[ubuntu/xenial-security] systemd 229-4ubuntu21.8 (Accepted)

Chris Coulson Mon, 12 Nov 2018 06:08:28 -0800

systemd (229-4ubuntu21.8) xenial-security; urgency=medium

  * SECURITY UPDATE: reexec state injection
    - debian/patches/CVE-2018-15686.patch: when deserializing state always use
      read_line(…, LONG_LINE_MAX, …) rather than fgets()
    - CVE-2018-15686
  * SECURITY UPDATE: symlink mishandling in systemd-tmpfiles
    - debian/patches/CVE-2018-6954.patch: don't resolve pathnames when 
traversing
      recursively through directory trees
    - CVE-2018-6954


Date: 2018-11-09 07:55:12.827425+00:00
Changed-By: Chris Coulson <chrisccoul...@ubuntu.com>
https://launchpad.net/ubuntu/+source/systemd/229-4ubuntu21.8

Sorry, changesfile not available.

-- 
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/xenial-changes

[ubuntu/xenial-security] systemd 229-4ubuntu21.8 (Accepted)

Reply via email to