This bug was fixed in the package eglibc - 2.15-0ubuntu6
---------------
eglibc (2.15-0ubuntu6) precise; urgency=low
* SECURITY UPDATE: denial of service in RPC implementation (LP: #901716)
- debian/patches/any/local-CVE-2011-4609.patch: nanosleep when too
many open fds are detected
- CVE-2011-4609
* SECURITY UPDATE: vfprintf nargs overflow leading to FORTIFY
check bypass (LP: #953171)
- debian/patches/any/cvs-CVE-2012-0864.patch: check for integer
overflow
- CVE-2012-0864
-- Steve Beattie <[email protected]> Mon, 12 Mar 2012 09:20:41 -0700
** Changed in: eglibc (Ubuntu)
Status: In Progress => Fix Released
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2011-4609
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2012-0864
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/953171
Title:
Please fix CVE-2012-0864 in precise
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/eglibc/+bug/953171/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
