zlib package in Ubuntu 14.04 LTS (Trusty) has not received patches for critical/high CVE-2016-9840, CVE-2016-9841, CVE-2016-9842, CVE-2016-9843
Bug #1729414 reported by
Ryan Fisher
This bug affects 6 people
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| zlib (Ubuntu) |
Confirmed
|
Low
|
Unassigned | ||
Bug Description
The current package available to 14.04/trusty is 1:1.2.8.
* CVE-2016-9840 (high) (https:/
* CVE-2016-9841 (critical) (https:/
* CVE-2016-9842 (high) (https:/
* CVE-2016-9843 (critical) (https:/
Being that they are being categorized as such by NIST, it would be very nice to get these fixes backported to Trusty or the most recent version of zlib made available to Trusty.
Thanks!
| tags: | added: trusty |
| description: | updated |
Revision history for this message
| Launchpad Janitor (janitor) wrote | #1 |
| Changed in zlib (Ubuntu): | |
| status: | New → Confirmed |
Revision history for this message
| Michael Leibowitz (michael-leibowitz) wrote | #2 |
| tags: | added: xenial |
Revision history for this message
| Marc Deslauriers (mdeslaur) wrote | #3 |
| Changed in zlib (Ubuntu): | |
| importance: | Undecided → Low |
To post a comment you must log in.
Status changed to 'Confirmed' because the bug affects multiple users.