openjdk-6 (6b20-1.9.7-0ubuntu1~10.04.1) lucid-security; urgency=low
* IcedTea6 1.9.7 release.
- SECURITY UPDATE:
+ S4421494, CVE-2010-4476: infinite loop while parsing double literal.
+ S6878713, CVE-2010-4469: Hotspot backward jsr heap corruption
+ S6907662, CVE-2010-4465:
logwatch (7.3.6.cvs20090906-1ubuntu2.1) lucid-security; urgency=low
* SECURITY UPDATE: privileged code execution via badly named logfiles
- scripts/logwatch.pl: encapsulate logfiles in 's and ensure logfile
names don't contain '.
-
http://logwatch.svn.sourceforge.net/viewvc/logwat
adobereader-deu (9.4.2-0lucid1) lucid; urgency=low
* Initial release of 9.4.2 for Lucid
Date: Mon, 28 Feb 2011 15:23:05 -0500
Changed-By: Brian Thomason
https://launchpad.net/ubuntu/lucid/+source/adobereader-deu/9.4.2-0lucid1
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Format: 1.8
Date: Mon
acroread (9.4.2-0lucid1) lucid; urgency=low
* Initial release of 9.4.2 for Lucid
Date: Mon, 28 Feb 2011 14:32:59 -0500
Changed-By: Brian Thomason
https://launchpad.net/ubuntu/lucid/+source/acroread/9.4.2-0lucid1
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Format: 1.8
Date: Mon, 28 Feb 2011
samba (2:3.4.7~dfsg-1ubuntu3.4) lucid-security; urgency=low
* SECURITY UPDATE: denial of service via missing range checks on file
descriptors
- debian/patches/security-CVE-2011-0719.patch: validate miscellaneous
file descriptors.
- CVE-2011-0719
Date: Wed, 23 Feb 2011 13:19:19
clamav (0.96.5+dfsg-1ubuntu1.10.04.2) lucid-security; urgency=low
* SECURITY UPDATE: denial of service via double free in vba processing
- libclamav/vba_extract.c: set buf to NULL when it gets freed.
-
http://git.clamav.net/gitweb?p=clamav-devel.git;a=commit;h=d21fb8d975f8c9688894a8cef4
fuse (2.8.1-1.1ubuntu3.1) lucid-security; urgency=low
* SECURITY UPDATE: arbitrary unprivileged unmount
- debian/patches/CVE-2011-0541.dpatch: don't follow symlinks when
unmounting in case of a failed mtab update in util/fusermount.c.
- debian/patches/CVE-2011-0542.dpatch: chdir to