Comment 13 for bug 1288226

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package udisks - 1.0.4-5ubuntu2.2

---------------
udisks (1.0.4-5ubuntu2.2) precise-security; urgency=medium

  * SECURITY UPDATE: arbitrary code execution via long path names
    (LP: #1288226)
    - debian/patches/CVE-2014-0004.patch: limit lengths and properly
      terminate in src/mount-monitor.c.
    - CVE-2014-0004
 -- Marc Deslauriers <email address hidden> Thu, 06 Mar 2014 09:27:39 -0500