1571 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/pcre3/+bug/1396768/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1396768] Re: pcre3 vulnerability CVE-2014, 2015
** Patch removed: utopic-pcre3-cve-2014,2015.debdiff https://bugs.launchpad.net/ubuntu/trusty/+source/pcre3/+bug/1396768/+attachment/4431922/+files/utopic-pcre3-cve-2014%2C2015.debdiff -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to pcre3 in Ubuntu. https://bugs.launchpad.net/bugs/1396768 Title: pcre3 vulnerability CVE-2014, 2015 Status in pcre3 package in Ubuntu: In Progress Status in pcre3 source package in Precise: New Status in pcre3 source package in Trusty: In Progress Status in pcre3 source package in Utopic: In Progress Status in pcre3 source package in Vivid: New Bug description: SRU Justification [Impact] CVE-2014-8964 CVE-2015-2325 CVE-2015-2326 CVE-2015-3210 CVE-2015-5073 [Test Case] [Regression Potential] [Other Info] CVE-2014-8964 https://security-tracker.debian.org/tracker/CVE-2014-8964 https://bugzilla.redhat.com/show_bug.cgi?id=1166147 http://bugs.exim.org/show_bug.cgi?id=1546 Requires some heavy backporting to older releases, see: https://bugzilla.redhat.com/show_bug.cgi?id=1166147#c2. CVE-2015-2325 https://security-tracker.debian.org/tracker/CVE-2015-2325 http://bugs.exim.org/show_bug.cgi?id=1591 http://vcs.pcre.org/pcre?view=revisionrevision=1528 CVE-2015-2326 https://security-tracker.debian.org/tracker/CVE-2015-2326 http://bugs.exim.org/show_bug.cgi?id=1592 http://vcs.pcre.org/pcre?view=revisionrevision=1529 CVE-2015-3210 https://security-tracker.debian.org/tracker/CVE-2015-3210 https://bugs.exim.org/show_bug.cgi?id=1636 http://vcs.pcre.org/pcre?view=revisionrevision=1558 CVE-2015-5073 https://security-tracker.debian.org/tracker/CVE-2015-5073 https://bugs.exim.org/show_bug.cgi?id=1651 http://vcs.pcre.org/pcre?view=revisionrevision=1571 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/pcre3/+bug/1396768/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1396768] Re: pcre3 vulnerability CVE-2014, 2015
** Also affects: pcre3 (Ubuntu Vivid) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to pcre3 in Ubuntu. https://bugs.launchpad.net/bugs/1396768 Title: pcre3 vulnerability CVE-2014, 2015 Status in pcre3 package in Ubuntu: In Progress Status in pcre3 source package in Precise: New Status in pcre3 source package in Trusty: In Progress Status in pcre3 source package in Utopic: In Progress Status in pcre3 source package in Vivid: New Bug description: SRU Justification [Impact] CVE-2014-8964 CVE-2015-2325 CVE-2015-2326 CVE-2015-3210 CVE-2015-5073 [Test Case] [Regression Potential] [Other Info] CVE-2014-8964 https://security-tracker.debian.org/tracker/CVE-2014-8964 https://bugzilla.redhat.com/show_bug.cgi?id=1166147 http://bugs.exim.org/show_bug.cgi?id=1546 Requires some heavy backporting to older releases, see: https://bugzilla.redhat.com/show_bug.cgi?id=1166147#c2. CVE-2015-2325 https://security-tracker.debian.org/tracker/CVE-2015-2325 http://bugs.exim.org/show_bug.cgi?id=1591 http://vcs.pcre.org/pcre?view=revisionrevision=1528 CVE-2015-2326 https://security-tracker.debian.org/tracker/CVE-2015-2326 http://bugs.exim.org/show_bug.cgi?id=1592 http://vcs.pcre.org/pcre?view=revisionrevision=1529 CVE-2015-3210 https://security-tracker.debian.org/tracker/CVE-2015-3210 https://bugs.exim.org/show_bug.cgi?id=1636 http://vcs.pcre.org/pcre?view=revisionrevision=1558 CVE-2015-5073 https://security-tracker.debian.org/tracker/CVE-2015-5073 https://bugs.exim.org/show_bug.cgi?id=1651 http://vcs.pcre.org/pcre?view=revisionrevision=1571 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/pcre3/+bug/1396768/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1396768] Re: pcre3 vulnerability CVE-2014, 2015
** Patch added: utopic-pcre3-cve-2014,2015.debdiff