[ubuntu/xenial-security] whoopsie 0.2.52.5ubuntu0.5 (Accepted)

Marc Deslauriers Tue, 04 Aug 2020 10:09:07 -0700

whoopsie (0.2.52.5ubuntu0.5) xenial-security; urgency=medium

  * SECURITY UPDATE: integer overflow in bson parsing (LP: #1872560)
    - lib/bson/*: updated to latest upstream release.
    - CVE-2020-12135
  * SECURITY UPDATE: resource exhaustion via memory leak (LP: #1881982)
    - src/whoopsie.c, src/tests/test_parse_report.c: properly handle
      GHashTable.
    - CVE-2020-11937
  * SECURITY UPDATE: DoS via large data length (LP: #1882180)
    - src/whoopsie.c, src/whoopsie.h, src/tests/test_parse_report.c: limit
      the size of a report file.
    - CVE-2020-15570


Date: 2020-07-28 15:48:31.561277+00:00
Changed-By: Marc Deslauriers <marc.deslauri...@canonical.com>
Maintainer: Evan <evan.dand...@canonical.com>
https://launchpad.net/ubuntu/+source/whoopsie/0.2.52.5ubuntu0.5

Sorry, changesfile not available.

-- 
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/xenial-changes

[ubuntu/xenial-security] whoopsie 0.2.52.5ubuntu0.5 (Accepted)

Reply via email to