Ubuntu
usbmuxd package

  1. Bug #919435
  2. Comment #5

Comment 5 for bug 919435

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package usbmuxd - 1.0.7-1ubuntu0.11.04.1

---------------
usbmuxd (1.0.7-1ubuntu0.11.04.1) natty-security; urgency=high

  * SECURITY UPDATE: fix possible buffer overflow
    - 90-cve-2012-0065.patch: use strncpy() instead of strcpy in
      libusbmuxd/libusbmuxd.c receive_packet() with a size that
      ensures we don't overflow dev->serial_number
    - CVE-2012-0065
    - LP: #919435
 -- Leo Iannacone <email address hidden> Sun, 29 Jan 2012 16:14:32 +0100