libmms 0.2-7 source package in Ubuntu
Changelog
libmms (0.2-7) unstable; urgency=high
* SECURITY: CVE-2006-2200: buffer overflows in mms / mmsh parsers:
additional fixes thanks to Matthias Hopf:
- even more checks on "packet_length" / "packet_len" in src/mms.c and
src/mmsh.c
- fix memset() calls in the two string_utf16() implementations in
src/mms.c to clear all bytes in dest, "len" is the UTF-16 length of the
string in wide chars, so the memset should use "2 * len".
-- Ubuntu Archive Auto-Sync <email address hidden> Wed, 12 Jul 2006 14:43:35 +0100
Upload details
- Uploaded by:
- Ubuntu Archive Auto-Sync
- Uploaded to:
- Edgy
- Original maintainer:
- Loïc Minier
- Architectures:
- any
- Section:
- libs
- Urgency:
- Very Urgent
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| libmms_0.2.orig.tar.gz | 329.9 KiB | 68392f88a2c392b7e329eeda9b953c32fbb5a28b7ab9eb8f55a8b3bdd4570774 |
| libmms_0.2-7.diff.gz | 21.0 KiB | caa98c218af0e9dc98a1b7553627ead98a81b889aab92d3a2f1728671e16b982 |
| libmms_0.2-7.dsc | 590 bytes | 11c1bbb80e8cbeea19e235502da4cc11a401a2b84f1457ada2346b135a998b77 |
Binary packages built by this source
- libmms-dev: No summary available for libmms-dev in ubuntu edgy.
No description available for libmms-dev in ubuntu edgy.
- libmms0: No summary available for libmms0 in ubuntu edgy.
No description available for libmms0 in ubuntu edgy.