https://bugs.launchpad.net/ubuntu/trusty/+source/pcre3/+bug/1396768/+attachment/4431959/+files/utopic-pcre3-cve-2014%2C2015.debdiff -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to pcre3 in Ubuntu. https://bugs.launchpad.net/bugs/1396768 Title: pcre3 vulnerability CVE-2014, 2015 Status in pcre3 package in Ubuntu: In Progress Status in pcre3 source package in Precise: New Status in pcre3 source package in Trusty: In Progress Status in pcre3 source package in Utopic: In Progress Status in pcre3 source package in Vivid: New Bug description: SRU Justification [Impact] CVE-2014-8964 CVE-2015-2325 CVE-2015-2326 CVE-2015-3210 CVE-2015-5073 [Test Case] [Regression Potential] [Other Info] CVE-2014-8964 https://security-tracker.debian.org/tracker/CVE-2014-8964 https://bugzilla.redhat.com/show_bug.cgi?id=1166147 http://bugs.exim.org/show_bug.cgi?id=1546 Requires some heavy backporting to older releases, see: https://bugzilla.redhat.com/show_bug.cgi?id=1166147#c2. CVE-2015-2325 https://security-tracker.debian.org/tracker/CVE-2015-2325 http://bugs.exim.org/show_bug.cgi?id=1591 http://vcs.pcre.org/pcre?view=revisionrevision=1528 CVE-2015-2326 https://security-tracker.debian.org/tracker/CVE-2015-2326 http://bugs.exim.org/show_bug.cgi?id=1592 http://vcs.pcre.org/pcre?view=revisionrevision=1529 CVE-2015-3210 https://security-tracker.debian.org/tracker/CVE-2015-3210 https://bugs.exim.org/show_bug.cgi?id=1636 http://vcs.pcre.org/pcre?view=revisionrevision=1558 CVE-2015-5073 https://security-tracker.debian.org/tracker/CVE-2015-5073 https://bugs.exim.org/show_bug.cgi?id=1651 http://vcs.pcre.org/pcre?view=revisionrevision=1571 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/pcre3/+bug/1396768/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1396768] Re: pcre3 vulnerability CVE-2014, 2015
** Patch removed: vivid-pcre3-cve-2015.debdiff https://bugs.launchpad.net/ubuntu/trusty/+source/pcre3/+bug/1396768/+attachment/4431921/+files/vivid-pcre3-cve-2015.debdiff ** Patch added: vivid-pcre3-cve-2015.debdiff https://bugs.launchpad.net/ubuntu/trusty/+source/pcre3/+bug/1396768/+attachment/4431960/+files/vivid-pcre3-cve-2015.debdiff -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to pcre3 in Ubuntu. https://bugs.launchpad.net/bugs/1396768 Title: pcre3 vulnerability CVE-2014, 2015 Status in pcre3 package in Ubuntu: In Progress Status in pcre3 source package in Precise: New Status in pcre3 source package in Trusty: In Progress Status in pcre3 source package in Utopic: In Progress Status in pcre3 source package in Vivid: New Bug description: SRU Justification [Impact] CVE-2014-8964 CVE-2015-2325 CVE-2015-2326 CVE-2015-3210 CVE-2015-5073 [Test Case] [Regression Potential] [Other Info] CVE-2014-8964 https://security-tracker.debian.org/tracker/CVE-2014-8964 https://bugzilla.redhat.com/show_bug.cgi?id=1166147 http://bugs.exim.org/show_bug.cgi?id=1546 Requires some heavy backporting to older releases, see: https://bugzilla.redhat.com/show_bug.cgi?id=1166147#c2. CVE-2015-2325 https://security-tracker.debian.org/tracker/CVE-2015-2325 http://bugs.exim.org/show_bug.cgi?id=1591 http://vcs.pcre.org/pcre?view=revisionrevision=1528 CVE-2015-2326 https://security-tracker.debian.org/tracker/CVE-2015-2326 http://bugs.exim.org/show_bug.cgi?id=1592 http://vcs.pcre.org/pcre?view=revisionrevision=1529 CVE-2015-3210 https://security-tracker.debian.org/tracker/CVE-2015-3210 https://bugs.exim.org/show_bug.cgi?id=1636 http://vcs.pcre.org/pcre?view=revisionrevision=1558 CVE-2015-5073 https://security-tracker.debian.org/tracker/CVE-2015-5073 https://bugs.exim.org/show_bug.cgi?id=1651 http://vcs.pcre.org/pcre?view=revisionrevision=1571 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/pcre3/+bug/1396768/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp