ubuntu/+source/spice:applied/ubuntu/artful-security

Last commit made on 2018-05-23
Get this branch:
git clone -b applied/ubuntu/artful-security https://git.launchpad.net/ubuntu/+source/spice
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/artful-security
Repository:
lp:ubuntu/+source/spice

Recent commits

5c3ea90... by Leonidas S. Barbosa on 2018-05-22

Import patches-applied version 0.12.8-2.2ubuntu0.1 to applied/ubuntu/artful-security

Imported using git-ubuntu import.

Changelog parent: 14283ce54a1fd9471d8b9215ccc327318fd32acd
Unapplied parent: 818f0be86b3123079b349e8c6af38f9b646cc901

New changelog entries:
  * SECURITY UPDATE: Integer overflow and buffer overflow
    - debian/patches/CVE-2017-12194-1.patch: fix a integer overflow
      computing sizes in spice-common/python_modules/demarshal.py.
    - debian/patches/CVE-2017-12194-2.patch: avoid integer overflow
      in spice-common/python_modules/demarshal.py,
      spice-common/python_modules/marshal.py.
    - debian/patches/CVE-2017-12194-3.patch: add tests to verify fix.
    - CVE-2017-12194

818f0be... by Leonidas S. Barbosa on 2018-05-22

[PATCH spice-common 1/3] Write a small test to test possible crash

Gbp-Pq: CVE-2017-12194-3.patch.

4214635... by Leonidas S. Barbosa on 2018-05-22

[PATCH] Avoid integer overflow computing image sizes

Gbp-Pq: CVE-2017-12194-2.patch.

67743eb... by Leonidas S. Barbosa on 2018-05-22

[PATCH] Fix integer overflows computing sizes

Gbp-Pq: CVE-2017-12194-1.patch.

2e79adf... by Leonidas S. Barbosa on 2018-05-22

[spice-server 3/3] reds: Avoid buffer overflows handling monitor

Gbp-Pq: CVE-2017-7506-3.patch.

82c5f05... by Leonidas S. Barbosa on 2018-05-22

[spice-server 2/3] reds: Avoid integer overflows handling monitor

Gbp-Pq: CVE-2017-7506-2.patch.

638e9b3... by Leonidas S. Barbosa on 2018-05-22

[spice-server 1/3] reds: Disconnect when receiving overly big

Gbp-Pq: CVE-2017-7506-1.patch.

7e73b14... by Leonidas S. Barbosa on 2018-05-22

CVE-2016-9577 and CVE-2016-9578

Gbp-Pq: CVE-2016-9577-and-CVE-2016-9578.patch.

562e559... by Leonidas S. Barbosa on 2018-05-22

do not link spice with libcacard

Gbp-Pq: stop-linking-with-libcacard.diff.

ca10e8d... by Leonidas S. Barbosa on 2018-05-22

Import patches-unapplied version 0.12.8-2.2ubuntu0.1 to ubuntu/artful-security

Imported using git-ubuntu import.

Changelog parent: 4b629d66bc0d867f2004cc87b83a04090bbddc48

New changelog entries:
  * SECURITY UPDATE: Integer overflow and buffer overflow
    - debian/patches/CVE-2017-12194-1.patch: fix a integer overflow
      computing sizes in spice-common/python_modules/demarshal.py.
    - debian/patches/CVE-2017-12194-2.patch: avoid integer overflow
      in spice-common/python_modules/demarshal.py,
      spice-common/python_modules/marshal.py.
    - debian/patches/CVE-2017-12194-3.patch: add tests to verify fix.
    - CVE-2017-12194