lp:ubuntu/dapper-security/bzip2
- Get this branch:
- bzr branch lp:ubuntu/dapper-security/bzip2
Branch merges
Branch information
Recent revisions
- 9. By Jamie Strandboge
-
* SECURITY UPDATE: fix integer overflow in BZ2_decompress()
- decompress.c: return error if N is larger than 2*1024^2 which keeps es
from overflowing but leaves enough room for the 900k maximum value of
the RUNA/RUNB encoding
- patch from upstream
- CVE-2010-0405 - 8. By Kees Cook
-
* SECURITY UPDATE: denial of service via heap memory corruption.
* bzlib.c, bzlib_private.h: upstream patch from 1.0.5 applied inline.
* References
CVE-2008-1372 - 4. By Matthias Klose
-
* Build 64bit packages to replace amd64-libs.
* Build 32bit packages on amd64 (currently disabled). - 3. By Anibal Monsalve Salazar <email address hidden>
-
* New maintainer.
* Updated package to Policy 3.6.1.1.
* The package description does not follow Debian policy
(Closes: #209811, #210074). - 2. By Philippe Troin <email address hidden>
-
* New upstream version; closes: #132318. Most of our patches merged
upstream.
* Generate copyright automatically from debian/rules.
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/lucid/bzip2