Ubuntu
libu2f-host package

  1. Bug #1814153
  2. Comment #8

Comment 8 for bug 1814153

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package libu2f-host - 1.1.4-1ubuntu0.1

---------------
libu2f-host (1.1.4-1ubuntu0.1) bionic-security; urgency=medium

  * SECURITY UPDATE: buffer overflow when handling response from device
    (LP: #1814153)
    - debian/patches//0002-CVE-2018-20340.patch: check to ensure
      response size is within offered buffer size.
    - CVE-2018-20340

 -- Steve Beattie <email address hidden> Tue, 05 Feb 2019 10:44:55 -0800