CVE-2019-16235, CVE-2019-16236, CVE-2019-16237
Bug #1866113 reported by
Julian Andres Klode
This bug affects 2 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
dino-im (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Bionic |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
A triplet of security issues.
CVE References
Changed in dino-im (Ubuntu): | |
status: | New → Fix Released |
To post a comment you must log in.
Compiled in autopkgtest, installed into lxd container, and tested with the test case for bug 1866115 - which this also includes.
The goal is to build in security, push to proposed to SRU verification, and then push to -security, as we need to get the IV acceptance change out fairly quickly so later dino versions can switch to sending 12-byte IVs w/o breaking compat with bionic users.
Afterwards I'll try to SRU dino 0.1.0 stable release as that includes a ton more (mostly) fixes.