Created by Mathieu Trudel-Lapierre on 2015-05-06 and last modified on 2015-05-10
Get this branch:
bzr branch lp:~cyphermox/shim/0.8
Only Mathieu Trudel-Lapierre can upload to this branch. If you are Mathieu Trudel-Lapierre please log in for upload directions.

Branch merges

Related bugs

Related blueprints

Branch information

Mathieu Trudel-Lapierre

Recent revisions

98. By Mathieu Trudel-Lapierre on 2015-05-10

Reapplying all patches

97. By Mathieu Trudel-Lapierre on 2015-05-07

Add bug tag for insecure_mode semantics changes in 0.8.

96. By Mathieu Trudel-Lapierre on 2015-05-06


95. By Mathieu Trudel-Lapierre on 2015-05-06

debian/patches/CVE-2014-3675.patch, debian/patches/CVE-2014-3677.patch,
debian/patches/0001-Update-openssl-to-0.9.8za.patch: dropped, included
in the upstream release.

94. By Mathieu Trudel-Lapierre on 2015-05-06

New upstream release.

93. By Mathieu Trudel-Lapierre on 2015-05-06

Unapplying patches to prevent spurious conflicts.

92. By Steve Langasek on 2015-05-05

Merge upstream git branch for release 0.7

91. By Steve Langasek on 2015-05-05

Fix the version number; this was uploaded for some reason as -0ubuntu4, not -0ubuntu3.

90. By Steve Langasek on 2014-10-08

releasing package shim version 0.7-0ubuntu3

89. By Steve Langasek on 2014-10-08

* SECURITY UPDATE: heap overflow and out-of-bounds read access when
  parsing DHCPv6 information
  - debian/patches/CVE-2014-3675.patch: apply proper bounds checking
    when parsing data provided in DHCPv6 packets.
  - CVE-2014-3675
  - CVE-2014-3676
* SECURITY UPDATE: memory corruption when processing user-provided key
  - debian/patches/CVE-2014-3677.patch: detect malformed machine owner
    key (MOK) lists and ignore them, avoiding possible memory corruption.
  - CVE-2014-3677

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
This branch contains Public information 
Everyone can see this information.