gnome-exe-thumbnailer (0.9.3-2ubuntu0.16.04.1) xenial-security; urgency=medium
[ James Lu ]
* SECURITY UPDATE: Arbitrary code execution (LP: #651610)
- debian/patches/switch-to-msiinfo.patch: Switch to msitools' msiinfo for
ProductVersion fetching, replacing the insecure VBScript-based parsing
- debian/control: Add msitools to recommends; it is now used to fetch .msi
version info.
- CVE-2017-11421
Date: 2017-08-04 00:26:28.391013+00:00
Changed-By: Tyler Hicks <tyhi...@canonical.com>
Signed-By: Ubuntu Archive Robot
<cjwatson+ubuntu-archive-ro...@chiark.greenend.org.uk>
https://launchpad.net/ubuntu/+source/gnome-exe-thumbnailer/0.9.3-2ubuntu0.16.04.1
Sorry, changesfile not available.
--
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/xenial-changes
