[Bug 1396471] Re: glibc vulnerability CVE-2014-7817

Launchpad Bug Tracker Wed, 03 Dec 2014 10:26:05 -0800

This bug was fixed in the package eglibc - 2.19-0ubuntu6.4

---------------
eglibc (2.19-0ubuntu6.4) trusty-security; urgency=medium


  * SECURITY UPDATE: denial of service in IBM gconv modules
    - debian/patches/any/cvs-CVE-2014-6040.diff: fix checks in
      iconvdata/ibm*.c.
    - CVE-2014-6040
  * SECURITY UPDATE: arbitrary command execution via wordexp (LP: #1396471)
    - debian/patches/any/CVE-2014-7817.diff: properly handle WRDE_NOCMD in
      posix/wordexp.c, added tests to posix/wordexp-test.c.
    - CVE-2014-7817
 -- Marc Deslauriers <[email protected]>   Mon, 01 Dec 2014 12:05:33 
-0500

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1396471

Title:
  glibc vulnerability CVE-2014-7817

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/eglibc/+bug/1396471/+subscriptions

-- 
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1396471] Re: glibc vulnerability CVE-2014-7817

Reply via email to