[Bug 1737364] Re: 16.04: Fix CVE-2016-1968 and CVE-2016-1624 for brotli
This bug was fixed in the package brotli - 0.3.0+dfsg-2ubuntu1 --- brotli (0.3.0+dfsg-2ubuntu1) xenial-security; urgency=medium * SECURITY UPDATE: integer underflow in dec/decode.c (LP: #1737364) - debian/patches/fix-integer-underflow.patch: upstream patch via Debian - CVE-2016-1624 - CVE-2016-1968 -- Jeremy BichaSat, 09 Dec 2017 17:45:50 -0500 ** Changed in: brotli (Ubuntu Xenial) Status: Fix Committed => Fix Released -- You received this bug notification because you are a member of Ubuntu Desktop Bugs, which is subscribed to brotli in Ubuntu. https://bugs.launchpad.net/bugs/1737364 Title: 16.04: Fix CVE-2016-1968 and CVE-2016-1624 for brotli To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/brotli/+bug/1737364/+subscriptions -- desktop-bugs mailing list desktop-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/desktop-bugs
[Bug 1737364] Re: 16.04: Fix CVE-2016-1968 and CVE-2016-1624 for brotli
ACK on the debdiff in comment #1. Package is building now and will be released as a security update. Thanks! ** Also affects: brotli (Ubuntu Xenial) Importance: Undecided Status: New ** Changed in: brotli (Ubuntu) Status: New => Fix Released ** Changed in: brotli (Ubuntu Xenial) Status: New => Fix Committed -- You received this bug notification because you are a member of Ubuntu Desktop Bugs, which is subscribed to brotli in Ubuntu. https://bugs.launchpad.net/bugs/1737364 Title: 16.04: Fix CVE-2016-1968 and CVE-2016-1624 for brotli To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/brotli/+bug/1737364/+subscriptions -- desktop-bugs mailing list desktop-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/desktop-bugs