Branches for Wheezy

Author: Aurelien Jarno
Revision Date: 2016-02-11 23:11:53 UTC

[ Aurelien Jarno ]
* patches/any/cvs-strftime.diff: new patch from upstream to fix
  segmentation fault caused by passing out-of-range data to strftime()
  (CVE-2015-8776). Closes: #812445.
* patches/any/cvs-hcreate.diff: new patch from upstream to fix an integer
  overflow in hcreate() and hcreate_r() (CVE-2015-8778). Closes: #812441.
* patches/any/cvs-catopen.diff: new patch from upstream to fix multiple
  unbounded stack allocations in catopen() (CVE-2015-8779). Closes:
  #812455.
* patches/any/cvs-gethostbyname4-memory-leak.diff: new patch from
  upstream to fix a memory leak in _nss_dns_gethostbyname4_r with big
  DNS answers.
* patches/any/local-CVE-2015-7547.diff: new patch to fix glibc getaddrinfo
  stack-based buffer overflow (CVE-2015-7547).