@benjaoming Looks like commit notes mixed up between 3114 and 3112. The eval fix (CVE-2016-9949) is in 3112:
https://bazaar.launchpad.net/~apport-hackers/apport/trunk/revision/3112/ The patch in 3114 fixes CVE-2016-9951 (Relaunch code execution). -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1648806 Title: Arbitrary code execution through crafted CrashDB or Package/Source fields in .crash files To manage notifications about this bug go to: https://bugs.launchpad.net/apport/+bug/1648806/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
