* SECURITY UPDATE: denial of service and possible execution via hostname
with an escaped trailing dot (LP: #1629085)
- debian/patches/CVE-2016-5180.patch: properly handle escaped dot in
ares_create_query.c.
- CVE-2016-5180
-- Marc Deslauriers <email address hidden> Thu, 06 Oct 2016 10:15:41 -0400
This bug was fixed in the package c-ares - 1.10.0-2ubuntu0.1
---------------
c-ares (1.10.0-2ubuntu0.1) trusty-security; urgency=medium
* SECURITY UPDATE: denial of service and possible execution via hostname patches/ CVE-2016- 5180.patch: properly handle escaped dot in create_ query.c.
with an escaped trailing dot (LP: #1629085)
- debian/
ares_
- CVE-2016-5180
-- Marc Deslauriers <email address hidden> Thu, 06 Oct 2016 10:15:41 -0400