[ Simon Chopin ]
* d/p/lp1978093/*: renew some expiring test certificates (LP: #1978093)
[ Marc Deslauriers ]
* SECURITY UPDATE: c_rehash script allows command injection
- debian/patches/CVE-2022-1292.patch: switch to upstream patch, and
apply it before c_rehash-compat.patch.
- debian/patches/CVE-2022-2068.patch: fix file operations in
tools/c_rehash.in.
- debian/patches/c_rehash-compat.patch: updated patch to apply after
the security updates.
- CVE-2022-2068
-- Simon Chopin <email address hidden> Tue, 14 Jun 2022 13:37:45 +0200
This bug was fixed in the package openssl - 1.1.1-1ubuntu2. 1~18.04. 19
--------------- 1ubuntu2. 1~18.04. 19) bionic-security; urgency=medium
openssl (1.1.1-
[ Simon Chopin ]
* d/p/lp1978093/*: renew some expiring test certificates (LP: #1978093)
[ Marc Deslauriers ] patches/ CVE-2022- 1292.patch: switch to upstream patch, and compat. patch. patches/ CVE-2022- 2068.patch: fix file operations in c_rehash. in. patches/ c_rehash- compat. patch: updated patch to apply after
* SECURITY UPDATE: c_rehash script allows command injection
- debian/
apply it before c_rehash-
- debian/
tools/
- debian/
the security updates.
- CVE-2022-2068
-- Simon Chopin <email address hidden> Tue, 14 Jun 2022 13:37:45 +0200